GeneralInformation

Hostnames	bot.etrasa.net vps-d5533ff4.vps.ovh.net
Domains	etrasa.net ovh.net
Country	France
City	Wormhout
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 8069

2003229270 | 2024-04-16T17:10:56.727333

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBOdnidt2HSxr8fPqtQIv1C6s
sZC5TFNPpRhgyTTnC9RClh2klyeAdD2M6xJx8+fHIy//52gHcvRNw/tuN6zzuoc=
Fingerprint: a7:ec:9f:07:7b:3d:b5:c5:f8:02:c9:c0:cf:b9:81:f1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1410093119 | 2024-04-13T18:30:21.986537

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 18:30:21 GMT
Content-Type: text/html
Content-Length: 10671
Last-Modified: Wed, 03 May 2023 11:20:55 GMT
Connection: keep-alive
ETag: "64524397-29af"
Accept-Ranges: bytes

780672404 | 2024-04-04T20:52:32.268536

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 04 Apr 2024 20:52:32 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:fe:dd:54:be:6a:94:08:eb:86:60:1e:2c:6b:88:75:92:84
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  8 21:05:27 2024 GMT
            Not After : Jun  6 21:05:26 2024 GMT
        Subject: CN=bot.etrasa.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:8f:d9:8c:7e:ae:ee:ea:d5:ee:50:cc:91:a2:
                    a4:12:19:d2:d8:39:93:68:60:1e:79:9d:ee:fe:9a:
                    41:31:97:d2:d5:db:8d:6e:48:de:71:bb:db:09:10:
                    44:10:65:8b:8d:cd:fa:8d:31:5a:c1:a3:34:64:10:
                    2b:32:d1:19:c3:54:5f:aa:79:91:21:da:72:74:8a:
                    20:18:d5:43:dd:50:13:cb:56:3e:46:3f:21:46:64:
                    60:b1:50:42:76:9a:43:57:d6:53:c3:19:16:9c:ac:
                    62:ea:f8:d1:96:84:54:57:65:68:40:c2:65:49:2c:
                    91:cb:23:9f:95:91:76:e0:94:36:3a:70:e4:73:c1:
                    64:8a:c7:fa:c3:0f:da:01:ae:a8:9b:5b:f9:90:74:
                    17:ef:51:43:fd:c6:ab:ba:b6:31:d5:b2:cf:c6:d8:
                    ee:77:02:54:05:71:d7:74:32:f4:68:bb:f3:f1:35:
                    53:f3:d2:89:1b:a7:ed:02:63:a6:1c:b3:87:34:5c:
                    d3:5e:d1:8f:fd:2d:3b:38:92:1e:30:32:5c:2d:b2:
                    a3:90:4c:f1:59:70:1d:47:b4:91:8b:09:4e:92:9b:
                    fe:ff:3b:b8:d1:32:99:f2:98:5e:8d:c2:63:90:c3:
                    a2:57:ab:55:d8:ec:b9:e0:3f:8c:e9:fd:32:d0:69:
                    f3:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6F:D3:9B:93:A4:73:44:77:50:36:79:AA:E9:6A:21:95:42:EE:D4:7A
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bot.etrasa.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  8 22:05:27.968 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:B0:2A:48:58:47:FE:72:BF:39:C9:07:
                                40:38:33:13:C2:F7:C6:5E:08:E5:79:C1:D1:B4:0C:73:
                                BB:77:F0:A9:02:21:00:8D:CE:F7:AB:FA:46:47:32:E2:
                                87:1F:C0:DF:FD:81:96:06:F0:E4:5A:3D:FA:2B:1F:20:
                                B3:12:28:59:08:BC:F7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar  8 22:05:28.470 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:77:47:D5:85:EB:9E:48:4D:CC:0B:B1:13:
                                F4:04:D9:E1:CE:13:DE:8B:2B:DB:94:1F:27:F2:C8:EC:
                                DE:CC:40:32:02:20:5A:BF:75:E3:AD:2D:48:B4:75:BC:
                                12:D9:9E:0A:54:71:3C:4F:5B:5B:D7:3B:3E:84:43:79:
                                48:1D:8B:ED:B0:06
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        89:da:4b:c7:d0:5b:74:f3:33:55:e6:00:6b:6f:ec:53:26:85:
        ab:93:f9:fd:26:05:30:eb:4e:8a:a0:bf:59:dd:50:4e:44:c1:
        c9:e5:d7:43:ed:b7:8b:da:98:04:ec:19:c5:b9:f6:f6:a0:18:
        17:d3:58:dd:97:77:de:e2:d6:43:d9:cf:20:2b:fe:50:cd:89:
        31:dd:6a:e3:06:0e:79:e3:91:ee:65:4e:3b:b4:51:e5:4d:4d:
        87:b6:39:94:29:8b:e6:6f:4f:f3:7e:74:a7:21:e0:77:22:ca:
        5f:1e:6e:cc:03:95:97:f3:08:e8:5c:cf:9b:48:7a:16:d9:be:
        61:0a:68:71:22:db:e9:4a:1a:02:11:65:c0:73:bc:54:5d:09:
        c2:d8:e0:f5:45:51:b4:f0:2d:7d:87:6c:1c:45:25:59:a0:c7:
        ca:96:12:34:c3:27:7b:6e:a7:8f:83:df:ae:bd:e2:0e:c2:0d:
        14:f9:6b:71:fe:6f:3a:f9:15:fc:ff:cc:2f:07:07:6f:0c:41:
        ca:5c:c6:47:47:b0:bc:d0:e4:10:96:34:ba:4f:ca:32:1c:ea:
        50:d2:27:a4:22:53:14:4c:50:94:ad:e9:ef:cf:f4:5a:87:a1:
        fa:fd:13:0f:26:9c:3a:52:41:9c:1b:6b:99:10:16:40:f6:68:
        ac:6f:92:71

