| Hostnames |
discordapp.com testxray.gostudy.cz gstatic.com |
| Domains | discordapp.com gostudy.cz gstatic.com |
| Cloud Provider | DigitalOcean |
| Cloud Region | nl-nh |
| Country | Netherlands |
| City | Amsterdam |
| Organization | DigitalOcean, LLC |
| ISP | DigitalOcean, LLC |
| ASN | AS14061 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | 7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
1619660814 | 2024-04-14T16:08:58.38486722 / tcp
SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDsLgu2z3ECtrLzPOK9XIazqztJGSxdD8DCIrLsBUOgcoxs hyi5YFPFs29tuePjoYXatSGlyT+zE0Sgg89x86FJTL4P6ZAxqFdA705z5fNHsIjhTYBrlBse9ye6 pgKxFmWo+poVNAIN7GIveOOvJQR+p/J+rGlRhynmI4vUHUAq8FXbFNtGdrSgPZyclZFlIM0IiJHv V6RS8di2BiXEheiLO3AhXzaHWSDC86S0lQNIhSmhjgRAVEgQuhYrGZ8bHvwW3K82duNOcVIa4+0a 97WFvlViFb2US1ahsu8kuraetQLmy0IsR187c6hVc9/GIfuvNX2YZP/ZUx6JIbd2C7elLtqBRSyN SfNwfdDCVTswnK2dFAPghi1KL9VS+6+Cdbh+dauC0FhwcPKm4adwk0T5WaprhdnevqjQ1qsRvphq N1Spet7Bu+LobnQjgQM4avHjTL0RovXy0yH0Fxry+n6haxigvvLhUydAUR9JRD28DaIKVNYuuidr ZKRA2PKHmaM= Fingerprint: 30:e0:7f:ad:8b:b5:4a:c8:80:09:9c:49:86:90:f6:3b Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
1651973090 | 2024-04-17T04:09:49.41876580 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Wed, 17 Apr 2024 04:33:51 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Tue, 10 Oct 2023 09:27:35 GMT Connection: keep-alive ETag: "65251907-264" Accept-Ranges: bytes
-2098053163 | 2024-04-10T23:52:28.593194443 / tcp
HTTP/1.1 403 Forbidden Server: nginx/1.18.0 Date: Thu, 11 Apr 2024 00:15:33 GMT Content-Type: text/html Content-Length: 555 Connection: keep-alive
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:23:58:c3:94:50:af:6c:5b:f6:b1:39:0a:a3:d4:98:f0:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Jan 4 08:37:28 2024 GMT
Not After : Apr 3 08:37:27 2024 GMT
Subject: CN=testxray.gostudy.cz
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ab:28:d6:6c:db:b4:47:4e:a9:e0:4c:32:2c:2b:
7b:f8:20:9c:40:a4:61:a1:84:b9:01:d7:35:99:36:
c5:2b:cd:db:d8:ce:6a:29:43:68:a7:85:37:a6:f4:
5b:1a:f4:fb:eb:fe:cf:c7:d6:f7:ea:a2:4d:74:c0:
12:89:bb:4d:78:c6:e8:62:59:3f:cb:f0:2e:66:5c:
e1:aa:71:af:f6:1f:79:26:d0:08:f9:c4:2f:79:a5:
48:a9:03:45:e0:8d:5d:05:3c:35:8b:a7:d0:c5:7d:
db:0b:e4:ec:90:a3:07:9e:d7:50:a5:c8:a0:e1:68:
ec:2f:af:42:d5:b5:84:62:d6:9c:f1:64:e8:33:7e:
19:e9:f4:93:0c:f6:09:fe:a1:df:73:0e:6f:95:a3:
0b:ed:fd:16:cf:4e:8b:57:fc:9d:b7:41:6e:da:38:
e4:51:7f:4d:8d:0d:73:81:1a:24:64:d9:55:22:75:
fc:ba:9e:d3:cc:4c:be:0a:f0:d2:25:2d:d2:7b:30:
e2:52:95:6c:f8:7d:47:92:68:7e:ed:5a:26:4b:22:
0d:9e:95:7d:50:00:df:ac:13:c4:2b:27:90:f1:d3:
0a:45:dc:cd:90:d9:74:8d:e3:a8:0c:9a:48:fc:88:
f8:41:c6:ff:5b:88:0d:3c:89:3f:a2:8f:1c:8f:12:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
E3:1E:C1:39:98:77:79:2E:6E:3B:EE:91:AA:CF:C9:6E:AB:83:14:4F
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:testxray.gostudy.cz
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jan 4 09:37:28.554 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:9B:48:25:0A:61:E5:FA:90:5C:8C:C3:
26:53:2E:D0:AA:1B:D5:37:3C:A3:ED:5D:77:D8:BE:E8:
33:82:44:DA:7D:02:20:63:EC:7B:F1:A1:84:71:D9:DF:
30:FF:B9:65:3C:7A:4C:89:76:2A:91:AA:58:17:82:1D:
41:BF:D2:70:75:F9:4C
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Jan 4 09:37:28.550 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:EE:30:AF:09:0E:BE:1B:11:BD:7D:B1:
63:75:42:FA:46:33:36:49:D0:25:69:08:ED:1D:98:A5:
