GeneralInformation

Hostnames	ec2-52-71-87-144.compute-1.amazonaws.com etl.terrestra.tech
Domains	amazonaws.com terrestra.tech
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

589765266 | 2024-04-15T08:08:26.396930

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 08:08:25 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://52.71.87.144/

335330650 | 2024-04-15T12:09:21.218365

443 / tcp

HTTP/1.1 404 NOT FOUND
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 12:09:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 207
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:28:cc:3e:b7:d6:5c:06:7d:cd:bb:03:4c:29:80:d7:da:2a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 17 05:42:43 2024 GMT
            Not After : May 17 05:42:42 2024 GMT
        Subject: CN=etl.terrestra.tech
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:66:30:56:63:8f:77:19:8f:34:13:15:fa:47:7d:
                    aa:9f:6a:6f:9b:57:41:ba:f5:9e:87:f0:00:b5:78:
                    b4:df:e7:e3:5b:ed:33:34:d8:b4:3a:94:02:81:7b:
                    22:0b:02:3e:01:49:f8:08:d7:ea:bb:77:8c:2e:39:
                    df:24:07:42:f8
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                91:9C:B6:DB:EF:1B:50:45:E5:16:04:22:25:D6:CF:54:01:A3:87:58
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:etl.terrestra.tech
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 17 06:42:43.550 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:5A:C5:D7:E3:83:D6:39:B8:C3:7D:74:55:
                                46:79:C7:1D:AB:5C:64:48:DF:31:A3:CF:88:BC:A9:13:
                                FC:C7:3F:F5:02:21:00:A7:53:7E:6D:C8:96:7C:58:FE:
                                D4:50:20:8D:E5:BC:BB:F1:BF:FA:50:ED:92:AB:9D:09:
                                0E:87:AA:48:66:1A:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 17 06:42:43.737 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FF:BC:B0:F7:E8:BE:FA:9F:97:5F:F6:
                                98:40:F6:CD:DF:74:0A:B9:78:C9:1F:B9:E5:BE:DF:E7:
                                6D:1C:68:15:C9:02:21:00:B1:91:6B:7A:28:E8:DB:35:
                                E5:6A:ED:34:82:CE:4F:93:E1:E3:44:2D:A7:28:76:55:
                                85:D4:43:ED:6C:DD:60:91
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3e:26:ad:d3:06:1e:36:c7:96:ec:1a:69:a6:37:40:76:67:83:
        39:a5:15:23:be:7a:c6:d9:84:46:cc:0b:1c:83:5c:1f:d4:2d:
        c0:0a:d4:66:04:8b:38:e9:1d:18:35:d8:70:70:87:18:5c:f9:
        6d:bb:48:f1:28:71:6a:27:77:72:d6:e5:56:cf:6a:55:02:35:
        1f:28:20:0d:43:8d:0f:cd:58:0a:8a:9f:45:85:08:91:dd:e0:
        1c:17:c4:cb:e3:dc:4b:16:20:70:30:9d:9c:b4:62:13:b3:35:
        5c:dd:7c:a3:72:1b:18:0d:ed:bf:b1:b6:b2:78:4a:d9:40:4c:
        a8:06:eb:c5:c6:46:01:9c:0e:88:62:5d:44:09:d7:9d:a9:f5:
        15:27:ac:4d:00:81:8a:45:8e:8e:af:15:7f:ea:74:60:cb:03:
        75:74:56:c5:14:45:6a:98:5d:20:95:39:4c:eb:a9:9f:0c:5d:
        56:c9:5e:81:77:14:8e:40:2c:10:7a:cb:0e:59:76:6d:1f:00:
        19:82:e8:e4:58:c1:e6:47:68:c9:10:e4:86:0f:eb:c5:a6:ca:
        00:77:ae:e1:43:43:a6:7a:8f:40:0f:0c:c1:f5:83:a5:ab:9b:
        76:53:35:26:8c:df:da:a5:97:59:ad:bd:3c:cc:58:ff:db:d1:
        a2:fb:d0:26

52.71.87.144

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-04-15T08:08:26.396930
80 / tcp

nginx1.18.0

335330650 | 2024-04-15T12:09:21.218365
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

52.71.87.144

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-04-15T08:08:26.396930 80 / tcp

nginx1.18.0

335330650 | 2024-04-15T12:09:21.218365 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

589765266 | 2024-04-15T08:08:26.396930
80 / tcp

335330650 | 2024-04-15T12:09:21.218365
443 / tcp