GeneralInformation

Hostnames	api.questbx.com
Domains	questbx.com
Country	China
City	Shanghai
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 6379

-357629105 | 2024-05-10T21:46:09.445220

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDSAkMgGViFpKRJ04JjdhKQ9dKg88ichpYZeWIswot/tIXm
TwjRwfbJpB5O4FZMm2geLYXy1E4/lsANeW6uxL5+wZaWZ3+kpBiX6KsKZMs74FNRSgY6oHaINdMA
ySG42NYuClraUbv11L/C8CS6QoptubHPNajWnhkDcih2wLFGDtKpifyymeXZmnR+39o0pH6KKJdn
OJ8yMzwVpKQ6CHYloz7hHgOmlzmmDm/8xmv1lLJj5KkSKv9BnmnMle2bqZKfF/8DlnaC4Vpgf089
TCCeDqYeRbOooCYUcMGXj5ZYt9OG9CniZ4mjCF8agUEEqrsGpT/gOpElO+gsTs2Jhm3aWwYmALGC
Be7Sm/WoBRDxIbxR/gwipNvIuUv7SSCxtOTVVgdoRGYZ62oGPZSp0h3RdoPcVY4flEaeKvJyaffR
3nYIQuAl0cPDW3ZBSqpZT6pTz/c9gV8QShGgiK8uWCbLXw4QAX1A+RBMcY+x4PUdnKuBDYYA2Mwr
y4N+tttPEuU=
Fingerprint: 93:f3:7c:e1:e3:d5:64:79:bb:87:87:8b:4e:9b:e4:c7

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-158149353 | 2024-05-11T09:01:36.249137

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Sat, 11 May 2024 09:01:35 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1060095501 | 2024-05-08T21:25:37.550868

