GeneralInformation

Hostnames	ec2-35-156-63-13.eu-central-1.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	eu-central-1
Cloud Service	EC2
Country	Germany
City	Frankfurt am Main
Organization	A100 ROW GmbH
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

181431570 | 2024-04-18T06:23:38.506714

80 / tcp

HTTP/1.1 404 
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Type: text/html;charset=UTF-8
Date: Thu, 18 Apr 2024 06:23:38 GMT
Expires: 0
Pragma: no-cache
Server: nginx/1.20.1
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Content-Length: 306
Connection: keep-alive

445653742 | 2024-04-09T03:58:05.110348

443 / tcp

HTTP/1.1 404 
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Type: text/html;charset=UTF-8
Date: Tue, 09 Apr 2024 03:58:04 GMT
Expires: 0
Pragma: no-cache
Server: nginx/1.20.1
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Content-Length: 306
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:d9:bc:ca:25:35:e6:74:c9:ff:7c:1c:f3:d0:d9:69
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M01
        Validity
            Not Before: Sep 15 00:00:00 2023 GMT
            Not After : Oct 13 23:59:59 2024 GMT
        Subject: CN=*.operon45.pl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e8:f4:4a:eb:a2:07:d3:2c:d7:55:c3:98:f7:2b:
                    74:f1:6d:17:d9:9b:12:80:14:ac:71:49:1f:2c:c9:
                    cf:ad:db:3d:8e:ba:ce:dd:d3:c2:01:a0:e3:37:b4:
                    fc:22:93:4b:9f:6e:4d:6a:46:90:8d:b0:1e:9c:59:
                    62:60:70:fb:08:97:8d:00:04:de:4c:35:bf:bb:20:
                    23:42:d5:50:5a:59:17:a4:3d:b2:a9:f5:66:78:40:
                    cf:86:84:89:47:0d:d1:14:ad:4c:fa:52:41:4f:11:
                    54:03:38:0e:b8:4c:ce:9c:0a:7e:5e:fc:e3:76:c2:
                    1a:49:52:5c:24:85:55:50:75:b6:f9:1c:7d:a9:df:
                    9d:be:d3:25:f1:78:5d:ca:3d:16:2b:ae:51:6e:a2:
                    90:f2:e2:4e:78:da:f0:21:da:a2:ec:2d:97:3f:50:
                    f1:df:20:3a:73:e1:1a:cc:52:86:71:69:89:26:d7:
                    9a:ef:01:75:bc:71:d3:32:7b:6e:23:22:0b:38:1a:
                    85:05:1b:a3:51:99:63:50:02:34:7f:49:4e:94:74:
                    17:32:e9:ee:90:15:90:07:c7:cd:a6:30:3f:46:bd:
                    5e:f2:40:da:f2:64:c5:28:84:e0:c7:b2:aa:6b:79:
                    0f:bc:b6:52:86:11:f9:b8:09:5f:a7:31:ec:24:34:
                    f6:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:B8:0E:63:8A:89:12:18:E5:FA:3B:3B:50:95:9F:E6:E5:90:13:85
            X509v3 Subject Key Identifier: 
                01:B5:C1:39:45:A1:DA:2C:B5:5F:8A:AA:47:42:FC:D8:F6:93:6B:9C
            X509v3 Subject Alternative Name: 
                DNS:*.operon45.pl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m01.amazontrust.com/r2m01.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m01.amazontrust.com
                CA Issuers - URI:http://crt.r2m01.amazontrust.com/r2m01.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 15 07:03:20.517 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:17:DD:89:5D:C5:99:61:EE:11:E1:DD:41:
                                F5:0B:79:C0:FA:99:53:A7:0C:FE:66:D0:BD:FF:91:B9:
                                49:91:4F:43:02:21:00:B8:74:8C:6B:43:45:2E:1B:0B:
                                EC:BD:50:83:D0:A7:42:61:ED:52:14:D8:C1:6E:9B:ED:
                                19:F9:D5:89:B1:84:11
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 15 07:03:20.577 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:61:C3:A5:34:4D:82:2D:C8:0F:6B:99:23:
                                D0:6B:55:D6:30:FA:3C:D9:77:A9:78:30:0A:BE:33:B5:
                                C3:0E:2F:3C:02:21:00:DD:B2:52:F8:A5:56:10:F7:5F:
                                9F:A7:8B:77:AC:D4:70:A6:FD:D1:3B:BA:94:B7:EB:3E:
                                BB:15:6F:1B:6B:2B:1B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 15 07:03:20.595 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BC:8F:C6:78:76:7B:F6:DF:89:B1:0B:
                                F1:F9:78:F4:D4:11:C1:23:F7:8A:38:A9:EA:E6:DE:6D:
                                9D:26:97:66:84:02:21:00:B6:AC:A8:3A:F1:30:E1:8F:
                                F9:31:57:E5:42:51:D1:5D:09:D8:B3:2F:48:A7:37:6D:
                                F4:AC:EC:00:C9:5B:D5:CE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        61:d7:cd:0a:09:3a:fe:7b:76:0e:81:9e:1d:e7:7d:7a:74:a5:
        ca:93:7e:76:8c:82:bb:1d:ac:cf:68:95:c6:15:d0:f2:e4:fc:
        36:51:8d:1a:7f:25:1a:91:06:d3:a4:24:17:3b:af:6d:6a:22:
        48:af:28:01:a8:90:2b:68:50:fb:30:bc:f9:6c:46:cf:04:f6:
        26:a4:da:8e:15:3a:5b:89:50:01:33:ba:ef:15:3a:eb:c6:c7:
        aa:4d:7d:51:74:ae:bc:27:28:c0:b3:01:62:c4:54:66:66:4e:
        3c:9b:5c:cd:e3:a8:bc:58:cf:52:63:94:7f:52:ba:93:c4:a9:
        f4:ba:e1:a5:49:88:ff:b6:76:e1:73:cc:55:21:18:df:aa:43:
        ea:b3:6b:0b:f6:ba:c6:33:c5:3e:52:e8:a0:fd:5f:9a:c4:6d:
        a1:a3:7b:63:59:dc:71:eb:31:d7:e4:d5:ad:7a:ea:99:f1:79:
        9b:4f:29:33:1f:b5:be:3b:1c:e5:69:d1:a0:bf:0b:04:66:29:
        5e:e1:50:43:8d:ee:b4:7e:03:21:df:d1:a2:fe:08:bb:e7:fb:
        4b:e8:6a:5d:bf:e9:92:8e:af:52:80:71:6e:62:8b:de:48:62:
        e7:d3:5a:2a:a7:3d:4b:04:25:7f:0c:3e:c0:d8:06:89:ef:3f:
        99:5b:25:69

35.156.63.13

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

181431570 | 2024-04-18T06:23:38.506714
80 / tcp

nginx1.20.1

445653742 | 2024-04-09T03:58:05.110348
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

35.156.63.13

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

181431570 | 2024-04-18T06:23:38.506714 80 / tcp

nginx1.20.1

445653742 | 2024-04-09T03:58:05.110348 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

181431570 | 2024-04-18T06:23:38.506714
80 / tcp

445653742 | 2024-04-09T03:58:05.110348
443 / tcp