GeneralInformation

Hostnames	velaryon.xyz static.77.212.161.5.clients.your-server.de
Domains	velaryon.xyz your-server.de
Country	United States
City	Ashburn
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS213230
Operating System	Ubuntu

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379

-139578486 | 2024-05-05T08:51:18.950087

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFk1s6qOMZMTOwud1xMrluQt
JcE0DUaiJrq/KJkH+IHm0sFbmzTPqMJRG4iHcaP1xUZhjNcSHKAyJS6+vEziu5Y=
Fingerprint: 99:05:43:94:be:03:f9:67:9f:bf:6d:fb:f0:8d:be:7f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-02T09:18:49.526736

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 09:18:49 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://5.161.212.77/

1680642493 | 2024-05-08T06:27:18.736554

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 06:27:18 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: NRD7ZQe8Iw
x-envoy-upstream-service-time: 31
x-cache: Hit from cloudfront
via: 1.1 b46ea00af935bf6290d93c76c66e0c8e.cloudfront.net (CloudFront)
x-amz-cf-pop: YUL62-P2
x-amz-cf-id: Q0XbxAgzHvLPsYvMRTXSKZdjPzTWp_t57uU9B6RqokgqlwNIRElZXg==
age: 104
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:76:ae:29:68:68:52:92:2c:c6:9d:27:ae:64:51:43:e8:2d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 13 19:53:52 2024 GMT
            Not After : May 13 19:53:51 2024 GMT
        Subject: CN=velaryon.xyz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:39:81:5d:37:f9:44:0b:1f:39:5b:80:ef:f4:
                    7c:2b:78:31:1a:38:c7:49:1f:3c:b1:10:95:30:ff:
                    50:fa:b7:fa:3d:e8:21:0a:d0:ae:8b:a5:d9:9b:fd:
                    e3:0c:fc:b2:42:6a:2e:c0:0c:7a:44:59:1d:78:6e:
                    87:d8:66:7c:70:92:64:36:3b:fe:e0:4f:ce:c3:e2:
                    8e:5a:39:b2:ce:92:1e:c4:2c:5d:84:ee:27:19:a6:
                    35:4b:34:b9:7f:50:ca:50:3f:72:9e:18:98:d4:ab:
                    a4:08:75:d7:00:70:f9:6b:5d:5a:c8:49:79:ba:b5:
                    58:bd:ce:8e:41:8c:69:60:a2:69:2a:08:7c:70:0d:
                    ca:f4:60:22:26:02:99:ac:f8:67:15:70:b3:14:4e:
                    80:4b:a6:2d:bc:e7:07:eb:6f:b8:83:e3:e5:08:55:
                    e7:86:cd:a0:82:f3:3d:e1:ba:b0:03:f4:4e:a0:07:
                    3a:dc:6b:a9:13:5b:9e:2a:f2:59:85:c5:3a:a5:0e:
                    64:61:46:ab:24:76:47:5b:18:e6:d9:21:e3:5c:31:
                    2c:a1:c1:d6:d4:d9:1c:f0:85:71:29:0e:f1:bb:4e:
                    05:85:0a:44:ce:d7:f8:8d:9e:00:4a:75:ba:76:f4:
                    b3:03:cd:22:43:e3:df:c7:9c:00:0b:af:32:8a:bb:
                    0f:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8B:D0:02:00:17:5C:30:61:69:5E:84:69:87:FA:87:1A:36:04:8B:32
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.velaryon.xyz, DNS:velaryon.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 13 20:53:52.479 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7C:A1:31:CE:BA:6B:50:CC:CC:48:77:F1:
                                3E:D5:B5:E8:77:F4:09:15:53:37:81:79:DF:BD:ED:9B:
                                2F:3C:A2:60:02:20:69:A6:D3:04:54:6B:CC:91:C7:80:
                                F6:6E:79:88:D2:BB:54:AA:CB:A5:93:74:92:09:6A:BE:
                                31:0E:96:D1:07:00
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 13 20:53:52.544 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7F:89:FD:6A:42:DA:F5:C1:81:74:05:9A:
                                ED:F5:68:FF:65:0E:1D:2D:D5:3A:DA:3F:73:72:19:E4:
                                05:2D:B8:2A:02:20:2D:24:CB:C2:2C:D7:03:58:AD:70:
                                22:48:5B:91:94:9B:35:69:77:1D:37:D6:C8:7F:28:E6:
                                38:0C:A5:D2:7B:8A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        69:39:e0:10:4b:6c:07:15:25:78:ca:91:92:42:a9:f7:e6:65:
        78:14:55:aa:c1:ae:5e:c3:06:bc:2a:d9:31:5e:3a:2d:1e:02:
        e7:0d:47:95:74:25:2e:b2:1f:a3:ff:c9:36:c5:9b:d7:68:08:
        cf:0e:3b:d5:f0:ff:7e:51:a3:e5:38:d9:25:a1:14:61:27:ef:
        b6:52:2b:5d:45:68:cb:b5:b2:61:28:c3:1d:55:a6:00:b4:d1:
        2d:4f:2b:4e:0c:b8:73:9a:b7:2b:74:0b:88:9c:e0:61:6a:10:
        20:82:44:e9:e7:0c:fe:6c:7c:9b:28:ca:ae:de:82:a4:8f:aa:
        aa:23:54:ae:7a:b9:1b:94:ed:c4:68:a9:13:9a:6b:cd:9b:f6:
        dd:07:27:17:85:06:ee:2c:d9:b2:17:38:ff:2d:50:e0:7d:2d:
        1d:45:d3:c0:fe:ff:34:1a:b4:df:d7:82:40:9d:af:fa:27:24:
        78:5a:6b:2c:cc:d3:4f:8b:0a:7d:80:24:83:b0:e6:00:9b:7b:
        2b:fd:72:e9:9b:52:51:3c:b6:2a:f7:a6:fa:d9:a3:76:cb:0a:
        38:b5:d1:6e:8c:7e:2e:02:91:1b:ef:23:20:ed:fb:30:1e:71:
        9d:fb:5b:30:de:1c:78:47:50:b0:29:e5:57:96:f0:e1:3c:09:
        7f:c7:c0:8a