813209129 | 2024-04-04T16:25:31.568132

3000 / tcp

HTTP/1.1 503 Service Unavailable
X-Powered-By: Botpress
Content-Type: text/html; charset=utf-8
Content-Length: 129
ETag: W/"81-jaN9hCBSwJ1Zi3E4DT+ZsbkCdF8"
Vary: Accept-Encoding
Date: Thu, 04 Apr 2024 16:25:31 GMT
Connection: keep-alive

852629307 | 2024-04-09T22:03:37.096110

8069 / tcp

HTTP/1.0 200 OK
Content-Type: text/html; charset=utf-8
Content-Length: 84
Set-Cookie: session_id=1c4eb996dd67959bb815c675f97c1711cdf2faf0; Expires=Mon, 08-Jul-2024 22:03:37 GMT; Max-Age=7776000; HttpOnly; Path=/
Server: Werkzeug/0.11.15 Python/3.5.3
Date: Tue, 09 Apr 2024 22:03:37 GMT

51.83.47.72

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

2003229270 | 2024-04-16T17:10:56.727333
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-04-13T18:30:21.986537
80 / tcp

nginx1.18.0

780672404 | 2024-04-04T20:52:32.268536
443 / tcp

nginx1.18.0

813209129 | 2024-04-04T16:25:31.568132
3000 / tcp

852629307 | 2024-04-09T22:03:37.096110
8069 / tcp

Products

Pricing

Contact Us

51.83.47.72

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

2003229270 | 2024-04-16T17:10:56.727333 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-04-13T18:30:21.986537 80 / tcp

nginx1.18.0

780672404 | 2024-04-04T20:52:32.268536 443 / tcp

nginx1.18.0

813209129 | 2024-04-04T16:25:31.568132 3000 / tcp

852629307 | 2024-04-09T22:03:37.096110 8069 / tcp

Products

Pricing

Contact Us

2003229270 | 2024-04-16T17:10:56.727333
22 / tcp

1410093119 | 2024-04-13T18:30:21.986537
80 / tcp

780672404 | 2024-04-04T20:52:32.268536
443 / tcp

813209129 | 2024-04-04T16:25:31.568132
3000 / tcp

852629307 | 2024-04-09T22:03:37.096110
8069 / tcp