GeneralInformation

Hostnames	knowyourscore.coach
Domains	knowyourscore.coach
Country	United States
City	Chicago
Organization	Rackspace Hosting
ISP	Rackspace Hosting
ASN	AS19994
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3306 33060

825848692 | 2024-04-22T00:58:51.919063

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.7
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDlJv4oeZHznI21Xjod5CbJr4sgUyM8EyssYol0ba0NgGS3
cfcwtAebFmPZ6Q2S5Us+C+fUeR+45lk77LYMAHjOLw5EWGxUe+InuJ+tAB7nlFlov4yj5gt+sEUb
/cHk6jRxvn+FLvNqyHxaq+ndNh3ru1saBm609LjkNigZmW8rnvzoVAf1WgaAVy0s10nlTHKIBNzZ
bL1AAWVDCuRLHyKbltEoCnWvrgAusllN19gJDD1wU/z0PikZaL1MohS5iUFB7IrmdLqMtsrZhwX9
GiJz7lJ2Uy/dVzZ4pUxwq4iKEOWDJ6NpP+0Asjfz51UOug2O9kJsdArDSp8SN3Sgy7f6leEqj+BG
harA2Hkiooj7iQDrELnyoAXK/UDjzC4Ld+t9Ch9FpECOeAZWdIUyMQUiFOrlR+hiT0Q2NaM29zGf
Im1U25G6VedkNfjiHXb/eXKTcgMNMkxNR8+WrDPxEqCpdM6CwDu0KwTH8oEHpE8oxO/DCnoylnP/
ACb1twH9rbE=
Fingerprint: 42:7c:6e:ff:76:6a:db:c9:ba:c8:f7:f4:f7:f9:23:5b

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1845118841 | 2024-05-06T05:52:15.466176

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 05:52:15 GMT
Content-Type: text/html
Content-Length: 10918
Last-Modified: Thu, 18 May 2023 20:21:38 GMT
Connection: keep-alive
ETag: "646688d2-2aa6"
Accept-Ranges: bytes

589765266 | 2024-04-21T20:48:32.262624

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Apr 2024 20:48:31 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.knowyourscore.coach/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:3c:4c:9d:9a:a7:4d:e8:4f:2c:cf:f2:89:4f:48:c8:53:1c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jan  3 03:00:01 2024 GMT
            Not After : Apr  2 03:00:00 2024 GMT
        Subject: CN=knowyourscore.coach
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:fb:95:8a:15:36:c8:bc:7f:55:09:95:08:82:28:
                    2a:77:5b:36:f8:68:90:55:49:a9:8c:4b:36:c5:87:
                    03:e8:ab:3f:ce:10:46:46:18:52:4b:5e:99:72:40:
                    fd:98:29:d3:a1:7a:03:bd:ad:71:77:38:09:8b:9f:
                    c8:e8:7c:fe:33
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E0:3E:CE:69:76:03:25:6F:52:94:09:AA:BF:7D:84:5C:A0:BB:FB:0D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:knowyourscore.coach
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Jan  3 04:00:02.146 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:53:34:77:F4:24:B0:13:08:D8:FD:4A:0D:
                                C3:C4:39:52:E1:1C:46:78:CC:AA:84:31:50:15:70:77:
                                8A:8E:0C:2A:02:21:00:E5:59:54:7D:FD:8D:ED:F1:37:
                                C9:9E:55:B9:6A:34:70:F4:B5:40:B2:04:6B:BC:F6:35:
                                8A:EC:23:47:AE:C9:8C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 29:D0:3A:1B:B6:74:AA:71:1C:D3:03:5B:65:57:C1:4F:
                                8A:A7:8B:4F:E8:38:94:49:EC:A4:53:F9:44:BD:24:68
                    Timestamp : Jan  3 04:00:02.318 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7F:8E:87:3C:53:5A:BB:1A:C9:41:16:37:
                                73:D6:3D:6C:E9:2C:92:39:07:BF:85:FD:FD:69:AB:36:
                                0E:BB:12:52:02:20:66:72:BA:30:A8:23:0C:5F:A5:89:
                                15:DC:F4:AF:AD:56:FC:FA:9E:3F:68:E8:D8:EA:B1:DA:
                                3D:15:23:EE:E5:AD
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        41:e3:ff:00:de:a7:63:6e:a5:43:8b:2e:17:e7:85:36:16:82:
        0f:c1:01:24:23:85:ed:95:9a:19:d8:10:99:9a:a3:91:d2:6c:
        26:12:05:bd:e0:93:3c:cd:30:5b:e3:91:00:21:1f:f3:b4:54:
        58:7d:5c:5d:5e:8a:05:b2:82:dd:cf:25:ce:6b:be:78:fd:8d:
        84:7d:94:e4:6b:89:c8:e4:c0:fc:7f:3c:bd:73:5a:02:3e:28:
        6a:23:2f:4c:c3:24:55:be:1c:b1:86:17:d8:9d:8e:de:c6:b8:
        7e:b3:84:08:b3:91:e0:f0:7e:65:d2:08:c9:87:59:fd:78:f4:
        e8:07:ee:a2:11:97:29:06:b2:2c:cf:2f:73:6f:3a:a9:4d:1e:
        be:b0:6f:5b:23:33:de:dc:e7:3d:3c:03:f0:73:67:0e:f2:ee:
        68:e1:98:11:61:76:b8:db:aa:b9:86:ce:e8:1f:42:c1:eb:e4:
        12:4f:6d:60:87:82:bc:99:03:7a:df:d6:2a:64:f7:92:7b:90:
        5d:0b:ed:bb:ca:3d:6e:ef:5a:fd:c7:fd:fe:b5:a6:f9:0b:96:
        af:32:7b:e8:1f:b4:eb:e4:bf:e8:32:d0:c0:3a:49:fc:6d:d6:
        d3:83:aa:ca:b6:7b:90:2f:31:6b:76:6f:fa:a4:5a:df:17:21:
        7f:dd:d0:fe

-1665087982 | 2024-05-05T00:13:16.602322

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.33-0ubuntu0.20.04.2
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

-795948505 | 2024-04-15T04:13:02.189374

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

23.253.205.59

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

825848692 | 2024-04-22T00:58:51.919063
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.7

1845118841 | 2024-05-06T05:52:15.466176
80 / tcp

nginx1.18.0

589765266 | 2024-04-21T20:48:32.262624
443 / tcp

nginx1.18.0

-1665087982 | 2024-05-05T00:13:16.602322
3306 / tcp

MySQL8.0.33-0ubuntu0.20.04.2

-795948505 | 2024-04-15T04:13:02.189374
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

23.253.205.59

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

825848692 | 2024-04-22T00:58:51.919063 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.7

1845118841 | 2024-05-06T05:52:15.466176 80 / tcp

nginx1.18.0

589765266 | 2024-04-21T20:48:32.262624 443 / tcp

nginx1.18.0

-1665087982 | 2024-05-05T00:13:16.602322 3306 / tcp

MySQL8.0.33-0ubuntu0.20.04.2

-795948505 | 2024-04-15T04:13:02.189374 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

825848692 | 2024-04-22T00:58:51.919063
22 / tcp

1845118841 | 2024-05-06T05:52:15.466176
80 / tcp

589765266 | 2024-04-21T20:48:32.262624
443 / tcp

-1665087982 | 2024-05-05T00:13:16.602322
3306 / tcp

-795948505 | 2024-04-15T04:13:02.189374
33060 / tcp