GeneralInformation

Hostnames	ec2-52-21-52-144.compute-1.amazonaws.com akamai-inputs-lakecountyfl.splunkcloud.com es-lakecountyfl.splunkcloud.com http-inputs-ack-lakecountyfl.splunkcloud.com http-inputs-firehose-lakecountyfl.splunkcloud.com http-inputs-lakecountyfl.splunkcloud.com lakecountyfl.splunkcloud.com pvt.lakecountyfl.splunkcloud.com
Domains	amazonaws.com splunkcloud.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

Web frameworks

Microsoft ASP.NET

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2014-4078

5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."

OpenPorts

80 443

227616436 | 2024-04-24T15:19:54.022525

80 / tcp

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 15:19:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 3019
Connection: keep-alive
Cache-Control: private
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET

472526215 | 2024-05-01T09:51:03.126269

443 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Date: Wed, 01 May 2024 09:51:02 GMT
Server: Splunkd
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Length: 223
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:83:83:44:13:36:93:7d:5f:95:79:17:5f:36:c8:ce
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
        Validity
            Not Before: Jul 23 00:00:00 2023 GMT
            Not After : Jul 23 23:59:59 2024 GMT
        Subject: C=US, ST=California, L=San Francisco, O=Splunk Inc., CN=*.lakecountyfl.splunkcloud.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:15:0d:d9:ae:7a:a9:42:b3:c6:13:84:41:0e:
                    68:ca:ba:51:d2:8c:3b:83:14:11:e2:d2:76:35:09:
                    56:04:e5:6d:b5:9f:16:2c:e1:0e:bb:02:7c:a8:94:
                    aa:e3:cd:8a:88:79:45:0e:c0:b3:b0:1c:78:6f:54:
                    7d:0f:cf:1d:19:81:e9:fc:b3:8b:2d:50:a4:9f:0d:
                    68:bd:17:45:da:bf:49:65:d2:5c:b1:64:1d:e4:0c:
                    30:8b:8a:e5:80:db:8a:02:11:83:35:cd:da:15:32:
                    48:59:c6:cd:5a:90:1c:67:88:6e:a9:4f:ee:8d:20:
                    67:7f:68:27:d7:9f:ca:72:76:b9:29:11:16:b4:a6:
                    31:72:50:2d:eb:ba:9a:77:02:e4:c6:d4:67:79:31:
                    51:79:cb:81:86:b2:16:24:bc:46:3f:45:24:f6:14:
                    5b:9b:75:03:47:6a:b9:5c:f6:92:24:12:86:e7:c9:
                    3a:2f:f3:2f:8f:4a:33:13:5d:5c:aa:48:86:ba:97:
                    1f:87:4f:5c:b5:fc:d5:91:dc:18:a0:77:17:87:3a:
                    2b:bf:be:9c:d8:59:c1:9a:5a:bf:fc:7c:d5:7d:ed:
                    e1:cc:f4:f2:34:3e:d2:95:14:5a:a2:95:7b:a3:e6:
                    5b:2c:ca:b3:04:c9:db:36:7d:1c:64:67:8f:66:5b:
                    97:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
            X509v3 Subject Key Identifier: 
                24:4C:4D:69:5B:4A:69:77:DC:1F:D8:53:E9:35:DD:A7:56:91:F5:C3
            X509v3 Subject Alternative Name: 
                DNS:*.lakecountyfl.splunkcloud.com, DNS:lakecountyfl.splunkcloud.com, DNS:es-lakecountyfl.splunkcloud.com, DNS:*.es-lakecountyfl.splunkcloud.com, DNS:http-inputs-lakecountyfl.splunkcloud.com, DNS:*.http-inputs-lakecountyfl.splunkcloud.com, DNS:akamai-inputs-lakecountyfl.splunkcloud.com, DNS:*.akamai-inputs-lakecountyfl.splunkcloud.com, DNS:http-inputs-ack-lakecountyfl.splunkcloud.com, DNS:*.http-inputs-ack-lakecountyfl.splunkcloud.com, DNS:http-inputs-firehose-lakecountyfl.splunkcloud.com, DNS:*.http-inputs-firehose-lakecountyfl.splunkcloud.com, DNS:*.pvt.lakecountyfl.splunkcloud.com, DNS:pvt.lakecountyfl.splunkcloud.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
