GeneralInformation

Hostnames	ec2-52-211-32-132.eu-west-1.compute.amazonaws.com evergage.lottobirock.com
Domains	amazonaws.com lottobirock.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

772258679 | 2024-04-24T19:36:31.514862

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 24 Apr 2024 19:36:31 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://evergage.lottobirock.com/

-1799124818 | 2024-04-26T15:46:04.493241

443 / tcp

HTTP/1.1 405 Method Not Allowed
Server: nginx/1.20.1
Date: Fri, 26 Apr 2024 15:46:04 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 51
Connection: keep-alive
Allow: OPTIONS

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:b9:0e:4e:63:b1:9b:18:80:32:f3:86:00:01:94:8f:3f:aa
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 24 15:33:44 2024 GMT
            Not After : Jun 22 15:33:43 2024 GMT
        Subject: CN=evergage.lottobirock.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:cc:f5:f9:25:6f:33:ea:84:34:09:f0:5b:ed:
                    e4:51:d1:62:94:43:18:fe:00:13:f8:3a:f3:ba:a0:
                    78:d6:ec:5a:ad:96:12:ca:49:fb:d8:e0:b8:6b:d8:
                    c1:45:dd:8f:20:8e:56:e0:e6:67:fe:64:dd:89:df:
                    26:cf:30:19:49:9f:39:31:a4:8a:7b:ae:44:17:83:
                    32:ff:85:13:52:a0:cd:2c:bf:7e:2b:84:19:b4:08:
                    1c:94:30:62:2e:40:fe:d5:c8:20:d0:bf:cc:6b:0c:
                    15:cf:7e:cb:84:d7:d9:99:52:54:4d:bb:ba:85:dc:
                    67:18:2f:c6:38:bf:e5:a5:c9:0e:19:19:e8:b0:22:
                    01:1f:a3:63:87:ac:05:05:ef:3a:6c:25:ae:e3:f2:
                    12:50:34:a2:fc:b9:b9:a7:f9:fd:60:fd:57:78:b3:
                    e0:2a:81:74:1e:fd:38:e2:e2:6f:77:54:c0:7d:59:
                    7c:97:d4:c1:86:21:03:0a:ac:d1:c0:6a:50:86:48:
                    bf:ed:d2:25:31:40:4d:49:10:82:94:85:d2:91:3e:
                    0f:43:be:aa:0a:61:15:c6:3f:9d:fd:86:5b:19:65:
                    f7:4d:7a:8f:2b:92:f9:81:ce:a2:4b:05:13:f8:18:
                    38:4e:d0:aa:ec:fb:45:30:61:1c:0a:09:e0:57:cb:
                    fa:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2E:17:C3:2F:26:CF:3B:BB:36:E2:90:A2:62:52:FC:67:8E:6A:3D:AE
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:evergage.lottobirock.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 24 16:33:44.814 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:38:13:5E:EE:C5:A4:3E:74:7D:1A:34:DB:
                                B6:FC:CD:81:96:5F:2B:75:53:A1:9B:C7:4D:67:23:08:
                                04:27:61:C7:02:20:58:8D:43:E2:44:2B:A9:F2:EE:A9:
                                37:4D:45:AE:8E:5D:42:8A:99:4E:18:35:5E:A2:7B:91:
                                9A:94:24:C8:86:5B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 24 16:33:44.803 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:90:EB:20:A9:D8:4D:34:58:B0:29:B2:
                                C1:82:C8:68:33:52:91:06:FB:B4:6C:21:E7:BC:C3:29:
                                44:8A:AB:8A:2A:02:20:2D:52:AC:34:E1:8D:47:D6:33:
                                BC:4B:DE:59:51:92:DC:D1:29:97:E9:EA:0D:28:73:72:
                                99:E8:E3:34:C7:F7:55
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2f:ba:75:30:86:90:6a:22:a8:c8:15:4d:c2:d7:1d:09:a8:8d:
        3e:56:87:bb:9a:24:7d:cc:b8:2d:d9:4e:26:1f:c8:0f:85:7a:
        87:80:13:7b:0b:12:b9:ca:47:d5:e9:fd:9d:f3:23:2d:c0:24:
        01:de:7f:f9:a3:26:e8:76:3f:36:8a:72:cd:ed:6c:14:28:bb:
        e0:11:9c:95:e2:52:08:0f:b2:8d:f6:ff:88:46:e9:e5:53:c4:
        3d:4f:f6:96:c4:ef:88:37:a9:5a:6c:62:24:4e:31:4b:97:42:
        50:1c:05:fd:07:55:7c:d2:31:00:ba:28:f4:75:d4:3a:c2:08:
        3e:bc:f6:a6:75:17:ac:b7:f2:d2:56:bf:d5:7a:64:fe:31:d6:
        9f:a3:48:ef:4d:a5:59:fd:bd:5f:ea:ee:f4:58:4c:0c:88:f6:
        85:85:82:7e:02:a8:96:69:c9:af:31:85:69:44:b3:7c:44:c8:
        8f:1a:c6:7f:78:36:14:9a:18:06:44:b1:4f:44:f7:1d:5e:d6:
        ca:dc:48:30:cf:0a:91:d4:2d:b0:98:d4:4c:6a:55:b0:28:b5:
        5c:0b:7b:6d:ad:e2:79:61:05:0f:68:ea:6c:a9:69:e2:05:6f:
        62:36:ce:a6:c5:72:27:d1:49:61:ee:1a:00:96:22:46:18:15:
        dd:2f:be:4e

52.211.32.132

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-04-24T19:36:31.514862
80 / tcp

nginx1.20.1

-1799124818 | 2024-04-26T15:46:04.493241
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

52.211.32.132

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-04-24T19:36:31.514862 80 / tcp

nginx1.20.1

-1799124818 | 2024-04-26T15:46:04.493241 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

772258679 | 2024-04-24T19:36:31.514862
80 / tcp

-1799124818 | 2024-04-26T15:46:04.493241
443 / tcp