GeneralInformation

Hostnames	captaincheryl.com
Domains	captaincheryl.com
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

WebTechnologies

Operating systems

Ubuntu

Reverse proxies

Nginx1.18.0

Web servers

Nginx1.18.0

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-850058340 | 2024-04-19T19:23:38.173043

80 / tcp

HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 19 Apr 2024 19:18:54 GMT
content-type: text/html
content-length: 593
last-modified: Wed, 22 Feb 2023 21:25:52 GMT
etag: "63f68860-251"
accept-ranges: bytes

-850058340 | 2024-04-20T04:11:10.948112

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 04:11:10 GMT
Content-Type: text/html
Content-Length: 593
Last-Modified: Wed, 22 Feb 2023 21:25:52 GMT
Connection: keep-alive
ETag: "63f68860-251"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:9b:c7:8f:9c:ad:2a:9b:80:c6:ad:31:4b:9f:6f:b0:19:6a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 25 23:23:13 2024 GMT
            Not After : Jun 23 23:23:12 2024 GMT
        Subject: CN=captaincheryl.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:25:99:a0:1a:bc:e7:34:32:5f:87:3c:51:f4:54:
                    0e:e0:64:a2:db:07:38:aa:ac:ae:a7:d5:41:e5:1b:
                    f7:80:66:59:7d:70:08:c4:c9:37:6f:45:42:e3:a0:
                    12:21:80:83:a0:b7:94:1d:6a:b3:5b:0d:ef:e9:1e:
                    fa:ad:d9:dd:b8
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C2:A9:96:0A:66:32:AB:BD:B3:8F:E4:EA:4A:1E:5A:56:67:BB:77:C5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.captaincheryl.com, DNS:captaincheryl.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 26 00:23:13.289 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:03:19:3D:2E:13:22:F2:12:DE:78:C2:43:
                                3E:C4:1B:A3:3A:FD:1D:F3:2E:1D:3C:05:39:84:78:28:
                                94:DD:B3:83:02:20:41:9A:43:A0:FD:C5:A2:26:EA:8A:
                                A8:92:24:13:6A:93:A5:CC:06:E5:8D:2D:9D:AB:1A:CA:
                                A2:C1:66:58:96:DF
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 26 00:23:13.309 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:55:E5:03:3E:20:35:33:8B:A9:1D:A6:F9:
                                6E:07:6E:AE:23:A2:30:4D:F1:25:55:AC:36:31:49:F9:
                                23:58:AF:11:02:20:40:00:37:AF:D2:67:D4:47:6A:CA:
                                5E:CE:9B:50:4F:A7:A6:10:D7:58:92:2B:08:22:B2:EB:
                                C9:00:B6:56:14:7F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        01:c7:9f:6f:95:df:77:fa:23:d3:d2:d1:82:2c:92:03:d3:2a:
        35:78:db:15:a4:db:e7:c7:5c:f1:2f:92:9e:0a:5c:87:76:31:
        bc:03:82:23:97:1c:a4:a9:0d:a1:55:07:4d:17:16:19:dd:84:
        eb:f3:b6:64:22:c2:e5:49:7a:d4:69:f1:e8:4c:bb:aa:fd:18:
        43:27:8e:77:f2:aa:77:81:e0:6b:44:c5:b7:e7:cd:04:e8:37:
        cf:34:d2:5b:91:32:84:23:39:7b:d9:8c:53:60:c9:99:e8:69:
        c3:51:ee:fb:ce:56:03:0d:91:d6:c2:13:dc:62:db:d7:d4:f3:
        3f:ed:5d:79:4e:3c:84:d5:54:f4:39:ba:78:48:0c:26:15:08:
        cb:c5:06:01:f0:6d:97:3b:6b:3e:00:b4:d5:51:fe:7d:b7:9b:
        fc:8e:3e:c4:b0:f8:11:6b:98:a1:76:61:1d:e1:b9:75:9c:66:
        12:fc:c3:79:1a:a1:c6:20:1e:13:70:4f:20:2b:9b:34:0f:c4:
        12:36:3b:16:67:61:d9:ee:32:1b:d0:5d:e4:40:c3:dc:69:0b:
        ea:6d:9a:d3:aa:ec:d2:2c:11:81:9c:d9:df:fd:16:c1:dd:65:
        63:1e:2e:00:08:2a:ab:24:b0:0c:b1:b8:93:04:53:9b:89:c5:
        bd:41:e2:97

64.225.91.73

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-850058340 | 2024-04-19T19:23:38.173043
80 / tcp

nginx1.18.0

-850058340 | 2024-04-20T04:11:10.948112
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

64.225.91.73

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-850058340 | 2024-04-19T19:23:38.173043 80 / tcp

nginx1.18.0

-850058340 | 2024-04-20T04:11:10.948112 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-850058340 | 2024-04-19T19:23:38.173043
80 / tcp

-850058340 | 2024-04-20T04:11:10.948112
443 / tcp