GeneralInformation

Hostnames	ec2-34-195-120-173.compute-1.amazonaws.com api.comehomemontana.hyi.host
Domains	amazonaws.com hyi.host
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 1337

1651973090 | 2024-05-07T01:59:39.137770

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 01:59:38 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 28 Feb 2022 16:52:12 GMT
Connection: keep-alive
ETag: "621cfdbc-264"
Accept-Ranges: bytes

1110563944 | 2024-05-07T14:39:20.404308

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 14:39:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https:;img-src 'self' data: blob:;media-src 'self' data: blob:;default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Vary: Origin
X-Powered-By: Strapi <strapi.io>

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:bf:b1:0b:d8:2c:86:df:64:4c:5f:86:3c:ed:93:53:53:07
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 23 17:17:54 2024 GMT
            Not After : Jul 22 17:17:53 2024 GMT
        Subject: CN=api.comehomemontana.hyi.host
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a8:3c:6f:60:39:4b:a9:eb:e1:e9:31:d9:88:f7:
                    29:2b:56:b1:de:52:76:f9:ff:8a:11:3a:78:3a:37:
                    5f:3a:1e:27:6f:49:1b:8b:10:82:93:5b:d8:36:6d:
                    75:10:b1:e1:97:7c:34:8a:dd:6a:8a:bb:17:06:3c:
                    86:ef:ea:cc:51:6d:3f:fd:8a:90:4b:95:06:7d:b8:
                    40:23:7e:01:ce:dd:e0:66:03:11:63:c5:9a:29:41:
                    f4:15:ba:b1:e0:9c:e6:29:26:fe:c7:74:3b:59:49:
                    a6:0c:4f:02:9a:e5:5a:1f:d7:1b:3f:93:38:f6:0a:
                    61:cc:2d:5b:f0:76:0a:fd:86:71:25:00:4e:c4:4d:
                    6b:4e:df:13:3c:ed:9d:97:c4:29:53:e5:5d:90:1a:
                    41:b5:fc:5b:87:c2:7f:33:54:c9:f8:e4:3c:ba:35:
                    2f:52:c8:bb:8e:98:4a:a2:70:d3:21:ae:c8:f8:fe:
                    9b:8d:e9:81:dd:61:c9:8f:77:6b:9d:ec:60:53:41:
                    4a:eb:2b:d8:75:fa:74:cd:08:e5:08:32:8a:df:72:
                    a6:d8:06:e9:b4:00:55:6e:5d:40:7b:3c:56:5a:2e:
                    bc:6b:50:62:ff:97:bf:41:f6:06:3e:b8:1e:ec:62:
                    06:e1:fb:ad:10:1a:4a:f0:0b:d3:6e:ee:73:43:2c:
                    80:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                03:FD:CB:6F:38:A0:E1:05:DB:32:BA:6F:99:B3:EB:4A:F1:40:DC:B8
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.comehomemontana.hyi.host
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 23 18:17:54.906 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D1:01:2C:A0:7E:A3:54:58:BA:52:37:
                                C0:F6:89:99:C4:D0:9E:77:09:45:DC:3D:C5:37:2E:AE:
                                6B:9C:35:2C:C4:02:20:66:0F:0D:6C:04:52:E3:04:67:
                                08:8A:8C:0F:30:B1:0B:7E:CF:18:DA:ED:3A:34:46:18:
                                A6:3F:76:0E:76:36:31
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 23 18:17:54.953 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:56:73:DF:26:BB:E5:11:7D:DF:86:15:A3:
                                1E:77:B0:4F:27:F6:B3:A9:73:4D:C3:3C:3D:28:C1:25:
                                D6:88:A8:8E:02:20:21:D4:0A:B0:0D:0A:B2:73:8F:8F:
                                F0:44:78:F9:5E:76:A6:E8:7E:DB:88:80:1A:E1:64:7C:
                                ED:55:B7:C3:F7:9B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ab:cf:f9:80:1c:1e:a4:15:9e:d6:86:5b:50:78:ab:5a:79:64:
        3e:f5:c9:d2:45:02:58:4a:8a:df:1a:c0:0d:22:d7:04:fb:d9:
        6e:97:67:83:68:22:e7:4c:8b:40:c5:5f:2f:b0:c2:45:5a:ba:
        bf:dc:df:90:d8:1f:2d:8a:24:1e:51:ea:35:21:52:49:15:8c:
        a4:b0:14:69:1d:e4:92:59:ce:fd:9e:8d:8a:e2:81:52:f1:d9:
        51:6f:84:e6:66:af:1b:d0:1f:30:5c:b8:49:f4:38:ca:89:8b:
        83:42:d7:cd:1a:e1:e9:c9:5a:ae:fd:49:21:cb:11:3c:0a:e2:
        a5:70:2f:53:98:ee:6b:22:c2:95:f1:9f:55:86:b4:22:84:13:
        93:1d:e8:29:ec:b3:78:64:81:b0:d2:af:57:f6:9d:50:10:83:
        ec:8a:38:20:83:34:99:08:81:42:9f:3c:c3:10:2a:d8:03:a3:
        f6:9f:1f:eb:9d:51:ba:f0:4d:c8:ab:f4:80:69:03:bf:df:39:
        36:41:81:3e:42:6f:64:cd:8c:b5:69:a6:41:85:19:5e:9e:20:
        45:5e:0c:6a:57:cd:ea:17:32:10:df:d1:ad:6a:00:91:7a:0e:
        8d:76:f6:96:8d:3a:57:11:b2:aa:d3:59:50:50:cc:d1:85:0d:
        d3:86:b6:0c

