GeneralInformation

Hostnames	xlancer-test.com
Domains	xlancer-test.com
Cloud Provider	DigitalOcean
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-1677869478 | 2024-04-22T12:45:06.012736

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC38puO7qAbIwUwNAtEfN6ARfOmNPhKAhh5/pa7068gN+OL
7vtajMb1pWLHKc9WtTrSe/pKjUitJOjoUDd0O0G1Ld/tfDPDrC1b51GqMtuIid798GA67iVpmv6Q
U+blN6DOk/SjZzNAtfll1DkP4YC2JrXhOQHtmQZBmsT6b9QWY66MrrrT4oa0v2FZPrs4Dt/pGQ3a
yzTsSehxZzTzAXU/gK1km4UP47djshfvJXPi7yiiaWj2+nrX6glOa/FEDH7BpvdxOV8A8dG0x4NQ
75tEwXJx4DYjEL4tzZ4bcEGJcNsM3+EPfT57CUggpisIPWM7zRp3M7V7qvXAcYQfxvgYtt9ENf+k
thDxCDkuoIjmzPNr1P8YvfwE65lcT+31+zgfUQYXIkF02oPvAZ8jfSdIHvdC+/SRi1UUXztX/mx2
mWVNqkNiALccFZiRmEHsGZ4Ss8D9OgHxoAbKJNQl2g9SX4bOqxLSczmNSr4Wavlfr2btEV8LAljP
pB9c7REzDhU=
Fingerprint: 53:d5:35:b5:f6:eb:9f:3b:1e:8c:a0:77:29:3d:20:87

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-28T08:44:17.544506

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 08:44:17 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

780672404 | 2024-04-23T19:18:48.538244

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 23 Apr 2024 19:18:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:bc:ea:45:13:ea:b8:0a:a1:ea:f1:eb:5d:fb:c4:f6:dd:9e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 29 22:23:49 2024 GMT
            Not After : Jun 27 22:23:48 2024 GMT
        Subject: CN=xlancer-test.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:de:bc:0e:84:fc:8a:74:a7:cf:8e:a7:d1:8d:50:
                    91:42:2c:ec:f2:62:20:78:e2:65:ce:a7:02:a2:1b:
                    52:54:79:a0:e9:ff:92:7f:f6:f3:22:84:8f:67:a2:
                    74:07:de:6e:57:86:5b:1d:98:49:cd:45:61:0b:8d:
                    82:8d:f7:78:a1:7e:b6:0c:f0:70:49:c7:d3:c0:3e:
                    11:22:40:9a:45:82:78:e6:86:bb:f0:33:59:9f:13:
                    7f:38:4e:04:bf:69:b3:4e:8b:95:f8:78:a4:8b:f9:
                    c4:72:98:95:23:75:ab:a0:9d:32:d0:5b:cc:c4:46:
                    ea:09:9d:0c:fe:0c:2c:dc:24:f2:4c:11:4c:ce:05:
                    ce:5b:3b:d8:d0:f1:d0:15:9a:df:9e:6a:17:f2:74:
                    a5:1f:ac:c3:29:a2:99:93:5e:d6:7d:86:3b:35:18:
                    81:a6:6b:24:ab:35:a6:58:8c:c0:54:31:57:f9:78:
                    36:0f:03:db:3c:ec:17:9c:eb:a1:7b:b8:eb:b1:21:
                    f2:53:c7:13:01:1f:b5:bc:f5:14:d8:11:e7:be:b0:
                    86:e1:78:dc:37:ac:78:19:82:2a:05:a5:33:61:e1:
                    56:be:6d:bb:01:d4:d0:75:a7:be:e2:39:75:2e:88:
                    f1:06:8a:a5:b6:48:54:68:c5:e4:09:bc:97:03:ce:
                    8c:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A3:2F:68:42:D9:62:4E:F1:80:56:D4:4A:DE:A8:1B:51:0B:9F:B9:7E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:xlancer-test.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 29 23:23:50.072 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9C:4C:EB:6B:6E:F2:08:F8:21:9D:E4:
                                3C:08:4C:CD:08:2E:10:53:7C:C4:CC:B9:1B:62:12:94:
                                60:8D:76:24:DE:02:20:17:BD:89:9C:D4:64:98:F8:08:
                                7E:0C:E6:7F:92:BD:23:28:85:4F:0D:12:2F:5F:91:98:
                                B3:DE:33:0A:29:00:65
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 29 23:23:50.074 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:50:8C:F0:86:C3:89:7C:B4:28:2A:5D:DC:
                                93:AC:6F:D1:2E:B8:8A:CB:DC:71:80:41:8B:92:FB:AA:
                                03:D4:C4:57:02:21:00:F3:99:4E:C7:10:E0:77:7B:BB:
                                14:B1:FA:C8:D3:1C:4A:1C:E8:93:45:0C:5E:B0:DE:B4:
                                92:AB:DA:A9:5B:AC:A0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:6e:e3:4d:3c:1d:60:8d:6a:77:a2:d4:29:1f:89:f9:bd:b6:
        6a:d6:08:0e:42:b1:a9:98:fd:e3:26:a5:72:e2:30:54:3b:89:
        72:72:e8:94:88:ce:0c:cb:31:2a:1a:46:68:df:c7:4d:9a:c1:
        f3:38:ec:75:29:b4:52:1f:45:45:95:1d:a3:14:49:57:6c:f9:
        db:88:fb:b0:70:ee:8b:83:cb:f2:2d:14:de:14:63:ec:77:83:
        9b:cd:7c:a2:f7:ce:82:04:f3:29:59:9b:b7:bb:e3:d0:da:e4:
        0c:b9:b6:3b:09:54:d5:5e:6f:53:13:0d:bf:f0:3b:03:f3:16:
        b5:16:fb:b3:8d:c1:c7:5b:3c:28:85:ff:58:b2:d8:c5:e7:e5:
        89:6a:e3:55:20:2e:6b:9a:4a:41:8e:07:68:c8:5c:72:f0:89:
        1e:18:66:61:27:5b:d2:b4:d9:f0:fb:d1:85:0e:8f:42:59:5c:
        9e:af:5f:92:fa:dc:fb:3f:5e:51:e7:c6:cf:8a:a4:af:2e:7e:
        b8:36:9c:f8:4b:3d:7d:00:45:08:4a:b3:29:2a:7f:e9:be:71:
        88:bf:b9:f5:ea:15:e1:bd:bf:21:6f:4d:b4:65:2c:81:d4:6f:
        2c:c7:22:db:a5:dd:48:fb:33:db:f5:f8:fc:28:32:3a:07:66:
        cd:76:b2:0c

46.101.199.63

Last Seen: 2024-04-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1677869478 | 2024-04-22T12:45:06.012736
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-28T08:44:17.544506
80 / tcp

nginx1.18.0

780672404 | 2024-04-23T19:18:48.538244
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

46.101.199.63

Last Seen: 2024-04-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1677869478 | 2024-04-22T12:45:06.012736 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-28T08:44:17.544506 80 / tcp

nginx1.18.0

780672404 | 2024-04-23T19:18:48.538244 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1677869478 | 2024-04-22T12:45:06.012736
22 / tcp

677579724 | 2024-04-28T08:44:17.544506
80 / tcp

780672404 | 2024-04-23T19:18:48.538244
443 / tcp