GeneralInformation

Hostnames	ec2-54-85-170-189.compute-1.amazonaws.com api.stift.com.br
Domains	amazonaws.com stift.com.br
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

2128602611 | 2024-05-02T16:55:47.802473

80 / tcp

HTTP/1.1 400 Bad Request
Date: Thu, 02 May 2024 16:55:47 GMT
Content-Type: text/html
Content-Length: 657
Connection: keep-alive
Server: nginx/1.18.0

-1357242116 | 2024-05-02T07:41:59.835644

443 / tcp

HTTP/1.1 401 Unauthorized
Date: Thu, 02 May 2024 07:41:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
Content-Security-Policy: default-src 'none'
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-XSS-Protection: 0
Access-Control-Allow-Origin: *
X-Response-Time: 0.647ms
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:c6:24:0d:2b:e7:e9:4d:44:d2:29:6c:c7:a2:e8:7a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Feb 24 00:00:00 2024 GMT
            Not After : Mar 23 23:59:59 2025 GMT
        Subject: CN=api.stift.com.br
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a2:0d:03:f9:25:60:5a:39:38:e3:d7:c3:89:07:
                    3c:72:96:35:d0:ae:22:a8:65:71:a0:43:5f:8d:d5:
                    57:4e:ac:54:c5:d8:7b:27:39:cb:96:37:37:79:b3:
                    4c:34:fa:a0:fd:4e:8d:46:02:24:92:34:2a:ae:56:
                    94:12:96:c8:8e:8e:41:c2:0c:80:3a:c6:15:60:1c:
                    d1:cf:92:2c:92:6a:ea:19:26:7a:fb:9d:bb:97:9e:
                    6a:86:77:ac:20:bf:76:7a:ad:49:29:d7:cc:21:8d:
                    4d:fe:e5:05:72:dc:f5:00:17:f1:25:1b:ea:c8:42:
                    90:11:a1:5d:f4:1a:39:ec:0e:e6:7b:27:01:98:10:
                    64:6d:a3:e9:d0:57:90:8a:b6:8e:9e:b1:87:f6:d6:
                    d4:6e:b7:00:df:da:fc:64:71:b4:15:32:aa:bf:87:
                    4a:fe:80:6c:35:08:7d:a8:11:b8:08:b0:79:96:ee:
                    76:ec:76:ae:05:44:69:55:43:66:f1:1d:71:42:a4:
                    52:76:10:e4:26:3d:12:e2:80:c4:22:8b:9a:e8:4b:
                    34:c2:4f:60:c3:63:2f:90:a8:b9:ff:c6:e2:34:8b:
                    63:02:47:29:74:ec:67:97:07:8d:0b:74:58:2c:2f:
                    9d:1f:21:ce:64:73:e7:0b:c4:a8:a5:cc:50:78:26:
                    14:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                49:A2:7F:AE:EB:2F:7D:02:77:7B:A2:E9:95:9C:04:8B:57:5C:F4:BB
            X509v3 Subject Alternative Name: 
                DNS:api.stift.com.br
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 24 08:16:09.020 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8F:F8:E4:2A:9C:8D:5B:40:6A:8C:9C:
                                2B:AD:1F:A3:88:BB:05:50:F3:B9:F2:C4:F3:11:7B:55:
                                B7:DA:8F:8E:85:02:20:28:D6:3D:E9:FB:44:CA:8A:08:
                                6A:37:88:41:34:C7:EC:E8:2B:0F:2B:ED:D7:5F:A0:12:
                                8B:23:4C:F5:F4:D9:94
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 24 08:16:09.100 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B0:F5:B3:53:1E:13:46:06:C0:0A:51:
                                71:7B:23:8A:04:62:D9:F4:64:D5:06:B3:CE:40:E0:D8:
                                9A:C9:20:3D:D4:02:20:34:07:54:B1:C8:9A:AB:C0:65:
                                A1:9B:EC:F3:BD:55:A8:59:CE:3C:3A:63:0A:37:D9:4F:
                                D9:6D:D7:3E:FB:06:C2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 24 08:16:09.098 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4E:1E:69:46:8A:33:4F:67:3A:9D:32:F7:
                                00:BC:8C:7E:9C:78:77:FD:55:86:8C:F2:B2:FD:C6:CC:
                                FA:45:0C:81:02:21:00:F5:0B:EC:96:B7:F8:28:20:E6:
                                A7:62:B9:19:CD:AB:45:C5:F7:D0:DF:F0:A1:40:3B:42:
                                29:10:5E:E8:49:FC:A9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4e:2a:53:7c:2d:0e:b8:0f:ae:c7:e1:96:04:85:67:95:b5:8b:
        32:1c:de:d2:c8:e7:2b:32:6e:38:a8:44:89:70:a6:18:16:27:
        24:68:17:81:60:91:76:6e:63:8d:92:3c:06:4b:20:6d:b6:b4:
        35:4e:35:2d:31:9b:a9:49:ae:e6:8f:72:6c:c6:fb:9a:94:c6:
        8d:57:92:1e:9d:f6:de:24:98:13:79:0c:78:16:17:a6:52:84:
        4d:57:da:6f:28:53:29:11:4e:95:d3:d4:d2:bf:1c:4e:df:8e:
        bc:32:2f:69:9f:4e:79:c5:50:d2:88:43:93:ed:9d:5f:71:43:
        bb:4f:b8:14:99:47:4d:88:21:57:3e:da:5c:ea:d9:35:45:e5:
        cb:cd:0a:6f:0b:3d:8a:3a:2f:93:ea:48:4b:f6:dc:7d:55:08:
        ab:2a:0f:2b:f5:85:8b:c0:77:83:da:8c:91:df:80:92:5e:3c:
        47:7a:05:47:e3:36:c9:42:01:5d:5d:01:eb:34:2c:8e:6e:0b:
        77:2c:eb:ba:23:01:4b:5f:74:f6:41:e6:0b:81:fe:3a:d7:00:
        82:dd:f2:c6:0a:c8:a2:c7:9a:e6:5a:64:ac:a1:69:fe:f4:e3:
        a4:99:c1:58:96:62:39:53:67:66:1e:41:6d:c7:f0:83:51:35:
        07:f3:9a:ec

54.85.170.189

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

2128602611 | 2024-05-02T16:55:47.802473
80 / tcp

nginx1.18.0

-1357242116 | 2024-05-02T07:41:59.835644
443 / tcp

Products

Pricing

Contact Us

54.85.170.189

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

2128602611 | 2024-05-02T16:55:47.802473 80 / tcp

nginx1.18.0

-1357242116 | 2024-05-02T07:41:59.835644 443 / tcp

Products

Pricing

Contact Us

2128602611 | 2024-05-02T16:55:47.802473
80 / tcp

-1357242116 | 2024-05-02T07:41:59.835644
443 / tcp