GeneralInformation

Hostnames	onetimesecret.com juno.onetimesecret.com www.onetimesecret.com static.100.2.13.49.clients.your-server.de
Domains	onetimesecret.com your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

Font scripts

Cufon

JavaScript libraries

jQuery3.6.0

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

1584412971 | 2024-05-28T02:07:41.175742

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Tue, 28 May 2024 02:07:40 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://49.13.2.100/
X-Frame-Options: DENY

-1352827684 | 2024-05-28T02:19:14.927818

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 28 May 2024 02:19:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Language: en
Set-Cookie: sess=3lxvm9wa8acoci95h75q9r1ylojx03xqpuxra70ir74ccjo7rjkpjwuin4cz3osss5585rjp4sl5a4zcdg5q6ceee3e4s7n6od5; path=/; expires=Tue, 28 May 2024 02:39:24 GMT; secure
Strict-Transport-Security: max-age=31536000; 
X-Frame-Options: DENY
X-Via: falk

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ef:66:b4:97:8e:c4:89:f9:f5:bb:1d:49:ea:79:b6:2d:cd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 30 00:23:21 2024 GMT
            Not After : Jun 28 00:23:20 2024 GMT
        Subject: CN=onetimesecret.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:6a:be:62:2b:39:a2:51:bd:4e:37:e0:06:3e:b2:
                    44:02:7b:92:51:0d:fb:a6:b4:15:d1:36:ea:24:6f:
                    f6:b1:99:34:62:2d:a5:04:47:9c:90:84:e4:bf:01:
                    9c:34:30:ca:62:91:30:16:41:3d:5e:f5:7d:e0:09:
                    fd:99:a8:44:1d
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                71:E6:E9:C3:68:5F:38:7F:88:C8:E1:84:03:09:A3:51:63:C4:51:94
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:juno.onetimesecret.com, DNS:onetimesecret.com, DNS:www.onetimesecret.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 30 01:23:21.606 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:36:CC:DE:16:F2:10:BD:30:0A:98:38:1F:
                                FE:CC:0A:2B:E9:2D:D4:8A:BB:1A:94:3F:78:00:EC:21:
                                29:6A:6D:C0:02:20:6A:E7:87:3B:27:18:ED:EC:74:A2:
                                7C:75:27:C7:AF:7D:F0:D9:82:72:28:83:6F:BE:47:C7:
                                5C:06:2E:F8:AB:D3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 30 01:23:21.679 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A7:19:0C:F1:F5:C1:18:DF:81:2E:01:
                                EC:04:44:51:38:B6:18:7B:28:E2:73:7B:8F:C5:50:2C:
                                1A:0B:5A:4A:BA:02:20:15:81:57:A6:C0:17:80:4E:92:
                                40:7F:CC:C8:3E:60:18:C0:60:5F:19:FE:B1:51:39:9E:
                                57:DC:02:F6:2B:DD:91
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1a:90:f1:2d:37:00:95:b4:07:17:6c:e1:84:07:4a:54:44:10:
        2f:15:44:08:80:04:a3:06:47:74:ce:5d:b5:ea:98:1a:e0:a0:
        6d:34:a8:4b:64:be:4e:e0:e0:a1:49:b1:da:d9:3d:2a:d3:50:
        4b:66:a4:7a:39:79:91:49:f0:af:d6:83:63:4b:6a:d7:eb:ac:
        94:a9:de:11:6c:aa:cf:79:d7:63:c2:51:09:fa:db:43:c4:c1:
        3b:64:a0:36:a9:66:9f:b9:91:58:4a:19:b0:eb:e6:45:2e:7c:
        0b:f6:cc:37:73:dd:24:ff:43:e2:30:6a:45:1e:96:22:da:15:
        a7:50:99:01:1f:22:09:59:51:d0:62:1e:63:d5:2c:ca:1f:f9:
        75:f4:21:74:b1:85:6b:03:a2:b3:6f:8a:44:52:06:e0:e1:04:
        80:d6:00:f1:73:5e:80:9f:b4:44:ac:7a:42:cb:0f:22:21:ba:
        18:5e:ad:44:c0:9a:7c:90:1c:57:5e:0b:24:19:fd:f2:a2:fd:
        d9:86:1b:7a:e2:e6:93:cb:fc:c0:50:7e:b4:84:b2:2f:26:09:
        67:20:50:21:6a:a5:5b:90:c1:6f:03:99:df:e3:20:4c:63:d3:
        9e:54:11:26:48:ee:6f:b7:44:0c:19:a9:5f:36:8d:1d:81:46:
        81:b7:eb:d0

49.13.2.100

Last Seen: 2024-05-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1584412971 | 2024-05-28T02:07:41.175742
80 / tcp

nginx1.18.0

-1352827684 | 2024-05-28T02:19:14.927818
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

49.13.2.100

Last Seen: 2024-05-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1584412971 | 2024-05-28T02:07:41.175742 80 / tcp

nginx1.18.0

-1352827684 | 2024-05-28T02:19:14.927818 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1584412971 | 2024-05-28T02:07:41.175742
80 / tcp

-1352827684 | 2024-05-28T02:19:14.927818
443 / tcp