GeneralInformation

Hostnames	cdn.shaapotec.click me8vi89k3.sitesblog.com
Domains	shaapotec.click sitesblog.com
Country	Netherlands
City	Amsterdam
Organization	IT WEB LTD
ISP	IT WEB LTD
ASN	AS200313
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-271405389 | 2024-05-04T17:15:07.009058

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDKQI1WHGwg+vtjZQbPyn0RSmflDFsj++2sC7s1FAQAE8+b
9jwbkVFv934AjC0la77BZf9ygqKDuydqGPvtivD1P7leqNz2hU2pXK32CyjOy0NmmrPfmOipdheo
liB1lxUnIi5Ar6gZWT9m1yLsPc8TDPrLjAvNsRTexmk49AGwI40ecfdB21VKDxjO8OcdheUipkev
CWiYi/PelHM+k+CnSRyLrKXoSXwnfZspfSyMd+mKPPZfSNRmy6C9ohmUdQJx6W1w6j6fvbn3vBCr
a6cPAeDXZ5D8tbRiEMRUPpcfH62ClFAsSIhn09SkBoSi/JF/xcb95kvWyZOS3OaJW4xMsX2EyTg7
Q7493coHWR5D5+gShwv7OJVs3wJ49gtKjN4f3J0oWeVNx/CcnSj6xBp5H0UbytuJ+5dHWnvoG+tf
6eb7xzZbo+eC6tF/IerrmlJ3u89tMWjE6tI4QNKTERCHTCuK+pwaJsbgaoMm1Q1chtrvlcl3UjjE
BwxAT7n7J7k=
Fingerprint: 51:95:e4:74:be:5a:f8:75:9a:4d:99:11:cd:8d:8e:99

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1845118841 | 2024-05-08T02:26:15.692867

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 02:26:15 GMT
Content-Type: text/html
Content-Length: 10918
Last-Modified: Fri, 05 Apr 2024 17:50:28 GMT
Connection: keep-alive
ETag: "661039e4-2aa6"
Accept-Ranges: bytes

