GeneralInformation

Hostnames	quisucikue.beget.app www.quisucikue.beget.app
Domains	beget.app
Country	Russian Federation
City	Saint Petersburg
Organization	Beget LLC
ISP	Beget LLC
ASN	AS198610

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 3306 33060

677579724 | 2024-04-17T21:38:23.218100

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 21:40:19 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-783928379 | 2024-04-16T03:50:37.963859

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 16 Apr 2024 03:52:35 GMT
Content-Type: text/html
Content-Length: 273
Last-Modified: Mon, 26 Sep 2022 15:31:02 GMT
Connection: keep-alive
ETag: "6331c5b6-111"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:5d:37:34:64:0f:50:5c:d1:fe:1e:e0:8b:50:1a:d6:9f:b7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 18 01:48:14 2024 GMT
            Not After : May 18 01:48:13 2024 GMT
        Subject: CN=quisucikue.beget.app
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d9:30:6b:cc:c2:0b:d6:ac:08:11:3d:c9:9e:23:
                    e9:22:07:d7:cc:fc:84:b0:b7:c0:ae:fc:8a:98:99:
                    25:06:19:6d:ea:1d:79:65:53:c4:fb:9b:4d:eb:87:
                    5e:93:5b:44:d3:b7:49:ac:7f:34:17:7b:d9:bb:0b:
                    b7:54:c5:cc:3b:22:6e:6d:a9:c0:18:34:53:a4:ad:
                    ce:fd:ce:be:b9:7d:56:b2:62:23:58:a4:7c:7d:97:
                    a4:aa:9a:7f:d9:70:76:d3:86:70:33:40:1e:5d:2c:
                    37:79:69:21:a1:67:ed:b2:1b:fc:5c:ca:92:6d:5a:
                    3d:a8:b8:5c:54:55:7a:f8:62:67:8d:79:59:bc:65:
                    73:0b:63:69:54:c2:73:a2:19:1c:d5:78:67:83:81:
                    8a:c2:24:cf:3f:02:a6:92:f0:81:f2:c1:97:4c:7c:
                    c5:c0:6b:78:3a:d4:d8:a3:1d:b0:ea:4e:f5:2a:6c:
                    aa:89:57:fa:a1:8b:7d:8b:a5:8c:f7:13:a6:03:6a:
                    c8:bd:f6:22:20:26:5d:38:74:57:4f:fc:a5:24:07:
                    c2:36:44:b4:cd:1c:b4:67:f0:e6:83:02:de:11:e2:
                    19:2f:e1:51:9b:bc:05:c0:f9:97:2c:7d:9f:47:1a:
                    d7:89:13:ed:18:ca:ab:bf:cc:5f:9d:39:5e:79:9b:
                    e2:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                75:BE:00:63:B4:87:04:E5:20:C3:48:ED:7E:19:B9:27:0D:54:CE:1E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:quisucikue.beget.app, DNS:www.quisucikue.beget.app
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 18 02:48:14.452 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A3:2D:1E:A7:9D:A5:09:9C:BF:3E:F1:
                                8E:66:18:70:97:A7:D3:DD:72:23:D2:AB:76:E8:81:A4:
                                B9:11:DA:1C:EE:02:21:00:BB:CE:B8:82:19:CA:44:A0:
                                AD:9E:60:40:E2:64:C3:BF:25:0D:D6:E3:49:B9:61:61:
                                A1:DD:D4:AA:92:91:CD:7A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 18 02:48:15.213 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:51:49:F3:08:D0:EF:E1:46:5B:65:F7:53:
                                91:7C:21:CB:70:79:9A:A8:21:57:B3:B5:7F:D2:62:69:
                                A8:76:44:DF:02:20:3A:B6:A5:92:93:86:7A:F3:BF:9A:
                                74:3C:7C:EC:9C:47:4C:1D:EE:53:54:19:E0:D3:A3:35:
                                8C:5C:E2:F1:3D:41
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b2:2b:39:49:d5:b2:3d:73:75:c8:9e:41:a9:d2:6b:2f:f4:82:
        6b:a3:68:76:b1:93:e7:b8:69:3c:a0:25:d6:ff:99:97:15:1a:
        9c:7a:fb:28:a9:dc:cf:2a:f7:b4:9c:b5:bf:f9:22:10:bf:ec:
        ec:c3:ac:90:3d:7d:85:f7:5e:22:4d:20:a5:46:ec:f8:b2:89:
        15:11:06:35:03:7e:aa:60:73:d3:d2:13:f5:5b:3b:f9:4f:f0:
        f7:2a:4e:df:46:be:37:bb:ed:85:5e:ed:ad:59:e5:bd:46:96:
        fe:2b:c2:13:ea:b2:70:fe:15:14:ca:54:6e:ca:98:d8:9b:ed:
        92:68:50:f9:b8:cc:0c:4f:7d:46:c8:d9:32:de:e8:d2:67:ac:
        af:cc:3a:3d:f7:16:f7:79:14:85:68:fe:f8:7d:22:69:b0:0e:
        6b:79:93:c8:82:89:3d:64:85:3a:7c:93:89:6a:7b:eb:27:cc:
        b7:72:ab:a0:3a:dd:22:f9:60:73:16:c9:90:c8:47:ac:d2:ec:
        b1:99:65:7d:17:a9:50:82:28:82:73:64:18:fc:b5:ca:88:4d:
        7d:2b:b0:50:5f:48:bb:f5:a6:75:b0:73:d3:4f:2d:5d:5f:f9:
        9c:23:5c:44:2f:13:b9:89:fe:8b:6d:ca:df:b1:90:6c:91:51:
        5f:ff:5a:16

1229045884 | 2024-04-18T08:10:51.158726

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.25-15
  Capabilities: 65535
  Server Language: 33
  Server Status: 2
  Extended Server Capabilities: 53247
  Authentication Plugin: caching_sha2_password

-795948505 | 2024-04-21T15:01:48.445866

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

213.139.209.85

Last Seen: 2024-04-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-17T21:38:23.218100
80 / tcp

nginx1.18.0

-783928379 | 2024-04-16T03:50:37.963859
443 / tcp

nginx1.18.0

1229045884 | 2024-04-18T08:10:51.158726
3306 / tcp

MySQL8.0.25-15

-795948505 | 2024-04-21T15:01:48.445866
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

213.139.209.85

Last Seen: 2024-04-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-17T21:38:23.218100 80 / tcp

nginx1.18.0

-783928379 | 2024-04-16T03:50:37.963859 443 / tcp

nginx1.18.0

1229045884 | 2024-04-18T08:10:51.158726 3306 / tcp

MySQL8.0.25-15

-795948505 | 2024-04-21T15:01:48.445866 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

677579724 | 2024-04-17T21:38:23.218100
80 / tcp

-783928379 | 2024-04-16T03:50:37.963859
443 / tcp

1229045884 | 2024-04-18T08:10:51.158726
3306 / tcp

-795948505 | 2024-04-21T15:01:48.445866
33060 / tcp