GeneralInformation

Hostnames	ec2-34-202-182-190.compute-1.amazonaws.com nespy.com www.nespy.com
Domains	amazonaws.com nespy.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

CDN

Google Hosted Libraries

JavaScript frameworks

AngularJS1.6.9

UI frameworks

Bootstrap3.3.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7676	5.4angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "<option>" elements in "<select>" ones changes parsing behavior, leading to possibly unsanitizing code.
CVE-2019-8331	6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
CVE-2019-10768	7.5In AngularJS before 1.7.9 the function `merge()` could be tricked into adding or modifying properties of `Object.prototype` using a `__proto__` payload.
CVE-2018-20677	6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676	6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042	6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040	6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
CVE-2016-10735	6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

80 443

1032085703 | 2024-04-13T09:48:55.242657

80 / tcp

HTTP/1.1 200 OK
Date: Sat, 13 Apr 2024 09:48:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 565
Connection: keep-alive
Vary: Origin
X-DNS-Prefetch-Control: off
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: W/"235-jASn7CmyabTY+VZ8So4WiDat8+o"

1032085703 | 2024-04-15T17:07:12.995940

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 15 Apr 2024 17:07:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 565
Connection: keep-alive
Vary: Origin
X-DNS-Prefetch-Control: off
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: W/"235-jASn7CmyabTY+VZ8So4WiDat8+o"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:9d:3c:4b:f4:74:6c:c9:2a:09:76:c8:80:cb:3a:a0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M01
        Validity
            Not Before: Sep 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=nespy.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:75:76:2b:dc:5e:16:4a:6f:83:e4:d9:20:13:
                    8d:f0:a0:9f:eb:97:c6:04:3d:82:e5:af:69:54:e3:
                    79:f3:02:39:55:b0:a6:db:09:8f:fb:d8:77:c0:03:
                    a1:bb:ae:6c:5d:b3:48:6c:ae:89:0d:77:cd:bf:38:
                    90:68:34:86:e0:33:a6:7d:8f:76:c3:29:37:5f:62:
                    f5:c7:7f:67:6c:f6:cd:07:8e:a2:7d:35:5e:09:30:
                    ee:b8:86:53:de:f1:b2:c3:db:1f:87:d9:9d:b8:c4:
                    cc:7a:de:2a:d5:56:50:80:a0:8a:de:49:57:6b:81:
                    9b:69:70:59:ee:a2:34:3c:16:dc:7d:9c:fb:e6:a4:
                    6a:58:1f:2d:c5:b2:89:4e:c9:30:40:40:f4:12:c9:
                    4b:53:34:af:dc:82:88:e6:5f:14:6d:24:48:5a:51:
                    f7:c1:de:3f:2a:7d:d4:55:b1:36:a1:65:af:f1:dc:
                    99:fe:09:26:6b:2b:a9:d3:16:dd:f9:c2:0f:f7:71:
                    4e:22:26:2c:12:f8:17:5b:e0:6d:f7:73:1a:b7:52:
                    f9:79:3e:ea:7f:d4:6e:5c:a8:90:29:82:af:2b:52:
                    5f:61:17:21:36:d8:aa:0c:e9:a0:80:e3:a9:da:c8:
                    06:3c:55:e0:22:43:ea:31:80:38:d3:58:d2:c3:d9:
                    b1:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:B8:0E:63:8A:89:12:18:E5:FA:3B:3B:50:95:9F:E6:E5:90:13:85
            X509v3 Subject Key Identifier: 
                7F:65:F6:52:78:F6:0B:74:7B:6C:A6:13:ED:F7:FB:BE:0A:0B:F2:62
            X509v3 Subject Alternative Name: 
                DNS:nespy.com, DNS:*.nespy.com, DNS:www.nespy.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m01.amazontrust.com/r2m01.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m01.amazontrust.com
                CA Issuers - URI:http://crt.r2m01.amazontrust.com/r2m01.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 25 03:37:39.908 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:3F:7B:9F:55:47:58:B8:D7:F8:0A:44:2B:
                                D5:D2:E6:D6:61:E7:98:9F:77:E6:F8:FF:D6:EE:50:18:
                                49:72:7D:92:02:20:2C:F1:4B:99:43:0C:8B:32:04:A2:
                                48:FC:A0:64:26:A5:4B:F3:53:1E:2C:CE:7F:57:A1:91:
                                36:35:3B:4E:C9:3F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 25 03:37:39.985 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F6:BD:DD:01:23:3C:2A:D2:00:95:00:
                                53:B1:D1:5E:72:B8:26:2A:E3:FB:26:8A:14:27:7A:82:
                                AF:6C:49:32:74:02:20:30:FD:50:67:4B:B2:77:6A:1B:
                                90:A0:23:A2:C4:3B:BF:58:45:15:77:95:33:22:FC:A5:
                                25:C8:F4:B6:65:FC:F1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 25 03:37:39.942 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:21:A3:A6:EF:5C:71:B7:9D:B4:66:C6:07:
                                78:BA:AF:5E:BC:3D:F8:FC:D6:2E:76:38:C8:EF:1D:04:
                                FB:85:7C:2C:02:20:22:DF:73:09:AF:82:2F:08:94:45:
                                0A:F4:4E:D2:2D:60:97:03:B8:00:05:A2:EE:F9:42:DE:
                                5B:76:83:3E:23:1D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b6:37:e2:85:c4:25:1a:df:9b:84:86:e0:13:e9:a7:b0:54:1f:
        41:12:8b:92:11:22:62:f0:1c:95:c4:60:03:24:cf:82:9c:5a:
        3f:cc:09:11:8d:da:19:23:88:a7:ec:59:8f:56:aa:20:4a:89:
        ed:e5:15:5e:62:30:24:28:82:c2:d6:dc:dd:55:35:36:23:32:
        ce:6e:ed:1d:45:84:a7:5b:ab:73:d2:85:70:3b:71:a0:4c:9d:
        7b:56:ae:72:a8:6b:1a:50:0c:61:ed:99:9f:a0:68:cb:e4:11:
        b1:b4:bc:64:b3:ca:91:e3:2f:cc:a5:36:61:26:66:5d:0b:90:
        3a:a4:3f:76:88:8a:37:18:57:11:2d:91:04:43:62:9f:d1:67:
        32:b6:02:29:8b:9b:80:bb:6d:c6:cc:66:23:0f:1a:4b:af:e8:
        15:a3:e9:e1:86:72:74:f7:f4:1e:de:82:bd:e4:d3:a0:8a:a4:
        fa:49:b5:21:85:2d:d9:3e:24:c2:25:5a:a7:5d:38:64:39:f4:
        fc:9c:8f:f4:42:30:1b:72:c1:dd:61:e9:ab:c1:97:76:ec:f1:
        99:bb:89:e3:4d:bc:9a:1b:39:ef:c4:bb:2d:37:aa:1c:8f:19:
        1d:63:51:f9:bf:f2:94:8a:00:4a:13:ac:fe:37:92:00:9a:23:
        c8:2a:61:d5

34.202.182.190

Last Seen: 2024-04-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1032085703 | 2024-04-13T09:48:55.242657
80 / tcp

1032085703 | 2024-04-15T17:07:12.995940
443 / tcp

Products

Pricing

Contact Us

34.202.182.190

Last Seen: 2024-04-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1032085703 | 2024-04-13T09:48:55.242657 80 / tcp

1032085703 | 2024-04-15T17:07:12.995940 443 / tcp

Products

Pricing

Contact Us

1032085703 | 2024-04-13T09:48:55.242657
80 / tcp

1032085703 | 2024-04-15T17:07:12.995940
443 / tcp