GeneralInformation

Hostnames	boramir.store static.59.117.13.49.clients.your-server.de
Domains	boramir.store your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379

632552153 | 2024-05-02T12:11:45.318063

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMgsozxPKaiQqXAlBXv8YvGm
HVCObkljTspE8hvwik8TXMNY7Ro64rB/gP06Sc2Tejqa1PGhB2SnPHsEOZOmn/Y=
Fingerprint: 6b:73:f7:20:b3:aa:a9:d6:2b:ec:2a:f0:33:87:c4:57

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-02T21:10:10.403320

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 21:10:10 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://49.13.117.59/

1785396869 | 2024-05-03T09:28:11.237654

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 09:28:11 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: l04yMbNv86
x-envoy-upstream-service-time: 17
x-cache: Hit from cloudfront
via: 1.1 39cfa117a3536e9c0afd90708900b558.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P11
x-amz-cf-id: ULLpkp1OeMXatgseLL8ikJXXs99SBM-Be7izhikKk9F2rFsIcn9HfA==
age: 41
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:07:f8:21:4c:c5:68:f7:a5:82:72:84:da:20:88:82:34:54
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb  2 16:48:03 2024 GMT
            Not After : May  2 16:48:02 2024 GMT
        Subject: CN=boramir.store
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d6:7a:7c:a8:88:34:01:de:e2:36:95:d0:22:db:
                    2a:c7:43:b2:46:fe:15:af:63:57:ea:1d:81:4b:7f:
                    68:9e:6e:15:0d:bd:73:cb:8c:03:4d:af:4d:50:9a:
                    d6:ef:a3:a9:4c:0d:80:0d:f5:05:e6:31:e3:da:41:
                    55:96:2e:31:1e:dc:71:f4:98:dc:a0:eb:59:b3:f6:
                    4f:be:5f:66:5e:a5:6d:f2:93:55:ed:05:96:2c:62:
                    89:17:76:24:52:9b:ab:95:35:11:cf:14:af:95:8c:
                    d4:a7:ad:f5:d8:10:42:70:b4:04:79:7e:67:77:03:
                    a7:cc:51:76:01:f3:3d:e7:20:c5:c1:f1:2e:2f:6f:
                    50:e4:b8:e4:7e:31:e0:d1:14:8d:a3:4c:cb:d5:4d:
                    a7:c5:14:6b:bc:4e:29:58:17:af:c6:d7:b4:5a:2a:
                    fb:29:0f:1d:2f:c1:6d:1f:e4:65:c2:13:02:84:7d:
                    d1:e7:cd:2c:ea:99:ba:43:46:34:0b:3e:3f:73:52:
                    2c:13:c1:0e:5b:d5:8e:89:a5:f1:44:96:80:7b:fd:
                    0f:a2:02:1f:35:8b:39:9a:e3:e1:2e:6e:bc:f3:7a:
                    e7:1a:32:f1:49:21:59:9b:f8:a3:49:0c:b9:c8:06:
                    08:8d:a6:22:9c:a0:fa:b2:1f:97:7a:7f:62:05:93:
                    15:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                19:DD:8C:B3:52:A8:D3:7E:63:53:79:A3:80:AF:D5:51:72:3E:19:FC
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.boramir.store, DNS:boramir.store
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb  2 17:48:03.623 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FE:90:AD:7F:C4:D7:1D:90:63:B6:D5:
                                B8:E7:31:1B:03:FC:AC:B2:5F:EB:FC:D3:7C:1D:B4:16:
                                F2:18:07:7D:B2:02:20:4E:D2:9A:CE:BA:90:7F:D5:E1:
                                E7:92:B8:55:99:43:92:71:63:20:A6:A6:1A:9D:83:E9:
                                B8:AA:1D:4A:CD:0C:5A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb  2 17:48:03.674 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6F:FF:6B:86:72:6D:BE:D7:A9:26:E4:A7:
                                48:B8:03:06:6F:D1:C8:83:1C:8A:C6:0E:D5:25:E3:9A:
                                DC:CE:BF:A3:02:20:2D:C9:0B:E1:DD:AF:21:64:59:1D:
                                28:9A:02:D4:8A:7A:F9:03:EE:2A:76:F7:D3:16:A1:2F:
                                FA:AE:E5:64:7B:2B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        76:d8:9e:13:c7:23:c1:49:ef:0d:45:50:8c:5f:2a:37:36:45:
        0d:92:b9:53:12:29:9a:6b:ca:fc:46:ac:95:93:e3:34:79:02:
        b2:2d:3b:66:4d:ba:ef:db:aa:71:25:2a:94:cb:88:15:b7:3f:
        0a:71:ea:37:c3:fc:76:3e:7e:b8:e1:90:45:de:27:58:30:2a:
        21:5c:32:81:21:4e:04:d3:f0:67:0c:92:c7:a0:0b:a5:09:fb:
        a6:53:28:1e:2f:31:c8:49:8b:35:6c:3c:c5:24:dc:f3:13:15:
        09:af:db:ce:9b:c8:88:a1:7d:d8:38:d1:21:42:99:f5:96:c9:
        16:86:00:a6:e0:d4:2a:69:e7:83:31:60:82:4f:b7:e3:bb:fb:
        fa:30:5b:46:d3:17:5d:5b:da:f8:c0:24:09:4b:93:54:c5:1a:
        93:8e:48:bc:39:1d:23:ce:85:ea:b3:7c:4b:ce:e5:d6:56:45:
        22:b6:08:0d:6b:28:26:84:18:e4:5c:39:7a:05:ef:b1:21:f0:
        6b:55:de:9a:d3:40:56:5b:aa:67:f7:88:23:70:53:10:fa:84:
        7d:c7:06:3c:2d:25:fd:e0:3e:a1:52:d7:ad:b6:e9:be:fd:04:
        23:22:5e:8d:7f:b0:0f:77:06:37:0d:e5:c7:8e:15:44:6b:4b:
        d7:a0:09:e5

