GeneralInformation

Hostnames	opensource-technology.com
Domains	opensource-technology.com
Country	Thailand
City	Loeng Nok Tha
Organization	CAT TELECOM Data Comm. Dept, IDC Office
ISP	The Communication Authoity of Thailand, CAT
ASN	AS9931

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 81 443 2222 3001 8291

1651973090 | 2024-05-08T17:05:44.992472

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 17:05:44 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 28 Sep 2020 03:32:47 GMT
Connection: keep-alive
ETag: "5f71595f-264"
Accept-Ranges: bytes

2099332038 | 2024-05-07T18:24:55.446104

81 / tcp

HTTP/1.1 200 OK
Cache-Control: max-age=31536000
Connection: Keep-Alive
Content-Length: 3029
Content-Type: text/html
Date: Tue, 07 May 2024 18:37:52 GMT
Expires: Wed, 07 May 2025 18:37:52 GMT
X-Frame-Options: sameorigin

0 | 2024-05-07T16:15:54.877909

443 / tcp

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:de:36:07:72:5b:ff:e0:dd:e6:23:9e:1e:9f:c3:ad
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1
        Validity
            Not Before: Feb 20 00:00:00 2024 GMT
            Not After : Mar  9 23:59:59 2025 GMT
        Subject: CN=*.opensource-technology.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a3:34:75:11:87:a5:ca:b2:69:c1:77:20:85:d8:
                    22:55:6d:9e:dc:b2:15:9b:af:01:f9:f9:f9:9b:53:
                    fd:1e:ce:b1:95:db:d7:c4:7f:a2:e6:94:ae:cb:f0:
                    0e:66:38:64:e9:d8:d6:c6:a9:af:c0:de:ac:d9:53:
                    1a:dd:01:86:d7:fc:97:29:db:f7:a0:a7:56:84:a3:
                    37:2b:6b:4a:9e:bb:08:b4:84:ec:6c:31:b5:9c:bf:
                    5a:12:be:de:d3:00:87:eb:c4:6c:7d:b9:ef:01:56:
                    21:9d:e5:d8:60:3b:56:d6:bf:a7:78:d5:db:8e:23:
                    ed:bc:9d:1e:7f:43:ea:13:ad:43:12:aa:25:12:8e:
                    0c:68:08:d7:a9:8b:e7:29:c5:52:96:12:48:50:9f:
                    c0:97:fe:4d:08:b0:c3:3a:06:58:4a:40:2e:05:6b:
                    06:a1:6d:e9:b5:db:67:3b:9c:53:65:a8:77:ac:2a:
                    ac:12:8b:a6:f4:27:49:cc:b5:63:b5:42:e2:f8:2f:
                    37:68:c3:2e:e6:96:b3:95:29:ff:05:0c:83:5e:2e:
                    e7:a8:ba:4f:d5:a8:f4:af:f3:c6:8d:af:a7:5f:f7:
                    94:07:61:95:47:db:d4:34:1e:f8:cd:69:5a:ea:20:
                    b9:63:f3:85:f2:c1:b8:d1:17:7e:91:46:bb:ed:be:
                    d1:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0C:DB:6C:82:49:0F:4A:67:0A:B8:14:EE:7A:C4:48:52:88:EB:56:38
            X509v3 Subject Key Identifier: 
                A2:58:10:6A:8C:5B:CF:67:0D:28:AE:F6:1E:86:C6:81:DD:5E:63:39
            X509v3 Subject Alternative Name: 
                DNS:*.opensource-technology.com, DNS:opensource-technology.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl
            Authority Information Access: 
                OCSP - URI:http://status.rapidssl.com
                CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 20 03:33:56.610 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6D:30:5B:E9:64:E5:1F:B7:EC:91:F1:0A:
                                B3:6A:BC:D1:38:D7:93:21:32:64:50:31:7D:EA:3C:1F:
                                D2:24:A2:00:02:20:78:68:E2:2C:59:A4:6D:59:8E:FE:
                                5E:14:9F:20:73:45:15:D5:F0:76:52:38:7E:B9:AD:FA:
                                27:12:26:0C:83:E0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 20 03:33:56.669 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DC:E7:44:1E:DD:F8:18:02:25:4B:C9:
                                00:BB:43:DD:FA:41:EE:A8:3F:66:7A:82:31:E2:57:80:
                                4A:FA:DD:A7:3B:02:20:24:C6:5C:AC:D2:77:F4:FC:BC:
                                0A:D8:31:34:63:98:11:A9:59:14:AF:9B:FE:98:90:92:
                                8B:FB:EE:54:7F:4D:3F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 20 03:33:56.714 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:49:44:7C:40:50:46:0C:F1:AF:BC:CF:84:
                                44:DB:75:BC:CC:F1:25:8B:7C:40:8E:10:A5:94:DC:1A:
                                C9:E5:91:6A:02:21:00:89:C4:16:3F:F0:79:19:89:58:
                                03:F8:08:8C:F1:66:48:A3:96:C7:BC:51:7F:0F:27:99:
                                5F:31:56:32:4B:08:6A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        93:60:1d:2f:f4:95:1f:48:a6:7e:6d:f3:d6:ce:ba:9b:ff:83:
        60:0a:09:db:c2:f0:53:1b:c4:61:4a:bf:fd:1b:e4:73:7d:e6:
        fc:96:44:21:fe:1c:cf:fb:36:8c:5c:f0:db:75:8d:b9:32:91:
        3f:70:97:3b:43:a0:87:4e:89:2b:22:e3:0f:f0:31:15:d3:21:
        2f:48:79:7f:c5:65:fe:4a:97:e7:f7:81:a6:c6:b2:ba:bd:d1:
        a7:a6:b8:f5:e8:5b:88:fa:0c:94:7a:70:db:57:23:ef:9b:64:
        96:ec:28:1b:e9:0d:67:de:96:5b:13:d0:01:fa:6d:ba:d0:a6:
        9a:61:47:fe:38:25:7f:b0:5a:48:96:80:bd:db:2f:41:67:12:
        a1:c7:74:87:e9:7d:ea:a0:67:c7:c4:05:67:de:6f:73:40:20:
        e9:c2:e9:fa:7e:f7:af:b8:65:0b:7c:4a:a4:23:6e:0a:d3:c8:
        67:85:51:2b:72:76:fb:42:78:4d:e3:84:a6:31:e1:0e:73:42:
        f4:bd:9a:5b:0f:22:ad:96:40:1a:f8:e0:a2:fd:a7:0e:25:04:
        57:0a:00:81:53:71:60:f3:64:6a:5a:d0:3f:f7:42:c5:d2:42:
        84:bd:cb:4d:9a:11:8d:3c:cc:5f:58:a3:56:80:e6:2a:bc:31:
        f4:bd:20:f0

