GeneralInformation

Hostnames	dn1.0xf3cdef.xyz jd.0xf3cdef.xyz
Domains	0xf3cdef.xyz
Country	Netherlands
City	Amsterdam
Organization	ABC Consultancy
ISP	SQUITTER NETWORKS
ASN	AS213371
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3306

1860583926 | 2024-04-17T06:18:38.818782

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDCkCm/TNXGBnrWi7GHOq4oIycW3nc9drJHKRfMuXPpXjs5
PMXD2w8LTICztbXXn+eEcWMlyuY6EiLvBhGar8GfF/PZYrd2Ed35OZQjSS0FvdaTVxuLQJzo/Upy
w+BI451zMd0+eXo0fZLjka87C8PuV2T/jteQKvAVdtumEtu+672B72rCXXPkcLAnmX2Gam8fyzaD
FoV+v6clS6foCthUOunu+aFQkviEuWiOdGcp5PgJM+CVqsnF647934JWbWk3DWQ9ZLQLdlfCew/7
hJyTgD8JdJWYD87rK51+8wd756AqQRxqGcbdqZGEccGjzcibFKJRbF+bfBFcrNcBU1Cl
Fingerprint: 3c:4d:8a:8a:2a:5a:e5:b8:39:ca:e3:e5:ec:0c:73:1d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1845118841 | 2024-04-17T12:50:03.669139

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 12:50:03 GMT
Content-Type: text/html
Content-Length: 10918
Last-Modified: Sun, 02 Jul 2023 23:49:32 GMT
Connection: keep-alive
ETag: "64a20d0c-2aa6"
Accept-Ranges: bytes

