GeneralInformation

Hostnames	haqq.exchange
Domains	haqq.exchange
Country	Turkey
City	Bahçelievler
Organization	G-Core Labs S.A.
ISP	G-Core Labs S.A.
ASN	AS202422

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 123 443 3306 33060

1592113829 | 2024-03-30T11:17:51.661611

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCnMNB/Y1lELrB8YotNGbAEK0+3lSJ2XjvS62opSCJrVnwu
tRaV1C4u8DFjinr8FQJKBEllQLHe2Pc2Hvl25jXVtJOxF2EUfgFSuJO4gMuOf9CvHf0F9Wm2u4wT
eCqhsUHkWDm32wJnXSGUNpPAc1UalPfeLCrfjFlRNayDyjz9BziK8DiftM8IUSPQZUcd4Vm3PCkX
JlQzhOk8sFeV4+79LDZfkJzc5oNtIQE5/fJLqCP6cIdZjKxTT+eLOa5AU535rbhJUBOt+zjwQp5o
PfiFACQyOlYwxQLdzoC12aZjj3RW3D3tx0Mlr77bajYo2bFBieteEb9PXNFHFU4vqISNHJ8fOfPO
0ETwbyULPHVdR0+zXrHZ7Jbidld9luViji5oqR9Ke465DImfXpFs4bFtJptHXiVvNKRrJP0iM6Eg
lyaDPud30uc1xXqk13al6zxFHjU15eeFRwWoj19NWqu9rLv+YHmpa2fA6lnp3tNV176Ln0z+zpmz
bkruk1Zyc38=
Fingerprint: 4a:2c:64:0d:f8:4d:13:2b:dc:ca:e7:3f:2e:7f:ab:db

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-276003940 | 2024-04-17T03:52:19.666148

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 03:52:19 GMT
Content-Type: text/html
Content-Length: 2521
Last-Modified: Mon, 25 Dec 2023 11:26:21 GMT
Connection: keep-alive
ETag: "658966dd-9d9"
Accept-Ranges: bytes

1425613151 | 2024-04-19T05:50:42.187008

123 / udp

NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -23
rootdelay: 0.0106506347656
rootdisp: 0.0268402099609
refid: 3256606213
reftime: 3922494382.26
poll: 3

