GeneralInformation

Hostnames	afc.sislii.com
Domains	sislii.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 6002

1509997044 | 2024-05-10T02:10:00.122045

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC2ZccCj1X3t7ClRoirh7dw2uoW9VJtYkiovAgN74V221R1
50o1hNNphRbCO5vmi8LPhwWuxNlCHhkOl0sGb/XjOp2T32SskxA5hhPBPjSuAQgpT8LjTKh16ruM
HIixaIqtaht4yKKaeCae0/mbRbC1L0S2kRI7Vau3Xx5KDi7xj2uWLFYXkllbJQyIuuAH8A69XpYl
7LWJgepQNWfS/mHG9pseGBFaoIgmzM2F+7zu8LCd1NcJbqH2wGfDFmMdfcr5IC29Gk2ZU8dWcbul
Dd6iBw8kUVBSQ6QRtnUzTW8oLA+rpeARCrR5fNOmOVv/9BWm1J3XKA2JN3sRRIcruzsu0jf4HnmC
pXrIFzViZjuunxUeMy/4dzygmZOVjR2GszV/Ha84ZaXXa1dAVYNH7fhqwuHcEyrn6fDrawwj+c9E
GbMfH5UjkbiQ5MH80Y8YxPeZJvqNbMGFAFv50g8yz1C/xxcjNeqcXc3UO3lviEBmET5oDtI0gpOI
1jwnYbZ0o5s=
Fingerprint: ce:72:7b:b8:06:d9:ac:08:d6:75:7f:76:12:54:29:b0

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-10T03:18:52.487833

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 10 May 2024 03:18:52 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-699071050 | 2024-05-05T18:36:53.680212