-706061493 | 2024-04-24T09:21:42.440766

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 09:21:42 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Sun, 02 Jul 2023 23:49:32 GMT
Connection: keep-alive
ETag: "64a20d0c-0"
Access-Control-Allow-Origin: https://app.kora-club.com
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:70:0e:e0:9f:f3:c0:5f:f8:9e:fe:30:55:c3:b3:be:32:4c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 13 00:39:15 2024 GMT
            Not After : Jun 11 00:39:14 2024 GMT
        Subject: CN=dn1.0xf3cdef.xyz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e1:45:ac:6e:82:08:f7:c4:b2:9c:6b:71:5c:16:
                    0a:f0:dc:0b:55:ed:1e:6c:78:31:e3:0e:25:dd:f4:
                    ab:64:39:e6:c4:ca:46:e9:4a:2d:a0:8f:0f:5c:c8:
                    c8:c5:42:e7:0a:c0:a2:d7:6e:18:1d:c4:7e:ce:1e:
                    6b:87:4a:1e:bc:c0:02:3b:63:2d:2b:09:78:f6:0e:
                    d8:83:a5:e2:97:bb:ed:36:0c:eb:e1:4c:19:c1:de:
                    33:33:ca:2e:dc:c2:fd:16:64:90:43:8a:39:b6:9f:
                    87:e6:71:16:e3:e7:8a:f7:b8:a9:5e:68:da:ae:c3:
                    e7:27:88:a3:93:61:6f:a1:8a:f5:34:c7:97:57:20:
                    70:e3:d6:17:25:4f:a5:58:ad:9b:da:fa:de:6c:07:
                    15:9e:fa:2d:c7:13:2d:af:63:ed:ad:a6:81:d8:c9:
                    fe:d1:18:73:cd:cc:82:b8:c6:a3:a3:11:d3:5c:6f:
                    4a:8a:ee:8f:f4:c6:fc:e3:47:92:be:8e:e8:94:cf:
                    62:43:dd:a0:e6:46:c6:7d:64:17:d3:3a:9a:ef:17:
                    5e:4d:f3:e0:d2:e3:14:b0:06:08:df:a6:c5:29:0e:
                    df:fd:0c:26:a6:ba:3a:e4:86:3b:07:c9:e0:e9:6f:
                    6d:f4:09:64:55:bf:97:b7:1c:a5:49:21:40:94:a1:
                    7a:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5C:BE:15:87:11:F4:0D:A4:C7:73:BA:BE:6E:C9:AA:AB:E3:E4:08:F7
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dn1.0xf3cdef.xyz, DNS:jd.0xf3cdef.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 13 01:39:15.317 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:68:81:03:05:56:34:39:CB:27:4C:8D:5A:
                                95:8B:AB:58:27:CD:4D:6D:79:02:77:CA:9B:AC:FD:1C:
                                1E:D7:53:62:02:20:6A:6D:74:3C:6A:9B:77:3F:A5:1D:
                                43:45:79:21:79:B0:BE:72:56:6B:D1:8D:91:04:4B:46:
                                96:CC:0C:9A:C4:31
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 13 01:39:15.820 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:AE:E2:4A:F6:6A:19:E5:6F:5B:22:
                                34:6C:31:84:49:A4:AB:1A:CF:71:5B:3A:85:B1:C7:1A:
                                A6:48:51:75:42:02:20:32:02:B4:89:E6:C2:2F:16:8B:
                                3E:10:51:27:F7:8D:8C:0A:77:5E:8A:0E:DC:DD:C8:53:
                                F3:26:65:FD:15:D8:7F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        25:fc:69:27:b2:a1:d6:c9:c1:e9:7a:23:7b:82:d3:1c:fd:d7:
        12:08:f5:dd:0a:b3:8d:0c:a2:50:97:92:fa:39:81:31:78:d1:
        f2:9e:00:db:29:ea:ae:be:7d:8e:0c:9c:2c:1c:19:e1:d4:43:
        99:fa:44:6b:93:5d:03:a2:93:cd:93:ad:11:85:57:d7:b8:34:
        11:7a:61:e6:09:68:2d:58:eb:68:19:d7:00:2c:f9:2f:72:e7:
        1d:e6:f0:cf:6d:73:dc:05:da:ad:9e:e4:b8:fa:23:81:99:f8:
        4b:5d:34:0b:e3:c4:df:a2:6f:ad:90:c1:36:35:40:c3:e7:a8:
        91:42:53:7e:06:46:6a:21:1b:95:45:0d:f1:d7:a1:f7:d7:e4:
        48:92:3b:a7:22:af:82:1c:8c:d4:55:90:ff:dd:3e:8a:60:a6:
        9e:1b:a0:ef:e2:d3:fb:3c:ed:a6:d3:8b:64:08:f3:b7:18:c4:
        82:41:11:e2:d8:58:ac:e7:ce:a9:a6:64:f7:73:ea:d2:82:c0:
        7d:e1:04:b3:80:56:65:af:f3:ba:36:76:eb:ce:1f:66:03:24:
        63:06:a9:35:19:5c:41:5f:d2:14:5a:82:27:dc:f5:01:97:32:
        ee:1a:83:70:0c:c2:cf:4d:c6:80:35:bf:83:1f:e0:60:1a:07:
        9f:81:17:3c

971333336 | 2024-04-23T22:42:52.644437

3306 / tcp

MySQL:
  Error Message: Host '224.240.101.141' is not allowed to connect to this MySQL server
  Error Code: 1130

37.49.230.56

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1860583926 | 2024-04-17T06:18:38.818782
22 / tcp

OpenSSH8.2p1 Ubuntu-4

1845118841 | 2024-04-17T12:50:03.669139
80 / tcp

nginx1.18.0

-706061493 | 2024-04-24T09:21:42.440766
443 / tcp

nginx1.18.0

971333336 | 2024-04-23T22:42:52.644437
3306 / tcp

MySQL

Products

Pricing

Contact Us

37.49.230.56

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1860583926 | 2024-04-17T06:18:38.818782 22 / tcp

OpenSSH8.2p1 Ubuntu-4

1845118841 | 2024-04-17T12:50:03.669139 80 / tcp

nginx1.18.0

-706061493 | 2024-04-24T09:21:42.440766 443 / tcp

nginx1.18.0

971333336 | 2024-04-23T22:42:52.644437 3306 / tcp

MySQL

Products

Pricing

Contact Us

1860583926 | 2024-04-17T06:18:38.818782
22 / tcp

1845118841 | 2024-04-17T12:50:03.669139
80 / tcp

-706061493 | 2024-04-24T09:21:42.440766
443 / tcp

971333336 | 2024-04-23T22:42:52.644437
3306 / tcp