GeneralInformation

Hostnames	app.shipnsend.com foobar-misbear.vpsrdns.web-hosting.com
Domains	shipnsend.com web-hosting.com
Country	United States
City	Phoenix
Organization	Namecheap, Inc.
ISP	Namecheap, Inc.
ASN	AS22612
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1023999996 | 2024-06-01T04:02:39.365058

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC37ttxcFVV6YFISGoxgnbusb3ZBq8NPwt+fYgQ7IjC2pih
MIDOMa6oLuaf2uwpkher9c6nNZxKerR3p4J2jXArqZY2w4IXyzeSnpweZuMuH7xFJVIzE77z7V++
2vVCNw2mwaxbm4Sz0PZnuxY1W+dGsiBQ0gF6c1FUvNBck/pj57tlJe4Sip/z+2aYqa7IRHJKl7uV
1c2Gt2l49XjvZjB7/RmyUyx/ujcVTI1OMLuvWgHbGcH526o7LweHe9oOADG75A4cIHRgez4zzJf/
GWeL3wwlzeSkDLwEzPC+PX4yTV6PmI2crjmsUxoXZq4fiLhhnf0KdBOC/4iAc5ynpMZf
Fingerprint: 8d:fe:3b:c8:89:5b:ce:72:ae:80:5a:9f:1c:53:bd:ad

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-06-02T02:18:09.342881

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 02 Jun 2024 02:18:08 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://203.161.63.166/

869281729 | 2024-06-02T23:47:36.092832

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 02 Jun 2024 23:47:36 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b2:bc:1e:1d:b0:be:25:43:7b:9e:d9:18:f0:89:b3:e6:2f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  4 05:15:02 2024 GMT
            Not After : Jul  3 05:15:01 2024 GMT
        Subject: CN=app.shipnsend.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c1:58:15:74:ac:05:da:be:57:d1:cb:10:9d:26:
                    34:ab:41:ff:0e:c1:39:71:e6:ee:d2:56:57:02:b6:
                    d4:10:fc:1a:d4:a7:12:ee:f9:06:46:77:be:87:1a:
                    e6:62:45:71:7b:2f:19:01:15:f0:eb:a5:3d:f0:c5:
                    89:28:9c:17:70:05:88:bb:be:cf:f2:3a:1e:91:4f:
                    52:fd:aa:87:14:30:7a:13:64:56:e2:03:c0:73:b8:
                    6f:f0:7f:66:16:91:bc:3c:d2:21:74:de:e6:82:e8:
                    22:33:3f:59:56:ff:bc:6b:3f:34:fa:b2:05:33:0c:
                    85:47:e0:ac:03:73:90:16:43:00:77:75:e6:50:0e:
                    93:e4:82:9e:37:c7:a7:6c:36:ad:b2:bd:5d:0d:f6:
                    6d:50:59:3a:5d:c1:18:2d:71:27:7f:18:75:a4:fc:
                    b2:63:69:8c:b5:4b:1f:55:48:c1:8b:3c:e8:9f:ba:
                    9d:c6:c5:e9:93:6b:f9:3e:23:ca:64:94:62:75:c1:
                    ff:e3:99:1b:fc:31:c9:0c:84:08:58:9d:c8:42:86:
                    c1:8b:81:67:bd:0d:42:ce:a0:ee:41:c9:e4:5d:6f:
                    1f:ce:17:5f:12:9a:6d:cf:93:f1:8a:80:bc:68:97:
                    99:fc:ac:43:d6:7c:5f:20:05:6d:71:cf:4b:9f:c1:
                    19:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                48:F3:59:B2:59:03:4C:70:25:F3:1F:1D:1E:5C:B0:CD:4A:9F:D7:DD
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:app.shipnsend.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  4 06:15:02.293 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:86:E3:03:B9:03:2A:42:1F:66:68:CA:
                                4E:F8:C5:6F:EC:53:98:67:A9:C6:AF:E5:FE:93:08:A8:
                                27:8B:24:E5:02:21:00:F1:80:ED:BC:B0:2E:53:BC:EF:
                                41:C0:CE:54:A5:FF:FD:09:83:4D:60:75:A9:27:A4:EE:
                                A2:F9:E8:01:68:85:4D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Apr  4 06:15:02.301 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B2:59:C8:F8:60:96:DE:83:C1:24:D4:
                                4A:48:7A:82:8C:AF:93:68:98:C3:EC:FC:2D:42:45:A3:
                                5C:40:9C:32:B1:02:21:00:CA:1E:1A:11:10:D8:D4:D9:
                                79:DB:CA:2F:B1:A4:8F:1D:FE:88:17:C0:5B:D3:2B:DB:
                                43:67:28:A9:21:A3:87:F0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2d:3e:95:61:7d:cc:b1:d5:4a:d4:c7:a5:fc:3e:68:bc:a1:d3:
        0d:1f:2d:08:26:f2:6d:94:8c:94:cf:6f:b0:a3:22:17:7c:f2:
        d0:b8:41:5d:f3:a2:62:24:a4:da:f5:50:35:2a:81:0b:84:43:
        c3:34:5f:6e:db:18:87:ed:d0:ec:20:e8:d8:0c:79:64:db:c6:
        3f:4a:93:7e:ec:41:12:e2:f6:72:cc:c8:5f:6a:b5:e7:26:fc:
        76:bb:8c:47:60:7b:65:3f:25:80:ec:dc:7b:17:06:4c:ed:a1:
        c0:8b:14:97:24:72:3d:b7:78:ff:ad:fd:60:6c:6f:2c:00:62:
        ca:d7:a5:c1:f2:64:c8:9d:6c:12:f1:5b:76:4b:c8:9a:d5:f6:
        1d:53:d2:af:0e:0d:86:fd:88:8d:6a:1c:79:bf:39:8e:54:4c:
        16:91:9c:0b:24:df:b2:b9:d0:cf:a2:60:1f:06:4e:7d:42:b4:
        7b:c1:f3:c1:2b:ae:40:1d:6c:98:5f:73:16:f5:b0:a6:3a:66:
        5b:7f:ae:79:0f:1c:3f:bb:73:a2:76:ec:82:56:a6:b4:03:8b:
        41:b2:47:cb:6c:b3:f7:eb:94:84:23:21:9b:6f:11:9d:47:a0:
        e4:2d:db:e6:97:f1:09:45:c7:e2:75:6c:20:d2:c5:35:76:f6:
        19:99:f2:36

203.161.63.166

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1023999996 | 2024-06-01T04:02:39.365058
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-06-02T02:18:09.342881
80 / tcp

nginx1.18.0

869281729 | 2024-06-02T23:47:36.092832
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

203.161.63.166

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1023999996 | 2024-06-01T04:02:39.365058 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-06-02T02:18:09.342881 80 / tcp

nginx1.18.0

869281729 | 2024-06-02T23:47:36.092832 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1023999996 | 2024-06-01T04:02:39.365058
22 / tcp

589765266 | 2024-06-02T02:18:09.342881
80 / tcp

869281729 | 2024-06-02T23:47:36.092832
443 / tcp