-1051508103 | 2024-05-10T11:06:57.792358

2222 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDHq+H2nyJOFKnp66jmHbA4QikhK+cCwDZRV9UrpPSXlwyi
TzcmoXgofzSWGSiHXk3Sb1mlNGJvq3/31c6I+TFD0KZEJkyTnKqMB8RkIWGAuZlVFeNntFCfDl0j
cBYVLtmOJ/7yONERDuRCFEo0HQVOC8JR4IO1YfhrOcPM74SUSJZwKEn7irZOQMIBVTCaNoWQ/5fc
J/GOWwBUDgS8nwKliI9Dq8oP/nwbziCblphAvXcouPEXk3r4tk1PdZR62siw6Swdtv8f53Z+Cmno
ov9Z+CeV0DY+u8jHyg+vVEYWX+keoGZ9SDJvJoLbV1dAEk7aQGywBkzYoXVOny+M3nga+PhStQDu
N+I9XP9j3Ylzf5bbUKgxjW3NYnfg3JpN17MzOkvbKq6SOQoqIxltP+QoRVVhxKHvd52hGn6kSYV4
9QoHGpxEcO0lPC0Mgrg53OVmlsSZA4wCsxRK9J6y1Ei71McmsPWawTrBvg5hr3Hb5H0raD1vYZVc
w6VuXm7PGe0=
Fingerprint: 51:d3:66:e6:19:b5:05:38:a5:c8:64:f1:77:ae:76:b2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1246004407 | 2024-05-16T04:35:05.679920

3001 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-309881946 | 2024-05-13T14:34:17.084206

8291 / tcp

MikroTik Winbox:
  list:
    advtool.jg: 7.11
    dhcp.jg: 7.11
    dude.jg: 7.11
    hotspot.jg: 7.11
    icons.png: 7.11
    icons24.png: 
    icons32.png: 
    ipv6.jg: 7.11
    ppp.jg: 7.11
    roteros.jg: 7.11
    secure.jg: 7.11
    ups.jg: 7.11
    wlan6.jg: 7.11

61.19.253.44

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-05-08T17:05:44.992472
80 / tcp

nginx1.18.0

2099332038 | 2024-05-07T18:24:55.446104
81 / tcp

0 | 2024-05-07T16:15:54.877909
443 / tcp

-1051508103 | 2024-05-10T11:06:57.792358
2222 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

-1246004407 | 2024-05-16T04:35:05.679920
3001 / tcp

-309881946 | 2024-05-13T14:34:17.084206
8291 / tcp

MikroTik Winbox

Products

Pricing

Contact Us

61.19.253.44

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-05-08T17:05:44.992472 80 / tcp

nginx1.18.0

2099332038 | 2024-05-07T18:24:55.446104 81 / tcp

0 | 2024-05-07T16:15:54.877909 443 / tcp

-1051508103 | 2024-05-10T11:06:57.792358 2222 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

-1246004407 | 2024-05-16T04:35:05.679920 3001 / tcp

-309881946 | 2024-05-13T14:34:17.084206 8291 / tcp

MikroTik Winbox

Products

Pricing

Contact Us

1651973090 | 2024-05-08T17:05:44.992472
80 / tcp

2099332038 | 2024-05-07T18:24:55.446104
81 / tcp

0 | 2024-05-07T16:15:54.877909
443 / tcp

-1051508103 | 2024-05-10T11:06:57.792358
2222 / tcp

-1246004407 | 2024-05-16T04:35:05.679920
3001 / tcp

-309881946 | 2024-05-13T14:34:17.084206
8291 / tcp