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Wed, 08 May 2024 21:25:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:01:d8:19:6a:62:95:0d:95:a4:fa:f6:d2:b8:ad:d6:c9:6d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 17 10:18:45 2024 GMT
            Not After : Jun 15 10:18:44 2024 GMT
        Subject: CN=api.questbx.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9f:00:4e:cc:57:69:89:f3:33:97:f1:3d:88:8c:
                    8a:6b:d4:2f:08:6d:3d:25:de:a3:6b:e7:ca:07:7d:
                    2a:5d:ae:72:31:fc:22:84:d1:23:4d:b8:0b:75:67:
                    bf:83:d3:0f:b9:dc:27:8b:83:71:2f:48:ae:e1:81:
                    1d:9f:aa:97:7d:ec:8a:75:ae:15:83:c1:9d:df:2a:
                    45:c2:8b:56:78:9f:2a:9f:bc:e4:fb:eb:d4:c7:21:
                    3b:eb:64:84:13:13:33:11:c9:6b:40:ec:bf:27:6d:
                    be:b2:82:e1:64:6b:bd:0a:27:62:06:0a:8c:4c:ea:
                    61:d6:f4:11:f2:6d:36:98:2c:e9:a7:88:a9:12:43:
                    61:1b:c4:c5:ef:6f:06:1b:58:3c:fa:f2:7e:06:5b:
                    6d:99:3e:6e:62:78:d8:12:11:ac:c0:93:50:c0:05:
                    15:98:45:70:90:40:e1:b2:28:68:98:58:5d:41:d6:
                    2b:1e:1e:ad:9a:ad:49:16:90:c7:39:f9:b1:36:0c:
                    62:4c:af:f0:80:07:65:25:45:8f:d9:63:4e:8f:3e:
                    64:a3:b4:7a:ad:3d:78:37:d1:46:3e:0f:b5:86:5d:
                    e3:47:18:df:18:55:ca:e8:92:d5:27:32:6d:21:7a:
                    ec:bd:01:d1:49:24:ae:de:d3:23:00:72:a7:f1:88:
                    a7:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                77:0E:63:08:B4:C1:F6:19:D9:79:4A:4D:39:98:95:C3:F3:98:0B:AD
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.questbx.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 17 11:18:45.934 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:10:E2:B8:B3:83:D2:42:D3:3E:01:2F:81:
                                9B:B1:E6:6F:5C:C9:17:E3:48:F8:97:41:61:03:F8:7C:
                                D1:E9:58:2E:02:21:00:92:E1:A7:2D:9F:98:BE:59:20:
                                51:B7:3C:72:29:86:9F:F2:30:2C:6C:7E:9B:47:BF:09:
                                04:61:F8:B6:4A:5B:91
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 17 11:18:46.043 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:51:E7:9B:5B:CB:28:AE:C3:5E:E9:4E:B6:
                                18:C6:F6:88:9C:5A:5B:C0:9C:A2:B2:3D:A1:D4:03:E4:
                                58:93:81:E9:02:21:00:F5:96:B2:FA:82:C1:47:5E:88:
                                87:5E:B8:48:DF:06:6D:4D:5D:C8:CE:4F:82:DD:F3:CB:
                                A4:A1:0C:27:37:84:62
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0d:71:72:6d:0f:5c:65:85:25:ab:d8:67:dd:e3:b5:36:b8:77:
        e8:7d:4e:a3:ee:65:36:aa:89:69:10:6d:d2:89:91:1f:90:ed:
        bd:1e:63:39:67:f9:76:62:b4:b3:d8:89:d5:f6:7d:6f:24:36:
        81:eb:9e:d8:ab:53:8a:bd:92:17:35:17:6a:2f:fe:29:e9:7d:
        75:a0:07:bc:3b:aa:93:08:0e:f5:cf:5e:17:35:82:d6:8a:a3:
        cc:8d:98:ce:da:4b:4c:30:96:00:2a:6b:bf:14:c2:f4:cf:67:
        00:cb:77:c5:f0:e2:a6:b1:6b:bc:6e:1c:b1:6a:1b:04:aa:9a:
        87:23:f5:07:3c:6c:81:64:4c:82:ad:92:a3:e7:e6:12:1d:73:
        a5:01:3d:2c:cb:99:5c:ad:aa:3f:ea:f1:62:6c:9d:d5:af:8b:
        70:9e:3d:14:8b:51:20:ee:69:88:ff:c7:cb:15:97:b9:05:91:
        fb:98:cf:0e:27:77:3c:c9:bd:ba:7c:6b:31:7f:b5:ac:73:64:
        da:75:c8:c8:81:8c:16:d6:10:cf:02:8a:04:81:a1:1a:22:a1:
        53:fb:74:91:d5:5d:76:c5:f0:fc:17:10:92:90:c2:29:95:10:
        e2:0a:e9:a2:70:c9:92:1d:f1:aa:36:71:ab:55:d2:ee:d0:e4:
        8c:1c:be:30

-1927723706 | 2024-04-29T14:30:50.040888

6379 / tcp

-NOAUTH Authentication required.

47.100.50.182

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-357629105 | 2024-05-10T21:46:09.445220
22 / tcp

OpenSSH8.4p1 Debian 5

-158149353 | 2024-05-11T09:01:36.249137
80 / tcp

nginx1.18.0

-1060095501 | 2024-05-08T21:25:37.550868
443 / tcp

nginx1.18.0

-1927723706 | 2024-04-29T14:30:50.040888
6379 / tcp

Redis key-value store

Products

Pricing

Contact Us

47.100.50.182

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-357629105 | 2024-05-10T21:46:09.445220 22 / tcp

OpenSSH8.4p1 Debian 5

-158149353 | 2024-05-11T09:01:36.249137 80 / tcp

nginx1.18.0

-1060095501 | 2024-05-08T21:25:37.550868 443 / tcp

nginx1.18.0

-1927723706 | 2024-04-29T14:30:50.040888 6379 / tcp

Redis key-value store

Products

Pricing

Contact Us

-357629105 | 2024-05-10T21:46:09.445220
22 / tcp

-158149353 | 2024-05-11T09:01:36.249137
80 / tcp

-1060095501 | 2024-05-08T21:25:37.550868
443 / tcp

-1927723706 | 2024-04-29T14:30:50.040888
6379 / tcp