GeneralInformation

Hostnames	ec2-3-214-205-131.compute-1.amazonaws.com api.faceartclub.com
Domains	amazonaws.com faceartclub.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Data Services NoVa
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1949896279 | 2024-05-04T10:45:34.067208

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sat, 04 May 2024 10:45:34 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://3.214.205.131:443/

1439402735 | 2024-05-06T18:31:45.059936

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 18:31:44 GMT
Content-Type: text/html
Content-Length: 737
Connection: keep-alive
Server: nginx/1.20.1
Last-Modified: Sun, 18 Jul 2021 02:04:50 GMT
Vary: Accept-Encoding
ETag: "60f38c42-2e1"
Cache-Control: no-cache,max-age=0,must-revalidate
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:70:13:2d:93:7f:ef:22:a7:d0:05:85:bc:44:cf:d9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Mar 11 00:00:00 2024 GMT
            Not After : Apr  9 23:59:59 2025 GMT
        Subject: CN=api.faceartclub.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:29:2b:34:39:ee:6e:5a:24:ac:6c:aa:58:42:
                    04:bb:d7:a7:4d:9d:f3:30:9b:27:60:e3:5c:1c:d4:
                    2a:72:d4:5c:c6:a7:19:ca:a2:16:fe:0b:8e:8c:37:
                    6b:ec:6b:0b:f9:d5:be:37:cd:0b:18:e0:a6:a4:47:
                    73:47:cd:de:cb:53:2c:08:b4:b8:0f:25:c8:fc:c9:
                    73:f1:f9:3b:f9:0c:62:f8:c6:ea:48:2f:a7:54:3a:
                    e1:cc:ac:1c:e7:e0:7d:2c:a2:f3:6c:a6:1e:a4:45:
                    dd:30:01:39:a7:7d:70:21:51:b0:45:c7:79:fb:a9:
                    ea:ba:0c:20:dd:bb:6d:92:04:a8:f6:39:97:3a:fc:
                    69:7d:cc:d4:03:96:47:6a:ec:f8:59:70:9b:88:53:
                    42:37:cb:34:46:45:4f:4d:49:68:e6:58:d2:77:e5:
                    7e:ae:d3:65:a0:6e:d8:4a:89:da:c8:95:82:d3:0e:
                    1a:dc:bb:bb:8e:77:11:1f:bc:60:bd:7c:43:8c:50:
                    85:ca:85:da:90:c9:11:df:6b:73:c9:b9:e6:ef:95:
                    13:fc:a5:9f:3c:26:67:0b:af:3c:d2:8d:e3:2e:3a:
                    a4:6c:7b:c6:7c:6c:a2:15:62:01:85:df:0d:10:19:
                    49:39:4d:ef:08:b3:b9:ed:3a:1e:87:2a:7d:de:fc:
                    14:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                44:1C:21:A6:4C:01:98:77:6D:94:0E:C7:F8:26:DF:A8:14:D7:3C:56
            X509v3 Subject Alternative Name: 
                DNS:api.faceartclub.com, DNS:*.faceartclub.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 11 06:17:37.534 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7E:1B:86:08:D2:6D:26:B2:E7:75:A8:5B:
                                A1:B3:36:18:A9:AB:B4:5D:10:63:E7:C5:B8:C2:0A:8E:
                                72:E3:43:2A:02:21:00:B2:EC:40:FD:AA:AD:4A:36:6E:
                                D7:F6:9F:9F:69:8D:BB:6E:6D:45:9D:E6:DE:AE:D4:E8:
                                A8:38:D8:37:2D:AA:CB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
                                C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
                    Timestamp : Mar 11 06:17:37.577 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:94:02:F9:43:A2:2B:D0:CD:01:48:A4:
                                15:35:30:AA:0C:7F:A1:41:AB:A5:21:4E:B2:B4:E0:1A:
                                BF:D2:03:8A:56:02:21:00:A1:D6:8E:B1:F7:BC:98:12:
                                1F:B6:23:EE:A6:E4:B2:DC:24:4C:69:43:93:7D:A0:4F:
                                F0:CC:94:78:6A:89:E0:20
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar 11 06:17:37.448 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:02:86:E6:89:DA:91:0D:69:80:DB:C5:EC:
                                62:09:AB:00:28:7C:83:25:AD:B3:39:F4:25:D8:1C:74:
                                90:83:06:AA:02:21:00:DA:CD:05:FF:01:05:ED:4A:88:
                                8A:CD:CF:67:A5:AA:FC:79:F6:28:57:EE:55:F3:6D:EE:
                                E4:8C:56:4C:1A:60:5C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        26:aa:eb:72:6d:ce:58:3a:ca:ec:e0:86:b1:d0:a1:96:69:35:
        84:82:99:dd:3a:7a:54:64:88:b3:4a:3a:96:87:17:ec:0f:ee:
        2f:cb:01:a0:f1:4e:d9:5f:d4:e0:5a:f2:b6:54:46:db:2f:2f:
        f6:91:1f:5c:1f:ef:8c:c4:7e:97:8d:bf:ff:d3:27:79:ed:ad:
        68:dc:de:3a:0d:60:9a:7b:e7:70:06:20:b1:38:7f:2f:c5:21:
        99:98:59:5c:24:e7:67:3d:96:8f:0e:7d:31:0e:4a:41:49:02:
        eb:a4:13:57:36:b5:ee:49:07:ca:a2:af:fa:e5:86:13:68:d0:
        30:53:15:3d:e8:e6:dc:ce:24:72:d9:f0:a3:7d:47:5a:21:fd:
        97:9f:8d:b6:7a:61:90:0c:db:12:70:76:2b:67:b8:f2:85:da:
        61:db:e0:61:9f:16:e9:d2:11:47:49:11:54:87:47:f9:bf:ec:
        df:56:8f:ab:5a:ce:5a:c4:e3:9c:ec:93:e8:ba:9e:86:13:3a:
        78:81:77:25:63:6f:b8:2b:45:b7:9c:3c:f0:bd:eb:49:84:e8:
        b8:33:06:7b:39:53:bb:5d:80:db:d5:b1:dd:61:84:0d:6b:03:
        86:7b:3f:48:cf:45:5e:f4:1c:df:b9:47:a9:bf:00:05:70:c6:
        4a:8e:2e:a8

3.214.205.131

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-05-04T10:45:34.067208
80 / tcp

AWS ELB2.0

1439402735 | 2024-05-06T18:31:45.059936
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

3.214.205.131

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-05-04T10:45:34.067208 80 / tcp

AWS ELB2.0

1439402735 | 2024-05-06T18:31:45.059936 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

1949896279 | 2024-05-04T10:45:34.067208
80 / tcp

1439402735 | 2024-05-06T18:31:45.059936
443 / tcp