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 18:36:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 6498
Last-Modified: Fri, 12 May 2023 16:00:01 GMT
Connection: keep-alive
ETag: "645e6281-1962"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:20:ab:96:44:e8:e8:e3:a7:d3:43:cf:74:d6:1e:c3:3e:b0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 19 04:31:43 2024 GMT
            Not After : Jul 18 04:31:42 2024 GMT
        Subject: CN=afc.sislii.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c8:20:40:2e:f0:8a:0a:47:a3:11:30:56:06:b7:
                    45:9a:ab:f3:1f:23:34:69:b0:8f:4c:c2:cb:fc:4a:
                    48:c8:4b:ad:64:f2:ab:8d:00:86:1a:cb:0c:78:14:
                    a8:80:c9:92:83:34:6d:02:a2:fa:fc:54:c3:d4:de:
                    be:aa:81:e3:6b:e4:3b:f6:69:7d:b2:f8:53:ff:38:
                    1c:81:d0:37:71:76:ac:37:4e:1a:0a:df:73:ba:a1:
                    9b:12:3f:20:de:c6:ac:bc:b1:4d:d2:49:a4:f6:f2:
                    85:e9:f4:3b:16:8e:fe:42:18:63:27:30:6a:c6:1f:
                    5a:8d:b4:d4:0d:b0:ab:79:68:76:8b:ad:16:a0:2e:
                    95:40:30:8a:96:71:ed:00:f3:8c:29:88:d8:65:8a:
                    c7:03:d3:cf:91:fb:63:aa:6f:78:bf:34:03:31:68:
                    63:d2:6e:e9:ef:7d:aa:51:38:47:ca:91:3f:c8:f0:
                    bf:e8:72:55:3a:d6:26:71:98:07:81:52:77:2a:6e:
                    54:4a:71:0a:6c:2b:e9:92:b4:fa:d8:a7:18:d1:75:
                    70:0b:de:19:40:3f:80:2c:ac:07:da:51:a5:ee:2a:
                    6f:78:e1:d7:ee:7e:a7:45:11:a7:cd:37:6a:62:00:
                    b9:d3:3f:12:a3:ad:6d:76:71:af:c8:0c:a9:bd:34:
                    f5:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2B:0E:47:81:08:69:24:5D:CF:44:1B:C4:AC:FA:57:6C:B2:C9:8F:08
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:afc.sislii.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 19 05:31:43.779 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:42:6E:76:E6:BB:2F:54:D0:32:88:74:7E:
                                29:60:F5:F7:D8:63:30:E6:DB:57:8F:40:09:B3:FB:B9:
                                76:94:6B:0E:02:21:00:DB:59:B8:37:BE:93:28:27:4F:
                                3F:EF:76:B9:B1:B5:59:39:B4:8F:2E:C2:E9:0B:48:43:
                                D0:36:90:B7:DB:BC:26
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 19 05:31:43.803 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:12:CF:A9:D3:DF:05:97:FF:62:16:89:42:
                                A9:42:29:22:E0:C0:9C:30:9F:9B:15:84:50:FE:F4:A4:
                                C4:95:6D:99:02:20:14:35:41:12:6A:5D:0A:7A:22:46:
                                1F:84:50:A6:B2:8B:F1:66:86:E8:6B:79:F9:87:5C:A4:
                                CF:B6:EB:9D:26:95
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6a:1c:94:36:e5:38:dd:0c:20:81:14:be:35:7f:2c:2c:d9:e9:
        1a:87:c5:d7:e0:f8:2b:37:6c:71:41:9a:77:c5:40:0e:9c:db:
        a5:c5:99:cd:c3:72:8c:a9:19:fb:31:9a:4f:c0:64:f8:a8:1e:
        da:27:79:41:10:a6:81:d5:5c:cb:2b:4f:b0:82:64:a1:a7:fa:
        44:f8:ed:12:73:3c:e2:14:7e:aa:b1:9d:cf:39:c1:5e:61:88:
        5c:9a:53:af:9c:e0:5f:4f:53:83:13:73:2b:a5:f9:2c:c4:30:
        3a:44:52:93:88:11:7a:15:e3:67:91:8a:20:5c:b2:ae:d7:45:
        11:21:25:77:94:45:cd:00:a1:75:1f:42:c4:97:6c:6e:af:72:
        e8:85:0e:0b:e4:30:c3:77:5a:6e:13:01:9e:a4:de:56:72:7b:
        a0:6a:26:c4:30:2f:cb:67:8e:8e:88:7c:d7:eb:13:de:81:3a:
        7d:cc:3e:5a:91:ef:a4:73:a6:83:b0:54:d6:80:eb:40:d3:71:
        70:9e:6e:b2:c4:38:26:45:b8:c1:12:5c:b1:0c:9a:40:5d:8c:
        2f:da:7f:07:5e:4f:e6:b6:cf:23:c1:46:bc:7a:84:a0:12:11:
        7d:a0:bb:af:6a:8e:35:c3:5a:6d:68:0a:f2:67:92:d7:46:64:
        89:84:46:df

199333125 | 2024-05-04T04:49:37.953684

6002 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 04 May 2024 04:49:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 650
Connection: close

68.183.112.92

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1509997044 | 2024-05-10T02:10:00.122045
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-10T03:18:52.487833
80 / tcp

nginx1.18.0

-699071050 | 2024-05-05T18:36:53.680212
443 / tcp

nginx1.18.0

199333125 | 2024-05-04T04:49:37.953684
6002 / tcp

nginx

Products

Pricing

Contact Us

68.183.112.92

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1509997044 | 2024-05-10T02:10:00.122045 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-10T03:18:52.487833 80 / tcp

nginx1.18.0

-699071050 | 2024-05-05T18:36:53.680212 443 / tcp

nginx1.18.0

199333125 | 2024-05-04T04:49:37.953684 6002 / tcp

nginx

Products

Pricing

Contact Us

1509997044 | 2024-05-10T02:10:00.122045
22 / tcp

677579724 | 2024-05-10T03:18:52.487833
80 / tcp

-699071050 | 2024-05-05T18:36:53.680212
443 / tcp

199333125 | 2024-05-04T04:49:37.953684
6002 / tcp