-567627901 | 2024-04-18T12:21:58.220546

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 12:21:58 GMT
Content-Type: text/html
Content-Length: 10701
Last-Modified: Wed, 14 Jun 2023 09:28:05 GMT
Connection: keep-alive
ETag: "64898825-29cd"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:d0:91:e6:df:c4:80:e2:f9:c8:bb:40:11:be:a4:5d:9d:6f:e8:c0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=California, L=San Francisco, O=Cloudflare, Inc., OU=www.cloudflare.com, CN=Managed CA c1c390b343464caf3381e8b54a4a3991
        Validity
            Not Before: Jun 13 18:10:00 2023 GMT
            Not After : Jun 10 18:10:00 2033 GMT
        Subject: C=US, CN=Cloudflare
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ae:61:9d:ba:e1:0c:37:4b:66:38:04:8b:30:28:
                    a2:3e:ee:c2:a2:93:f5:64:7e:5d:35:e1:ef:cb:df:
                    bb:be:04:4b:ea:9a:15:bc:06:06:2c:31:8f:90:b3:
                    f2:f9:ac:03:b2:9e:44:85:01:df:aa:77:23:61:2c:
                    2e:31:17:a0:39:97:bc:93:39:ba:3a:e3:ad:42:23:
                    f7:cc:05:92:ac:29:ea:f4:1d:6f:41:1d:86:ed:1b:
                    5e:c8:f6:80:45:17:c8:72:df:af:68:6c:b6:b2:2b:
                    03:cb:3e:de:2d:b7:e1:02:2c:9a:e0:37:ef:45:5a:
                    8c:11:5e:e6:cd:13:c3:18:da:21:2b:5d:fa:10:bf:
                    e2:d3:87:16:60:8e:ec:6e:f3:72:7f:17:c3:3e:a3:
                    ca:54:21:15:a0:36:db:f6:fc:98:4b:8f:9a:73:18:
                    ed:ed:1a:b6:5b:b8:60:77:2c:45:99:e0:6c:5c:57:
                    1f:9b:0e:dc:1f:bc:0c:18:75:16:8d:1a:cb:d8:e9:
                    b5:d5:d8:ba:df:e4:84:fd:ed:2a:7e:01:df:8f:da:
                    21:52:46:ae:4d:48:8c:79:8f:d1:cb:24:be:20:e4:
                    5a:aa:18:35:df:c6:f3:9a:1c:d6:cd:68:79:43:ba:
                    ff:a3:75:e8:c7:07:5b:20:64:f6:a9:1b:cb:43:bb:
                    fd:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D4:E5:A2:C3:53:5E:EB:2C:B1:18:7B:B5:00:5A:38:B1:FE:72:D1:1B
            X509v3 Authority Key Identifier: 
                24:7E:C0:7E:B2:24:00:2E:2D:38:37:50:91:3B:DE:F2:44:CE:72:75
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.cloudflare.com/77d04090-d1d0-468c-8aa0-3096a9423843.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8e:9a:d1:49:86:5f:81:9e:82:d1:c8:9d:07:b8:12:fb:ac:a9:
        99:ab:e8:4a:24:28:b0:85:18:41:32:f8:90:90:4b:37:5e:ac:
        29:65:f7:95:ee:73:b6:08:25:e2:71:96:cc:b8:83:00:47:ff:
        33:c7:f1:f5:06:8e:3e:5a:93:76:67:07:ee:03:18:42:a0:6a:
        62:0c:24:17:16:36:f1:61:0a:2c:0e:a9:f0:42:87:57:0f:60:
        cb:62:6e:66:e3:2e:71:72:26:a0:e5:19:b0:5a:55:9d:81:74:
        f0:c2:04:47:c2:1d:62:44:92:3c:f2:a3:83:7f:be:09:45:39:
        95:ab:4c:f5:27:9d:64:5f:3d:a8:02:22:89:89:cc:2e:64:30:
        96:fb:f4:e9:90:53:94:1a:0a:5a:59:c5:c3:00:1a:72:a0:f9:
        56:8b:e6:a6:77:a5:17:e1:e8:92:76:a9:8a:08:43:78:10:78:
        77:9c:e1:19:8f:94:86:ad:ba:ed:29:e2:07:31:37:78:42:2a:
        2f:f8:2a:1e:03:3b:f3:a8:57:8e:44:66:55:47:72:53:e7:79:
        31:4e:fa:87:ea:cf:12:88:93:97:d6:64:a0:37:0b:ce:58:b7:
        12:c1:b2:4d:1f:8d:5d:89:35:6e:51:a8:a5:7a:62:5a:1d:6d:
        38:dd:d0:e2

MAC Addresses

C1:C3:90:B3:43:46
    Unknown

-96294589 | 2024-04-18T00:21:43.904032

3306 / tcp

MySQL:
  Error Message: Host '224.254.175.29' is not allowed to connect to this MySQL server
  Error Code: 1130

-795948505 | 2024-04-14T13:46:07.972732

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

5.188.168.152

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1592113829 | 2024-03-30T11:17:51.661611
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

-276003940 | 2024-04-17T03:52:19.666148
80 / tcp

nginx1.18.0

1425613151 | 2024-04-19T05:50:42.187008
123 / udp

-567627901 | 2024-04-18T12:21:58.220546
443 / tcp

nginx1.18.0

-96294589 | 2024-04-18T00:21:43.904032
3306 / tcp

MySQL

-795948505 | 2024-04-14T13:46:07.972732
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

5.188.168.152

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1592113829 | 2024-03-30T11:17:51.661611 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

-276003940 | 2024-04-17T03:52:19.666148 80 / tcp

nginx1.18.0

1425613151 | 2024-04-19T05:50:42.187008 123 / udp

-567627901 | 2024-04-18T12:21:58.220546 443 / tcp

nginx1.18.0

-96294589 | 2024-04-18T00:21:43.904032 3306 / tcp

MySQL

-795948505 | 2024-04-14T13:46:07.972732 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

1592113829 | 2024-03-30T11:17:51.661611
22 / tcp

-276003940 | 2024-04-17T03:52:19.666148
80 / tcp

1425613151 | 2024-04-19T05:50:42.187008
123 / udp

-567627901 | 2024-04-18T12:21:58.220546
443 / tcp

-96294589 | 2024-04-18T00:21:43.904032
3306 / tcp

-795948505 | 2024-04-14T13:46:07.972732
33060 / tcp