GeneralInformation

Hostnames	boklenaliy.beget.app www.boklenaliy.beget.app
Domains	beget.app
Country	Russian Federation
City	Saint Petersburg
Organization	Beget LLC
ISP	Beget LLC
ASN	AS198610

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 3306 33060

677579724 | 2024-04-11T21:46:28.759818

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 11 Apr 2024 21:46:28 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-783928379 | 2024-04-08T11:45:58.287175

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 08 Apr 2024 11:45:58 GMT
Content-Type: text/html
Content-Length: 273
Last-Modified: Tue, 05 Mar 2024 08:29:19 GMT
Connection: keep-alive
ETag: "65e6d7df-111"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:72:a4:a2:87:db:38:cd:4d:85:f9:8b:b1:2b:ae:3e:0f:78
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 28 07:51:34 2024 GMT
            Not After : Jun 26 07:51:33 2024 GMT
        Subject: CN=boklenaliy.beget.app
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a5:cf:fb:c5:64:ba:cf:8e:ed:d2:28:8a:b2:44:
                    f9:9f:70:11:4b:ae:01:c4:cb:90:47:9b:2d:70:bc:
                    ef:f3:68:7f:c8:2f:74:47:9f:3b:15:d7:ae:34:89:
                    a9:3b:10:13:ae:f1:da:9e:9f:30:0b:5a:6a:c9:79:
                    18:59:bf:2f:dc:22:e8:cf:8d:f9:41:4d:e3:56:b5:
                    2e:58:65:fa:3e:84:4c:f8:0b:60:25:4e:ea:20:92:
                    94:ff:ac:75:85:71:42:e5:c6:fb:54:8b:cb:77:d9:
                    ab:3e:3b:70:48:d9:55:ba:64:b0:98:79:c5:4f:41:
                    6f:05:c5:40:91:0a:60:8d:b0:04:d4:ae:df:bf:23:
                    eb:18:3b:58:9f:fc:ff:40:2a:f0:9c:b3:7f:50:40:
                    54:72:44:07:f8:05:94:9d:97:bc:18:e7:20:42:9d:
                    f2:f9:99:2b:c1:1a:74:cd:94:c1:8d:8d:d8:64:f5:
                    9c:0c:11:fd:06:af:99:f3:0e:60:e7:e7:23:b9:bc:
                    09:6d:3d:5e:77:47:73:44:88:2d:11:cb:28:bc:7e:
                    7d:58:50:a1:42:88:f9:6f:0b:4c:0c:95:a4:ce:d9:
                    fa:0a:bf:ca:86:7a:5c:7d:6d:f6:79:44:08:82:e2:
                    af:e7:51:bb:8a:23:9c:cb:69:14:43:12:5f:92:91:
                    3d:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8C:BA:3F:36:98:4F:29:8A:F9:42:0C:8B:46:FB:CA:AE:77:EF:EC:BE
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:boklenaliy.beget.app, DNS:www.boklenaliy.beget.app
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 28 08:51:35.112 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:25:CF:E7:82:1A:AC:28:16:58:95:A5:EE:
                                FA:09:A7:5B:DD:D7:77:F8:22:E4:53:E1:97:5C:DF:16:
                                D3:51:1F:3E:02:21:00:A1:6C:9A:96:80:BB:0E:BC:29:
                                CA:40:05:92:FA:C6:91:2A:E7:B6:B2:34:8B:2C:ED:5E:
                                F2:0B:F6:B7:40:BA:0A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 28 08:51:35.168 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AD:0C:41:8D:D1:65:4A:7D:6A:3D:AB:
                                D9:52:E0:62:1C:70:98:02:38:7F:A3:F3:BD:EF:6E:71:
                                75:F7:30:24:12:02:20:7D:D8:B5:9B:AC:12:86:14:B5:
                                FD:4B:22:D1:C1:EE:51:D1:98:60:23:FE:74:E9:78:DC:
                                CA:6E:4E:83:FF:A5:22
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:e9:d5:5a:2a:cd:01:7c:33:23:2e:f6:6b:15:af:02:44:0a:
        57:6e:d2:0a:c9:bf:1a:c9:79:32:87:f9:3d:cf:37:7e:88:2a:
        a4:a3:a9:4b:82:26:51:60:4d:4c:ab:b2:33:54:69:70:f3:8f:
        5b:a7:e1:b6:03:d7:d3:40:a2:d5:12:27:64:99:16:95:d2:bc:
        f4:b2:c6:a3:9e:9a:aa:f2:5f:2a:cc:d3:45:d6:4a:52:c1:ff:
        4f:04:3f:cd:4e:b6:2c:f8:8b:30:47:23:62:b6:13:3d:51:53:
        ad:0f:74:d1:9c:96:d4:78:39:6f:ad:a3:15:eb:4d:fb:33:4e:
        9c:ec:d3:89:0e:fa:b2:c1:6b:d1:20:6a:00:ed:94:db:60:f2:
        1a:e0:4b:c1:64:e5:4e:60:c2:a4:78:6b:73:71:a9:68:d7:5a:
        5f:9a:be:7a:b8:be:00:91:9f:e8:c8:e3:de:2d:d6:c4:19:e1:
        b6:4b:52:ec:b4:5b:ce:1a:f1:38:cd:eb:e1:c2:41:ac:a8:61:
        17:2c:07:31:69:0e:4c:bf:23:c9:06:81:e2:51:b8:a3:fb:98:
        0b:31:32:da:6a:b2:52:1e:5f:59:ec:00:3b:66:43:52:f3:b4:
        cf:3a:8b:33:0a:16:c5:55:dd:2a:ca:e3:cc:1e:55:d9:53:d5:
        93:b9:7e:72

2131906928 | 2024-04-08T08:19:02.194092

3306 / tcp

MySQL:
  Error Message: Host '224.16.168.202' is not allowed to connect to this MySQL server
  Error Code: 1130

-795948505 | 2024-04-12T20:23:57.728251

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

45.141.76.88

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-11T21:46:28.759818
80 / tcp

nginx1.18.0

-783928379 | 2024-04-08T11:45:58.287175
443 / tcp

nginx1.18.0

2131906928 | 2024-04-08T08:19:02.194092
3306 / tcp

MySQL

-795948505 | 2024-04-12T20:23:57.728251
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

45.141.76.88

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-11T21:46:28.759818 80 / tcp

nginx1.18.0

-783928379 | 2024-04-08T11:45:58.287175 443 / tcp

nginx1.18.0

2131906928 | 2024-04-08T08:19:02.194092 3306 / tcp

MySQL

-795948505 | 2024-04-12T20:23:57.728251 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

677579724 | 2024-04-11T21:46:28.759818
80 / tcp

-783928379 | 2024-04-08T11:45:58.287175
443 / tcp

2131906928 | 2024-04-08T08:19:02.194092
3306 / tcp

-795948505 | 2024-04-12T20:23:57.728251
33060 / tcp