-1255326477 | 2024-05-05T01:29:30.981163

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 01:29:30 GMT
Content-Type: text/plain
Content-Length: 18
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:a5:1e:b2:53:4d:0b:49:d5:2e:3f:8f:0d:9b:87:b6:95:95
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  5 16:56:31 2024 GMT
            Not After : Jul  4 16:56:30 2024 GMT
        Subject: CN=cdn.shaapotec.click
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9d:b7:1b:bf:6e:24:41:93:82:1e:23:c6:99:1b:
                    5e:d8:46:c4:58:f9:27:fb:27:d9:7b:c5:e2:b8:88:
                    09:d3:25:b1:f2:6b:ec:69:27:a1:da:10:47:24:4c:
                    0c:b9:05:8d:a4:b4:53:83:c7:fa:d8:78:37:f1:ad:
                    8f:49:e1:b2:80:cb:a2:1d:c3:33:3f:96:65:dc:cd:
                    30:c8:de:31:c6:2c:e7:0b:a7:49:6d:8b:bf:49:68:
                    f2:05:ae:6e:d4:d2:a0:df:23:4d:6f:ee:9d:25:03:
                    68:25:8e:69:c6:07:2a:5e:9f:3b:87:5e:0d:d9:d4:
                    92:09:38:47:fc:29:51:4e:71:ab:53:93:1b:bc:76:
                    cf:84:ab:e5:d2:a2:b6:fa:17:68:49:7d:52:21:41:
                    29:6b:bf:fa:d0:ae:22:3d:e0:a2:4e:07:20:de:8c:
                    79:fa:d8:dc:bb:fa:2b:7b:bc:38:d5:5d:30:5d:96:
                    6e:a9:75:d9:f8:e2:b9:e2:da:79:39:9e:d7:61:15:
                    39:46:a0:f7:a1:a9:dc:b4:f9:3d:4d:a3:04:1f:97:
                    dc:6a:da:bf:48:cc:7a:d7:ff:fc:91:fc:f7:0d:41:
                    7c:69:2b:c0:9b:8a:68:8e:35:88:c9:45:d7:5c:ae:
                    39:c1:a7:26:e2:e2:ac:6f:63:33:13:33:ed:ee:fe:
                    65:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F7:6D:02:C0:4D:97:D8:23:BA:4D:35:8C:98:F9:44:AC:9A:76:5B:8B
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cdn.shaapotec.click
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  5 17:56:31.566 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:56:54:BB:72:C4:0D:64:74:82:A3:26:09:
                                0A:40:6A:5B:B6:B3:11:CC:D7:A9:BC:51:78:D3:FE:FF:
                                1A:54:BE:8E:02:21:00:C9:CF:F1:5A:43:7B:D5:54:BC:
                                AF:23:E2:F0:7D:9D:02:8F:23:71:55:A0:F5:36:A7:31:
                                BA:1C:B7:55:93:12:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  5 17:56:31.763 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:25:4C:E1:3D:FA:74:52:B5:FB:69:
                                BD:F5:29:EB:7C:D8:40:E2:4C:95:A0:C0:21:1D:02:D9:
                                88:91:72:B5:68:02:20:79:51:31:12:D1:90:5B:59:C8:
                                4E:89:8A:99:E8:9A:B3:63:0D:60:B1:AF:D0:8D:A0:65:
                                C4:1C:BE:8F:B0:54:A0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2a:7f:68:d3:60:80:26:60:af:9c:bc:bc:21:e1:36:32:07:6a:
        ee:23:f8:3c:53:0b:7e:8a:1d:c0:34:fb:ab:e7:d7:6a:17:b5:
        01:0a:ae:6b:ac:21:eb:cd:f8:52:c0:57:46:58:ff:ca:42:b5:
        2e:c8:5e:ee:bd:52:3c:e9:c1:22:85:bc:51:b9:d5:f0:c4:83:
        37:0b:a9:27:3a:a7:f8:a3:8f:cd:89:85:af:ea:76:05:96:d4:
        41:ff:07:02:ce:8b:bf:56:10:50:17:4c:e4:26:bd:91:11:32:
        a2:7c:25:33:7a:b1:0c:99:21:b7:5f:2e:f7:f0:cc:aa:b0:b6:
        14:c8:3e:d2:96:03:05:61:f2:46:00:e4:10:1d:74:24:90:63:
        30:59:b2:47:d8:be:86:cb:67:7c:59:ff:98:6b:96:f9:91:f2:
        8e:1c:35:dc:25:47:1b:95:1b:d1:3e:6b:31:fb:eb:54:4e:7d:
        05:9d:c4:97:1c:bf:4f:9f:9d:de:60:ef:6a:47:4c:1b:b5:18:
        6c:b9:6a:a5:cc:8b:60:bd:1f:1a:4a:53:a1:fd:83:36:62:32:
        72:17:5c:02:66:a6:4b:96:56:31:64:15:a3:82:2f:b7:60:82:
        f5:59:ba:51:4f:d4:77:95:82:5a:44:7a:f0:17:09:e8:57:a7:
        0b:ae:ca:1b

45.88.3.92

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-271405389 | 2024-05-04T17:15:07.009058
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1845118841 | 2024-05-08T02:26:15.692867
80 / tcp

nginx1.18.0

-1255326477 | 2024-05-05T01:29:30.981163
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

45.88.3.92

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-271405389 | 2024-05-04T17:15:07.009058 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1845118841 | 2024-05-08T02:26:15.692867 80 / tcp

nginx1.18.0

-1255326477 | 2024-05-05T01:29:30.981163 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-271405389 | 2024-05-04T17:15:07.009058
22 / tcp

1845118841 | 2024-05-08T02:26:15.692867
80 / tcp

-1255326477 | 2024-05-05T01:29:30.981163
443 / tcp