-752183118 | 2024-04-27T03:25:31.800354

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Sat, 27 Apr 2024 03:25:02 GMT
x-trace: evjtljYKd
server: envoy
x-envoy-upstream-service-time: 63
x-cache: Hit from cloudfront
via: 1.1 4afe58622c53f3abab57af35bd692fb4.cloudfront.net (CloudFront)
x-amz-cf-pop: YUL62-P2
x-amz-cf-id: jcqpoHKaYRDuBjwXkbInDn_XRU6tSlmo1_cPJci0ySzgp-Aw4X31_A==
age: 29
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-04-25T05:59:36.761875

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-235246355 | 2024-05-06T04:07:34.482838

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1288534
ETag: W/"13a956-e6S/hFfziAN1tk+MLInDAJD9J/8"
Date: Mon, 06 May 2024 04:07:33 GMT
Connection: keep-alive
Keep-Alive: timeout=5

1344112226 | 2024-05-06T11:53:36.791216

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:7c3cbaf27e881543
redis_mode:standalone
os:Linux 5.15.0-88-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:4c4b728ebb7326d8dac22927f6a246ea2ca2864f
tcp_port:6379
server_time_usec:1714996416700055
uptime_in_seconds:311187
uptime_in_days:3
hz:10
configured_hz:10
lru_clock:3720384
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:14684448
used_memory_human:14.00M
used_memory_rss:21741568
used_memory_rss_human:20.73M
used_memory_peak:86964968
used_memory_peak_human:82.94M
used_memory_peak_perc:16.89%
used_memory_overhead:1501136
used_memory_startup:865864
used_memory_dataset:13183312
used_memory_dataset_perc:95.40%
allocator_allocated:14812960
allocator_active:17784832
allocator_resident:21635072
total_system_memory:8123871232
total_system_memory_human:7.57G
used_memory_lua:31744
used_memory_vm_eval:31744
used_memory_lua_human:31.00K
used_memory_scripts_eval:0
number_of_cached_scripts:0
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:64512
used_memory_vm_total_human:63.00K
used_memory_functions:184
used_memory_scripts:184
used_memory_scripts_human:184B
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.20
allocator_frag_bytes:2971872
allocator_rss_ratio:1.22
allocator_rss_bytes:3850240
rss_overhead_ratio:1.00
rss_overhead_bytes:106496
mem_fragmentation_ratio:1.48
mem_fragmentation_bytes:7097136
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:145632
rdb_bgsave_in_progress:0
rdb_last_save_time:1714685229
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:0
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:63
total_commands_processed:441299
instantaneous_ops_per_sec:0
total_net_input_bytes:233735209
total_net_output_bytes:2115367
total_net_repl_input_bytes:0
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:137817
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:39672
evicted_keys:0
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:1064
keyspace_misses:294524
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:20
dump_payload_sanitizations:0
total_reads_processed:72927
total_writes_processed:72718
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:50
reply_buffer_expands:14
eventloop_cycles:3176473
eventloop_duration_sum:372979428
eventloop_duration_cmd_sum:652501
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:122
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:3553201fe54a67d6ca82a13483f51ecbc148c117
master_replid2:0000000000000000000000000000000000000000
master_repl_offset:0
second_repl_offset:-1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:219.711316
used_cpu_user:231.602958
used_cpu_sys_children:0.002627
used_cpu_user_children:0.003260
used_cpu_sys_main_thread:219.614931
used_cpu_user_main_thread:231.549313