-117956109 | 2024-04-29T15:17:57.676957

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Mon, 29 Apr 2024 15:16:19 GMT
x-trace: fcaSRsGNRI
server: envoy
x-envoy-upstream-service-time: 8
x-cache: Hit from cloudfront
via: 1.1 553c17cdbfc8c5ba81390077b0e5d2d4.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P11
x-amz-cf-id: YQo9fDqX38_rhIqFNTtFelsX_IJATZBOYdk-N67DVjNvgl8w3wjlhQ==
age: 97
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-04T09:58:08.832444

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-1440231247 | 2024-04-21T12:44:32.541219

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1195728
ETag: W/"123ed0-xVDYqYo4SZ8TOZtd6KTP1cRN9hc"
Date: Sun, 21 Apr 2024 12:44:31 GMT
Connection: keep-alive
Keep-Alive: timeout=5

507203557 | 2024-04-30T22:16:34.770445

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:30468499a8bc54fe
redis_mode:standalone
os:Linux 5.15.0-87-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:5a1b8167e6aa29ec53c607de6057c2b0a7d2e4e8
tcp_port:6379
server_time_usec:1714515394177500
uptime_in_seconds:123606
uptime_in_days:1
hz:10
configured_hz:10
lru_clock:3239362
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:1586032
used_memory_human:1.51M
used_memory_rss:5029888
used_memory_rss_human:4.80M
used_memory_peak:15935024
used_memory_peak_human:15.20M
used_memory_peak_perc:9.95%
used_memory_overhead:888192
used_memory_startup:865928
used_memory_dataset:697840
used_memory_dataset_perc:96.91%
allocator_allocated:1836888
allocator_active:2809856
allocator_resident:5664768
total_system_memory:2008834048
total_system_memory_human:1.87G
used_memory_lua:44032
used_memory_vm_eval:44032
used_memory_lua_human:43.00K
used_memory_scripts_eval:4304
number_of_cached_scripts:2
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:76800
used_memory_vm_total_human:75.00K
used_memory_functions:184
used_memory_scripts:4488
used_memory_scripts_human:4.38K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.53
allocator_frag_bytes:972968
allocator_rss_ratio:2.02
allocator_rss_bytes:2854912
rss_overhead_ratio:0.89
rss_overhead_bytes:-634880
mem_fragmentation_ratio:3.25
mem_fragmentation_bytes:3483872
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:151
rdb_bgsave_in_progress:0
rdb_last_save_time:1714514145
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:131
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:111
total_commands_processed:106768
instantaneous_ops_per_sec:0
total_net_input_bytes:61007066
total_net_output_bytes:3650636
total_net_repl_input_bytes:65472
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:0
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:8098
evicted_keys:0
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:213
keyspace_misses:71087
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:243
dump_payload_sanitizations:0
total_reads_processed:26187
total_writes_processed:26079
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:115
reply_buffer_expands:22
eventloop_cycles:1259040
eventloop_duration_sum:140483178
eventloop_duration_cmd_sum:1406015
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:127
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:01cd04b2c054b9766565ecc2ce4875a6d612f830
master_replid2:df7fe50c42fbea275da60d8dd196027868327b60
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:87.899104
used_cpu_user:82.919651
used_cpu_sys_children:0.001665
used_cpu_user_children:0.003133
used_cpu_sys_main_thread:87.879969
used_cpu_user_main_thread:82.904663