1859709366 | 2024-05-10T00:07:36.496306

1337 / tcp

HTTP/1.1 200 OK
Content-Security-Policy: connect-src 'self' https:;img-src 'self' data: blob:;media-src 'self' data: blob:;default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Vary: Origin
Content-Type: text/html; charset=utf-8
X-Powered-By: Strapi <strapi.io>
Date: Fri, 10 May 2024 00:07:35 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

cfe
<!doctype html>
<html>
  <head>
    <meta charset="utf-8" />
    <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" />
    <title>Welcome to your Strapi app</title>
    <meta name="viewport" content="width=device-width, initial-scale=1" />
    <meta name="robots" content="noindex, nofollow">
    <link href="https://cdnjs.cloudflare.com/ajax/libs/meyer-reset/2.0/reset.min.css" rel="stylesheet" />
    <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css" rel="stylesheet" />
    <link href="https://fonts.googleapis.com/css?family=Lato:400,700&display=swap" rel="stylesheet" />
    <style>
      *{-webkit-box-sizing:border-box;text-decoration:none}body,html{margin:0;padding:0;font-size:62.5%;-webkit-font-smoothing:antialiased}body{font-size:1.3rem;font-family:Lato,Helvetica,Arial,Verdana,sans-serif;background:#fafafb;margin:0;padding:80px 0;color:#333740;line-height:1.8rem}strong{font-weight:700}.wrapper{width:684px;margin:auto}h1{text-align:center}h2{font-size:1.8rem;font-weight:700;margin-bottom:1px}.logo{height:40px;margin-bottom:74px}.informations{position:relative;overflow:hidden;display:flex;justify-content:space-between;width:100%;height:126px;margin-top:18px;padding:20px 30px;background:#fff;border-radius:2px;box-shadow:0 2px 4px 0 #e3e9f3}.informations:before{position:absolute;top:0;left:0;content:'';display:block;width:100%;height:2px;background:#007eff}.environment{display:inline-block;padding:0 10px;height:20px;margin-bottom:36px;background:#e6f0fb;border:1px solid #aed4fb;border-radius:2px;text-transform:uppercase;color:#007eff;font-size:1.2rem;font-weight:700;line-height:20px;letter-spacing:.05rem}.cta{display:inline-block;height:30px;padding:0 15px;margin-top:32px;border-radius:2px;color:#fff;font-weight:700;line-height:28px}.cta i{position:relative;display:inline-block;height:100%;vertical-align:middle;font-size:1rem;margin-right:20px}.cta i:before{position:absolute;top:8px}.cta-primary{background:#007eff}.cta-secondary{background:#6dbb1a}.text-align-right{text-align:right}.lets-started{position:relative;overflow:hidden;width:100%;height:144px;margin-top:18px;padding:20px 30px;background:#fff;border-radius:2px;box-shadow:0 2px 4px 0 #e3e9f3}.people-saying-hello{position:absolute;right:30px;bottom:-8px;width:113px;height:70px}.visible{opacity:1!important}.people-saying-hello img{position:absolute;max-width:100%;opacity:0;transition:opacity .2s ease-out}@media only screen and (max-width:768px){.wrapper{width:auto!important;margin:0 20px}.informations{flex-direction:column;height:auto}.environment{width:100%;text-align:center;margin-bottom:18px}.text-align-right{margin-top:18px;text-align:center}.cta{width:100%;text-align:center}.lets-started{height:auto}.people-saying-hello{display:none}}
    </style>
  </head>
  <body lang="en">
    <section class="wrapper">
      <h1><img class="logo" src="https://api.comehomemontana.hyi.host/assets/images/logo_login.png" /></h1>
      
        <div class="informations">
          <div>
            <span class="environment">production</span>
            <p>The server is running successfully.</p>
          </div>
          <div class="text-align-right">
            <p>Fri, 10 May 2024 00:07:35 GMT</p>
          </div>
        </div>
      
    </section>

    
  </body>
</html>

0

34.195.120.173

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-05-07T01:59:39.137770
80 / tcp

nginx1.18.0

1110563944 | 2024-05-07T14:39:20.404308
443 / tcp

nginx1.18.0

1859709366 | 2024-05-10T00:07:36.496306
1337 / tcp

Products

Pricing

Contact Us

34.195.120.173

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-05-07T01:59:39.137770 80 / tcp

nginx1.18.0

1110563944 | 2024-05-07T14:39:20.404308 443 / tcp

nginx1.18.0

1859709366 | 2024-05-10T00:07:36.496306 1337 / tcp

Products

Pricing

Contact Us

1651973090 | 2024-05-07T01:59:39.137770
80 / tcp

1110563944 | 2024-05-07T14:39:20.404308
443 / tcp

1859709366 | 2024-05-10T00:07:36.496306
1337 / tcp