                Full Name:
                  URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Jul 23 04:01:08.015 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B0:CF:5A:32:24:29:2D:B8:5D:A2:A5:
                                B0:50:D8:CD:D9:AC:69:48:38:59:31:87:06:49:FF:AE:
                                20:D4:AE:C3:BE:02:20:31:E2:B2:4E:4B:AE:D1:FA:96:
                                27:40:5D:B8:29:70:7D:EC:AA:02:CD:A5:47:EA:BA:8F:
                                82:1E:41:F2:D7:8D:08
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Jul 23 04:01:07.989 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D6:42:94:7B:DE:F2:CC:8F:35:73:B4:
                                60:33:2B:7D:EA:CD:6F:DE:E2:97:24:A5:A6:B4:D6:9D:
                                EF:A4:CC:54:74:02:21:00:C0:2F:F6:9C:C6:CA:C4:AE:
                                5A:2A:87:15:51:AD:4C:D7:CC:22:8B:07:3D:EF:15:09:
                                F0:FD:BD:78:24:18:6C:6A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jul 23 04:01:07.937 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:86:DF:74:09:61:41:EA:6E:8F:B2:9E:
                                FC:AE:49:6E:10:76:48:B1:F7:26:F3:AA:83:EE:B6:7A:
                                1F:EA:F3:BF:C0:02:20:07:69:09:CB:18:F2:44:B3:E8:
                                5C:AB:12:07:36:C4:D7:DB:93:89:7C:B3:09:32:5D:17:
                                42:B2:01:67:01:40:0C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6e:06:24:89:63:1f:6a:a2:78:d7:11:a6:ba:02:ad:bb:14:22:
        32:33:06:4a:ac:89:c4:10:b1:e6:68:87:2a:e5:c3:eb:1f:56:
        7b:3c:28:ac:a2:2b:80:7d:c9:59:0d:a4:8c:b5:87:01:c0:fc:
        e3:a5:17:ff:65:2c:e4:a2:ce:2f:37:e1:c7:b2:47:be:02:fc:
        ae:71:95:5c:08:09:15:2d:d8:b1:29:c0:70:09:eb:87:7c:c5:
        08:36:00:2f:0a:fd:1a:03:e5:51:77:10:05:21:cf:e2:c1:d2:
        d7:60:40:a9:30:69:4c:d2:64:f4:59:46:70:0b:d6:df:c7:ac:
        a9:81:e8:90:4a:cb:e0:92:80:5e:4c:a7:c5:5f:c2:96:36:39:
        f6:8d:a2:9b:a1:44:f7:29:98:27:e7:1e:74:87:87:5c:d8:55:
        7a:8f:80:9d:67:21:b7:04:73:fe:56:cb:33:c0:4a:4a:59:01:
        a1:c9:f9:ee:e4:87:a3:5d:b3:1e:2a:bb:7b:bc:57:19:ae:12:
        19:4e:65:ba:00:36:2e:1e:0d:12:e8:ea:88:83:4e:f6:a5:f9:
        49:d3:33:fa:b0:bc:8b:cc:74:16:08:b6:6b:40:16:b3:a1:82:
        25:22:55:a8:84:59:f6:5f:3b:d6:68:e4:ad:6e:f7:db:69:49:
        ca:99:2b:03

52.21.52.144

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

227616436 | 2024-04-24T15:19:54.022525
80 / tcp

Microsoft IIS httpd8.5

472526215 | 2024-05-01T09:51:03.126269
443 / tcp

Splunk Server

Products

Pricing

Contact Us

52.21.52.144

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

227616436 | 2024-04-24T15:19:54.022525 80 / tcp

Microsoft IIS httpd8.5

472526215 | 2024-05-01T09:51:03.126269 443 / tcp

Splunk Server

Products

Pricing

Contact Us

227616436 | 2024-04-24T15:19:54.022525
80 / tcp

472526215 | 2024-05-01T09:51:03.126269
443 / tcp