GeneralInformation

Hostnames	106-202-115-208.static.reverse.lstn.net yamyday.com
Domains	lstn.net yamyday.com
Country	United States
City	New York City
Organization	Limestone Networks, Inc.
ISP	Limestone Networks, Inc.
ASN	AS46475

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 123 443

-617618899 | 2024-04-26T10:34:27.633768

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Fri, 26 Apr 2024 10:34:27 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-782232712 | 2024-04-26T06:06:17.269146

123 / udp

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -23
rootdelay: 0.0622863769531
rootdisp: 0.0627136230469
refid: 760180647
reftime: 3923099499.98
poll: 3

-617618899 | 2024-04-26T19:25:23.296066

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Fri, 26 Apr 2024 19:25:23 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:51:25:6c:4f:da:23:50:d8:e2:bf:9d:2a:03:7f:73:47:29
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 22 06:56:23 2024 GMT
            Not After : May 22 06:56:22 2024 GMT
        Subject: CN=yamyday.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:16:b9:68:31:6c:49:a0:8a:32:dc:19:a6:81:5d:
                    1e:63:bd:9c:a9:56:90:7b:3e:a9:3a:2b:b6:67:d7:
                    7f:b3:80:e7:f3:88:f5:0d:53:3d:ca:fa:5f:ac:57:
                    14:8b:8c:9d:36:65:0e:e7:eb:14:be:bf:68:4c:6b:
                    4b:ac:05:24:49
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                45:49:57:79:A9:FE:CA:C8:CA:0D:22:3B:C4:1C:2B:EA:C2:DF:CC:3F
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.yamyday.com, DNS:yamyday.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 22 07:56:23.364 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D4:9C:92:AD:52:BA:A5:31:7A:D1:4E:
                                D9:15:DA:9F:A4:CA:02:DD:BB:68:EB:7D:BE:46:46:A2:
                                37:71:01:1B:78:02:21:00:DF:63:9C:CD:6D:75:89:AA:
                                9F:50:0B:29:B5:DA:94:47:82:C8:41:E2:EE:DB:C4:35:
                                FA:1B:EA:55:3A:20:91:7A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 22 07:56:23.448 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C7:C9:6D:68:58:44:C2:E1:22:A4:D7:
                                19:F8:C6:9B:56:9C:1A:95:E8:26:E4:B5:32:C6:9D:1B:
                                F2:8E:C0:35:64:02:20:02:6C:54:BB:A5:4D:91:C0:79:
                                3B:F1:40:ED:0D:5C:8C:E3:61:58:F7:23:DE:EB:1F:33:
                                FB:F0:63:D2:1C:E0:FA
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ba:6a:b6:db:0c:e8:4b:24:31:81:53:6a:2f:5f:45:2c:7f:07:
        ad:fc:dd:5b:d4:c2:d0:5e:76:4d:43:12:e8:2b:cc:93:6a:5c:
        32:73:71:c8:5e:21:bf:39:47:77:9e:56:98:6f:87:b8:c5:a9:
        59:b1:96:9f:67:75:93:4d:69:de:66:c9:aa:c4:31:e3:40:d6:
        7c:8e:f7:b4:c6:4e:29:80:f8:ad:a2:50:b7:be:cf:7e:be:f0:
        19:4c:03:40:44:7c:c1:be:a7:92:20:3f:bb:b7:7f:2b:9f:44:
        35:cb:53:af:b5:1f:2e:76:60:3d:88:8f:65:5f:a0:b3:f6:e5:
        ff:26:2c:83:9d:76:88:11:fc:41:b4:aa:82:b2:cf:01:61:24:
        54:a9:76:2e:9f:68:be:fe:4f:14:1f:aa:47:49:ea:22:d4:b9:
        b2:02:d9:be:11:b8:59:cf:e3:1c:25:fb:e1:2d:ea:24:9c:fc:
        6d:78:71:8b:87:e9:13:60:1d:6a:27:b0:8d:13:1e:c3:46:cf:
        06:37:2b:81:bc:3c:70:a2:61:6c:66:65:ca:62:4b:15:52:ed:
        d5:01:1c:2e:26:d5:e9:d0:42:d2:02:49:49:15:c0:55:77:a4:
        8b:d3:de:d0:f4:a0:f3:7f:61:be:ab:f4:bd:7e:a6:9a:75:da:
        fc:d3:40:55

208.115.202.106

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-617618899 | 2024-04-26T10:34:27.633768
80 / tcp

nginx1.20.1

-782232712 | 2024-04-26T06:06:17.269146
123 / udp

-617618899 | 2024-04-26T19:25:23.296066
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

208.115.202.106

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-617618899 | 2024-04-26T10:34:27.633768 80 / tcp

nginx1.20.1

-782232712 | 2024-04-26T06:06:17.269146 123 / udp

-617618899 | 2024-04-26T19:25:23.296066 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-617618899 | 2024-04-26T10:34:27.633768
80 / tcp

-782232712 | 2024-04-26T06:06:17.269146
123 / udp

-617618899 | 2024-04-26T19:25:23.296066
443 / tcp