GeneralInformation

Hostnames	badassops.com lilo.dns.badassops.com patriots.net resolusi.net suryo.com
Domains	badassops.com patriots.net resolusi.net suryo.com
Country	Singapore
City	Singapore
Organization	NetActuate, Inc
ISP	NetActuate, Inc
ASN	AS36236
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

53 80 443

-1883206781 | 2024-04-20T08:07:15.904607

53 / tcp

Have a Nice day
Resolver name: auth-sg.dns.badassops.com

-1883206781 | 2024-04-03T15:23:09.274700

53 / udp

Have a Nice day
Resolver name: auth-sg.dns.badassops.com

589765266 | 2024-04-20T20:56:22.884162

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 20:56:22 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://resolusi.net/

589765266 | 2024-04-19T07:28:15.104022

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 07:28:14 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://resolusi.net/
Strict-Transport-Security: max-age=15768000; includeSubdomains;

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:19:a7:7c:e4:77:d6:cf:e0:20:a1:2c:62:79:54:e7:39:61
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 11 19:16:33 2024 GMT
            Not After : Jul 10 19:16:32 2024 GMT
        Subject: CN=*.badassops.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:f6:5d:10:e2:9e:f8:67:fe:e0:e6:11:c2:d9:e3:
                    01:86:a0:71:35:9d:15:8f:79:37:bf:e7:27:4f:3d:
                    2c:92:cc:fc:91:6e:de:5a:33:6b:23:a5:95:d9:e1:
                    36:99:2d:b1:a9:d2:cc:5e:d6:d1:e2:18:f6:6c:45:
                    bd:b9:d9:3e:66
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                24:90:87:61:17:5D:0F:28:6C:CD:D9:C7:6F:EF:D6:B1:6F:63:ED:78
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.badassops.com, DNS:*.patriots.net, DNS:*.resolusi.net, DNS:*.suryo.com, DNS:badassops.com, DNS:patriots.net, DNS:resolusi.net, DNS:suryo.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Apr 11 20:16:33.851 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F1:77:39:8A:52:0C:7E:52:3D:8E:82:
                                4E:89:6E:75:6D:B3:D9:87:19:E8:28:4C:63:FF:A9:51:
                                E1:8B:0F:38:42:02:21:00:E1:D8:C0:D1:AF:64:D3:0A:
                                F8:E5:3B:67:68:D9:4E:85:94:60:51:2D:4C:1C:45:6B:
                                90:8B:13:C4:89:38:63:50
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 11 20:16:33.883 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E6:74:80:AA:46:16:76:3B:39:00:69:
                                B6:70:5E:4E:8B:7A:38:43:C6:91:78:D5:06:EB:8D:BC:
                                B7:7E:FE:09:D9:02:20:7C:C3:CE:7A:8A:F6:1F:3A:5E:
                                04:93:B0:4A:85:3D:67:48:D1:01:60:7F:62:28:98:F8:
                                F7:5E:5B:CB:DC:AB:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8c:28:a1:08:1e:09:8a:25:37:44:6c:68:af:90:70:27:63:02:
        70:86:b3:86:aa:f9:ac:60:7a:d7:82:71:6e:5c:d8:8d:a3:15:
        b4:49:68:e4:aa:85:51:6c:49:c3:9b:83:0a:4b:2e:3b:d6:a3:
        0b:8e:ff:a2:f3:23:72:46:25:10:fb:66:c0:ca:cf:61:f3:f5:
        04:3e:3c:e2:f4:86:4b:06:f0:4b:33:f9:af:e5:12:09:a6:58:
        1a:e4:85:f1:7d:83:17:9c:d9:50:9d:9e:59:9d:1b:1a:0b:e5:
        00:68:00:ae:bd:6c:16:ce:c8:83:09:f0:32:61:3a:8c:de:45:
        90:34:d1:ec:a5:d1:fa:60:ce:3b:d5:96:14:09:3d:97:d4:b1:
        7f:07:e9:c8:2d:dc:51:1c:90:57:8a:22:a6:67:b9:ea:7b:79:
        e4:4a:cf:07:36:f0:4a:c8:86:31:71:30:fe:0f:0e:26:d1:cd:
        fe:fc:cd:ef:a8:70:79:72:a7:77:c1:0f:bb:d1:02:36:85:fb:
        4e:1d:b6:2a:80:71:9a:e4:6f:dc:c5:04:71:5a:43:55:df:30:
        af:0c:c6:9b:41:31:70:41:29:e7:2d:64:35:39:92:dc:bb:40:
        82:74:82:20:dd:26:02:f0:aa:90:96:f2:ea:28:ce:16:63:74:
        2f:13:9a:2b

43.245.49.249

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1883206781 | 2024-04-20T08:07:15.904607
53 / tcp

-1883206781 | 2024-04-03T15:23:09.274700
53 / udp

589765266 | 2024-04-20T20:56:22.884162
80 / tcp

nginx1.18.0

589765266 | 2024-04-19T07:28:15.104022
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

43.245.49.249

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1883206781 | 2024-04-20T08:07:15.904607 53 / tcp

-1883206781 | 2024-04-03T15:23:09.274700 53 / udp

589765266 | 2024-04-20T20:56:22.884162 80 / tcp

nginx1.18.0

589765266 | 2024-04-19T07:28:15.104022 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1883206781 | 2024-04-20T08:07:15.904607
53 / tcp

-1883206781 | 2024-04-03T15:23:09.274700
53 / udp

589765266 | 2024-04-20T20:56:22.884162
80 / tcp

589765266 | 2024-04-19T07:28:15.104022
443 / tcp