GeneralInformation

Hostnames	ec2-54-197-253-177.compute-1.amazonaws.com makerspathe.com www.makerspathe.com
Domains	amazonaws.com makerspathe.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon.com, Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

JavaScript libraries

Lodash

UI frameworks

Bootstrap1e77dd02

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 3306 8080 9080

589765266 | 2024-04-21T08:20:27.177153

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Apr 2024 08:20:26 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://makerspathe.com/

-292586767 | 2024-04-21T03:05:04.141821

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Apr 2024 03:05:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: DENY

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:e6:dd:30:63:37:8d:11:03:4c:81:3d:04:c5:31:13:20:b7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 10 04:18:38 2024 GMT
            Not After : Jul  9 04:18:37 2024 GMT
        Subject: CN=makerspathe.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:aa:3f:12:36:d0:cb:05:b8:96:81:5a:37:5f:29:
                    4a:9a:f8:95:13:1d:81:8a:b8:99:e4:e2:94:66:73:
                    cf:48:0f:5f:bd:67:5e:cd:3e:7d:8b:17:33:b3:4f:
                    de:63:87:f4:f2:a9:53:3a:6b:ff:e1:f4:50:d9:e3:
                    1b:72:79:ba:34:e0:ea:dd:3e:21:fc:a6:23:28:77:
                    eb:c9:5e:19:b9:11:77:c4:71:bc:7a:8e:42:9c:6a:
                    36:2e:53:d1:35:d1:1d:83:63:71:48:38:c7:7f:72:
                    e2:9e:17:50:8f:ca:49:f7:f6:cf:89:9c:f2:bb:7a:
                    8a:15:88:1c:49:e2:1d:d3:61:b1:cd:07:d9:d3:d9:
                    e3:39:52:cb:a4:96:55:e1:47:7b:ab:03:73:a2:fd:
                    8b:2e:cd:02:d4:07:da:06:fd:ec:c1:e7:a5:d1:61:
                    31:d1:3d:03:08:22:53:51:39:de:25:90:de:7a:fd:
                    be:4a:d0:9d:6a:43:76:8c:13:7b:b3:44:49:34:2b:
                    56:65:83:b9:32:af:fc:49:dc:88:48:5b:c6:36:6e:
                    f5:da:eb:b9:cc:b6:da:1b:7b:e8:af:32:ee:28:ad:
                    d4:99:d8:18:dd:6f:c5:df:dc:47:d4:48:fa:b6:68:
                    52:d9:00:ca:fa:1d:f2:7a:cf:85:8e:2e:8d:dc:24:
                    a5:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E8:EA:20:BB:81:68:CA:59:E4:B4:60:33:C5:15:F5:D3:C0:55:AA:3A
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:makerspathe.com, DNS:www.makerspathe.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 10 05:18:38.854 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BC:85:F6:3C:FA:52:CC:18:EA:43:7A:
                                49:13:6E:92:EC:A0:B6:00:33:38:CB:3B:24:55:C0:6C:
                                E1:00:35:C0:90:02:20:48:A1:8E:C8:57:60:0C:5E:87:
                                45:59:EC:4C:42:A3:1F:FE:4B:96:14:99:0D:5C:2B:BD:
                                92:AB:9B:2E:0A:0D:4E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr 10 05:18:39.052 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E7:68:E6:6B:AE:B2:61:96:9D:D4:05:
                                D6:1B:FB:4C:70:0E:BA:67:AC:58:E6:B9:8F:F1:18:13:
                                27:40:5C:09:D4:02:21:00:A8:BA:C9:26:E9:4C:6C:7B:
                                9F:C8:A0:3C:42:6A:1E:73:C1:BC:BA:D4:8C:59:E7:DB:
                                E7:C0:25:73:E7:60:2E:8A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7d:dd:3f:9e:9c:94:ae:72:a6:d9:93:ce:42:a8:de:10:a7:40:
        9f:ea:07:56:1f:d6:b0:b2:f1:cf:b4:bb:cd:1f:f1:6f:dc:77:
        1c:30:9a:a0:95:b5:87:77:84:bf:d6:84:65:25:1c:36:ba:29:
        b9:0d:72:0e:b2:ea:88:a8:e9:a5:d8:70:1f:38:34:0a:72:00:
        a1:45:4a:eb:45:f8:ca:1b:dd:b3:ef:13:fe:fa:36:6c:f3:8a:
        be:5a:9f:4a:e6:c0:63:9b:a9:96:93:f8:cd:f8:cb:c0:2b:2b:
        48:b3:42:f1:0e:2c:a4:3a:04:6e:99:8e:52:3d:ad:ff:b8:b1:
        86:26:e1:da:8e:a9:ed:66:bb:96:28:d3:4e:d6:76:f8:05:85:
        a4:06:25:83:87:6e:ec:fb:9d:e3:a8:52:75:5a:01:27:e7:19:
        c1:77:ee:cf:95:e9:27:a0:e4:76:2d:09:09:ab:c8:cd:d5:0e:
        e6:ae:69:a0:f4:bc:5c:6f:b7:48:bb:cb:3a:e9:09:ef:36:a4:
        51:52:77:3b:d9:53:3a:ed:a5:dd:b5:ce:28:35:4f:f7:d9:98:
        f1:44:6b:38:84:ea:af:fd:fc:79:ab:50:a8:24:71:74:06:4f:
        b1:b8:32:cd:d3:02:94:cc:7d:5b:4c:f8:10:e1:a3:7f:73:b7:
        f7:91:36:43

-1233969087 | 2024-04-15T00:23:33.173682

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.29
  Capabilities: 65535
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

-18367942 | 2024-04-23T21:11:37.812867

8080 / tcp

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:11:37 GMT
Server: WSGIServer/0.2 CPython/3.11.2
X-Frame-Options: DENY
Content-Type: text/html; charset=utf-8
Content-Length: 460
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin

-1957984192 | 2024-04-20T00:47:56.282449

9080 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-Frame-Options: DENY
Date: Sat, 20 Apr 2024 00:47:56 GMT
Transfer-Encoding: chunked

54.197.253.177

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

589765266 | 2024-04-21T08:20:27.177153
80 / tcp

nginx1.18.0

-292586767 | 2024-04-21T03:05:04.141821
443 / tcp

nginx1.18.0

-1233969087 | 2024-04-15T00:23:33.173682
3306 / tcp

MySQL5.7.29

-18367942 | 2024-04-23T21:11:37.812867
8080 / tcp

-1957984192 | 2024-04-20T00:47:56.282449
9080 / tcp

Products

Pricing

Contact Us

54.197.253.177

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

589765266 | 2024-04-21T08:20:27.177153 80 / tcp

nginx1.18.0

-292586767 | 2024-04-21T03:05:04.141821 443 / tcp

nginx1.18.0

-1233969087 | 2024-04-15T00:23:33.173682 3306 / tcp

MySQL5.7.29

-18367942 | 2024-04-23T21:11:37.812867 8080 / tcp

-1957984192 | 2024-04-20T00:47:56.282449 9080 / tcp

Products

Pricing

Contact Us

589765266 | 2024-04-21T08:20:27.177153
80 / tcp

-292586767 | 2024-04-21T03:05:04.141821
443 / tcp

-1233969087 | 2024-04-15T00:23:33.173682
3306 / tcp

-18367942 | 2024-04-23T21:11:37.812867
8080 / tcp

-1957984192 | 2024-04-20T00:47:56.282449
9080 / tcp