# Modules

# Errorstats
errorstat_ERR:count=20

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=7815,expires=7815,avg_ttl=20280956

# Keys
# NOTE: more keys available in the database
TRSBdIN6T_njGPsasSG0J6fMY6YNn2ErKs7KLYAg8kA
baT4j36hnZ6T1OLJNg3iF9CtuwIUkYPe7cKWxY9LkvU
IzP6pomBotkAgJJAPXaYLpXdUCwgchqC_K0Bd8O6QFY
pMPt5JE2m1Bi9d9sUy-jrp4_5OWlq997LLOy65F-SMI
nvsGSN6FltkJqzJjAQ8koOJfr3hqOoZRFJ85EQkwVaQ
cTuXzyfG8xvCIM0egLaY0OLCVKKfVFEnjFS19_9kqM4
u4az8BmWQ647yGqvQQxVzWcAY3Sie4wZx6xD9zuyTrU
sTX8PGs_vyTbupyrAh6GqMzeibMm6xKGU6hz3y9nR5g
SPBNnsn-MoJdiU-oIEWE5scjK7PjA1NVGavLEcgeg_w
jXYPh_y5jkg6m4HMavQmwZ91Pwfn0b1sf8ewo8WuaJQ

# Connected Clients
id=3 addr=192.168.128.5:47650 laddr=192.168.128.3:6379 fd=8 name= age=311184 idle=26 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=192.168.128.5:47660 laddr=192.168.128.3:6379 fd=9 name= age=311184 idle=27 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=65 addr=224.118.1.185:47792 laddr=192.168.128.3:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=16384 rbp=0 obl=0 oll=0 omem=0 tot-mem=37786 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

5.161.212.77

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-139578486 | 2024-05-05T08:51:18.950087
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-02T09:18:49.526736
80 / tcp

nginx1.18.0

1680642493 | 2024-05-08T06:27:18.736554
443 / tcp

nginx1.18.0

-752183118 | 2024-04-27T03:25:31.800354
3000 / tcp

-1246004407 | 2024-04-25T05:59:36.761875
4000 / tcp

-235246355 | 2024-05-06T04:07:34.482838
5000 / tcp

1344112226 | 2024-05-06T11:53:36.791216
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

5.161.212.77

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-139578486 | 2024-05-05T08:51:18.950087 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-02T09:18:49.526736 80 / tcp

nginx1.18.0

1680642493 | 2024-05-08T06:27:18.736554 443 / tcp

nginx1.18.0

-752183118 | 2024-04-27T03:25:31.800354 3000 / tcp

-1246004407 | 2024-04-25T05:59:36.761875 4000 / tcp

-235246355 | 2024-05-06T04:07:34.482838 5000 / tcp

1344112226 | 2024-05-06T11:53:36.791216 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

-139578486 | 2024-05-05T08:51:18.950087
22 / tcp

589765266 | 2024-05-02T09:18:49.526736
80 / tcp

1680642493 | 2024-05-08T06:27:18.736554
443 / tcp

-752183118 | 2024-04-27T03:25:31.800354
3000 / tcp

-1246004407 | 2024-04-25T05:59:36.761875
4000 / tcp

-235246355 | 2024-05-06T04:07:34.482838
5000 / tcp

1344112226 | 2024-05-06T11:53:36.791216
6379 / tcp