# Modules

# Errorstats
errorstat_ERR:count=243

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=155,expires=151,avg_ttl=28176131

# Keys
# NOTE: more keys available in the database
tOJNllcK5T5kWgun8sf6_eZyUZlp3eu_jMz_lm8Mx2I
_opQLteo6RhFFmDqnRqP2tbAAjdwLMzcp4I2lo3UPVo
bEVrenKzF882q--H42nkNRhkYz7AH1xXV55nP4QMbNM
8ysfqHYid33AypcYlgDZwTz48DPGnXCKLisvddwHQio
X_0d2qHCtkQ6TNHNk_aVwnr01MksNVL5O0P0bOvQRjs
#|qoorSzZo_tWzsBwHa1R6efjmBCWNPrC9MiyG7QQ2PFuC8BmV70Dv7w0_XUbr7HUy
jrgJOF8uvfkgpSn5ZBn7wfXR_qyd3Uw6mk1Ti6CWbbE
_G1dsHGvxpLtxSXwHn26r7f_T6TccqS2eMitf7cEFk4
1wAUC4X50hfqdAoUgauhqi2kwu1ViBH2tKmoqiS4P2k
vBRocCaZ2i90kv0EjeSlP2Ijnx6tsz1Xq9p0aXam3Wg

# Connected Clients
id=3 addr=192.168.80.5:50940 laddr=192.168.80.4:6379 fd=8 name= age=123600 idle=38 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=192.168.80.5:50946 laddr=192.168.80.4:6379 fd=9 name= age=123600 idle=39 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=115 addr=224.245.171.70:37460 laddr=192.168.80.4:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=1024 rbp=540 obl=0 oll=0 omem=0 tot-mem=22426 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

49.13.117.59

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

632552153 | 2024-05-02T12:11:45.318063
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-02T21:10:10.403320
80 / tcp

nginx1.18.0

1785396869 | 2024-05-03T09:28:11.237654
443 / tcp

nginx1.18.0

-117956109 | 2024-04-29T15:17:57.676957
3000 / tcp

-1246004407 | 2024-05-04T09:58:08.832444
4000 / tcp

-1440231247 | 2024-04-21T12:44:32.541219
5000 / tcp

507203557 | 2024-04-30T22:16:34.770445
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

49.13.117.59

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

632552153 | 2024-05-02T12:11:45.318063 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-02T21:10:10.403320 80 / tcp

nginx1.18.0

1785396869 | 2024-05-03T09:28:11.237654 443 / tcp

nginx1.18.0

-117956109 | 2024-04-29T15:17:57.676957 3000 / tcp

-1246004407 | 2024-05-04T09:58:08.832444 4000 / tcp

-1440231247 | 2024-04-21T12:44:32.541219 5000 / tcp

507203557 | 2024-04-30T22:16:34.770445 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

632552153 | 2024-05-02T12:11:45.318063
22 / tcp

589765266 | 2024-05-02T21:10:10.403320
80 / tcp

1785396869 | 2024-05-03T09:28:11.237654
443 / tcp

-117956109 | 2024-04-29T15:17:57.676957
3000 / tcp

-1246004407 | 2024-05-04T09:58:08.832444
4000 / tcp

-1440231247 | 2024-04-21T12:44:32.541219
5000 / tcp

507203557 | 2024-04-30T22:16:34.770445
6379 / tcp