GeneralInformation

Hostnames	ec2-54-159-209-41.compute-1.amazonaws.com dns.kndl.io
Domains	amazonaws.com kndl.io
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 53 80 443

-1852644024 | 2024-05-14T23:41:02.869776

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCG0sszqt3y/qgcnvMtYUjJs
Dfh4IjazZID2ehBcIvku6+9A17LRCWpjhMpnTXpLcSrSpIM+N4dl5KKPafKFdqw=
Fingerprint: 1c:02:68:d3:fb:dd:68:40:ca:c5:cd:9c:91:89:82:08

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-27732661 | 2024-05-06T18:22:21.981656

53 / tcp

dnsmasq-pi-hole-v2.89-9461807
Recursion: enabled

-27732661 | 2024-05-01T13:48:29.855631

53 / udp

dnsmasq-pi-hole-v2.89-9461807
Recursion: enabled

589765266 | 2024-05-09T04:58:33.685771

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 09 May 2024 04:58:33 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://54.159.209.41/

-647234736 | 2024-05-15T09:10:39.840789

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 15 May 2024 09:10:39 GMT
Content-Type: text/html
Content-Length: 3371
Connection: keep-alive
ETag: "437154621"
Last-Modified: Fri, 08 Sep 2023 22:29:55 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:4e:30:91:da:e5:e7:3d:b1:a5:6a:08:7e:78:c0:1c:07:7c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 29 23:00:52 2024 GMT
            Not After : Jun 27 23:00:51 2024 GMT
        Subject: CN=dns.kndl.io
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:e2:55:f4:b7:3d:53:5c:5c:5e:8c:cf:8f:76:b3:
                    08:8f:ff:ff:8c:3c:78:66:28:72:d0:5d:5b:a0:72:
                    ff:0d:fc:8c:aa:20:48:54:60:df:a6:b6:05:11:1b:
                    2c:71:56:dd:26:c7:1d:c9:05:5d:d1:49:b1:4b:02:
                    c6:f6:f4:80:fb
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B0:B0:B5:6C:37:4F:A0:65:52:CE:80:6C:19:66:7C:F9:58:92:E5:7D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dns.kndl.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 30 00:00:52.960 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:04:15:5F:58:47:F4:33:3E:6B:88:CC:2F:
                                CC:32:80:DA:E8:C3:91:D6:B8:1C:B0:52:E4:88:AB:0C:
                                CF:BC:32:80:02:21:00:EF:35:8E:E5:74:1C:9B:59:74:
                                B1:3C:D4:B4:FA:DE:1B:A2:E0:81:2C:FF:CE:1E:CA:07:
                                39:CF:73:B0:DD:5D:E2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 30 00:00:52.952 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:49:61:12:83:18:54:EB:3A:1C:56:29:3D:
                                7F:97:5B:BD:0F:28:71:F9:0F:18:F1:A8:E0:CD:31:A6:
                                40:74:58:1B:02:20:2C:82:3A:59:2E:8D:ED:4B:B8:7C:
                                CE:8E:5B:07:52:5D:E1:CE:FB:88:A6:0F:E5:28:7F:51:
                                F5:88:40:55:C8:29
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        71:e6:37:e5:b7:84:ea:78:0b:9a:59:a5:49:2f:b2:ed:b4:0f:
        7d:77:a2:c3:d3:f5:90:e3:7f:60:24:6e:f4:c7:d6:ac:b4:fe:
        d8:a4:0a:5b:ad:7c:77:5b:94:f2:f7:cf:18:1a:1e:09:0a:4f:
        23:29:c2:4e:ea:23:c8:ec:12:7c:5c:d8:72:6c:ec:aa:b8:53:
        42:01:bd:e6:f3:df:e9:43:e4:c9:45:cd:3e:b3:15:24:6c:30:
        42:4c:34:47:18:1c:ae:d0:51:de:1c:78:7f:de:ee:fc:49:af:
        de:67:ce:36:f5:cd:57:bc:a1:16:0a:c8:64:51:37:40:5d:ab:
        92:71:7b:2d:35:f8:89:5a:1f:f6:12:97:fb:f1:16:55:95:c2:
        7b:a8:e6:49:3f:70:a2:ff:d5:74:97:69:a0:90:70:98:63:43:
        16:1d:11:a9:3f:71:40:30:50:27:cf:1e:54:ea:13:45:bd:8a:
        2a:83:05:5e:04:b9:60:f9:aa:5c:cb:df:cc:6d:66:81:32:57:
        d3:65:3d:be:2c:63:88:34:a1:a2:3f:a4:f2:76:b1:ac:55:a7:
        f9:c7:27:c3:98:ce:ea:a1:3d:b4:1c:68:31:d1:91:4a:ff:5c:
        88:d5:97:95:08:88:c2:09:f6:37:d0:14:3d:ce:21:f7:d8:54:
        76:ac:a7:7b

54.159.209.41

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1852644024 | 2024-05-14T23:41:02.869776
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-27732661 | 2024-05-06T18:22:21.981656
53 / tcp

-27732661 | 2024-05-01T13:48:29.855631
53 / udp

589765266 | 2024-05-09T04:58:33.685771
80 / tcp

nginx1.18.0

-647234736 | 2024-05-15T09:10:39.840789
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

54.159.209.41

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1852644024 | 2024-05-14T23:41:02.869776 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

-27732661 | 2024-05-06T18:22:21.981656 53 / tcp

-27732661 | 2024-05-01T13:48:29.855631 53 / udp

589765266 | 2024-05-09T04:58:33.685771 80 / tcp

nginx1.18.0

-647234736 | 2024-05-15T09:10:39.840789 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1852644024 | 2024-05-14T23:41:02.869776
22 / tcp

-27732661 | 2024-05-06T18:22:21.981656
53 / tcp

-27732661 | 2024-05-01T13:48:29.855631
53 / udp

589765266 | 2024-05-09T04:58:33.685771
80 / tcp

-647234736 | 2024-05-15T09:10:39.840789
443 / tcp