2E:0C:D8:77:0C:02:20:7D:32:8A:0F:3A:0F:E6:B3:29:
C3:99:14:07:66:EB:A7:18:C3:ED:54:61:1B:13:6B:00:
79:2B:7E:F3:2D:3D:14
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
0a:27:e7:37:95:c5:97:d3:6a:f0:1b:79:61:41:40:d4:79:ba:
0f:5d:a7:50:d9:d7:4d:d2:8f:c4:7b:5e:77:06:e8:7d:74:f9:
6b:a7:b9:04:a4:6a:f0:bc:e8:1a:d4:1e:fa:9e:f8:ff:bd:5e:
7d:9d:2e:5a:02:c1:6f:db:e6:05:cc:1c:1f:23:25:db:a9:f6:
20:53:4f:7e:66:cf:61:fa:69:9e:c0:74:1b:72:93:d7:85:3e:
00:5f:59:17:af:9b:2a:05:0a:21:e9:d7:a5:f4:3e:6c:dc:d6:
14:61:29:e6:9f:cd:9f:b7:b8:ca:f3:bc:d1:a6:c2:e2:36:59:
4d:54:7f:0b:08:7b:e1:78:f8:2a:99:75:29:09:ca:f8:8d:23:
8b:b0:57:2c:e4:c1:4b:7b:c1:85:76:a3:0d:7a:66:31:c6:e9:
b2:24:9b:ad:2b:a1:8b:13:23:24:34:98:b6:e6:db:8f:34:6d:
b7:c5:e4:d6:b2:d4:29:dd:ab:c8:7f:12:9e:6a:5d:fb:ee:75:
e5:cc:45:f0:e1:77:c9:d3:c1:0c:d8:12:7d:4b:2e:b3:02:92:
04:92:4e:11:de:3e:cd:6d:17:fd:6a:7a:35:ca:81:03:d6:17:
37:68:a0:8a:6b:4e:75:88:c2:81:70:2c:78:af:f5:7f:37:b3:
21:56:d3:95
141477257 | 2024-04-10T12:11:24.9998152053 / tcp
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 10 Apr 2024 12:11:24 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: -
-87718717 | 2024-04-08T20:11:52.8584382083 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/plain; charset=utf-8 Sec-Websocket-Version: 13 X-Content-Type-Options: nosniff Date: Mon, 08 Apr 2024 20:34:38 GMT Content-Length: 12
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
86:3d:2f:39:f4:4f:75:45:79:d5:27:4f:d8:9d:62:41
Signature Algorithm: ecdsa-with-SHA256
Issuer: O=Xray Inc, CN=Xray Inc
Validity
Not Before: May 21 08:45:11 2023 GMT
Not After : Mar 29 09:45:11 2033 GMT
Subject: O=Xray Inc, CN=Xray Inc
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:18:09:81:f0:22:0b:2b:b4:35:14:6e:3b:83:95:
57:83:fa:17:dc:41:50:aa:55:bc:07:46:99:01:fb:
58:a4:71:8b:9b:88:44:61:50:38:31:ab:28:19:2c:
51:b9:ba:2b:84:6b:b7:94:3b:e5:b7:47:19:69:04:
cb:bc:ef:c8:2b
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Alternative Name:
DNS:gstatic.com, DNS:*.gstatic.com, DNS:*.metric.gstatic.com
Signature Algorithm: ecdsa-with-SHA256
Signature Value:
30:45:02:21:00:b5:5c:c2:33:d5:7c:09:ad:cb:b7:05:26:50:
16:53:6d:7a:eb:72:7a:91:eb:22:db:6b:b6:c7:dd:77:4e:58:
b1:02:20:02:d0:a0:e7:7c:06:51:24:8e:60:62:fc:f7:6d:5d:
2a:e5:1c:a4:15:92:3e:4b:c7:eb:2d:c0:93:e6:2c:4c:c8
66606728 | 2024-04-09T19:36:28.9849888000 / tcp
HTTP/1.1 200 OK date: Tue, 09 Apr 2024 19:59:22 GMT server: uvicorn content-length: 50773 content-type: text/html; charset=utf-8
-87718717 | 2024-04-12T14:07:18.4561918080 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/plain; charset=utf-8 Sec-Websocket-Version: 13 X-Content-Type-Options: nosniff Date: Fri, 12 Apr 2024 14:30:38 GMT Content-Length: 12
1471629837 | 2024-04-19T04:13:36.5931798443 / tcp
HTTP/1.1 403 Forbidden Server: cloudflare Date: Fri, 19 Apr 2024 04:13:27 GMT Content-Type: text/html Content-Length: 553 Connection: keep-alive CF-RAY: 876a0fe3fdc196fb-AMS
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:53:e3:01:a4:c5:1f:40:6d:1e:71:54:d4:69:61:df
Signature Algorithm: ecdsa-with-SHA256
Issuer: C=US, O=Cloudflare, Inc., CN=Cloudflare Inc ECC CA-3
Validity
Not Before: Oct 20 00:00:00 2023 GMT
Not After : Oct 19 23:59:59 2024 GMT
Subject: C=US, ST=California, L=San Francisco, O=Cloudflare, Inc., CN=discordapp.com
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:17:0b:e9:e2:76:9e:87:9b:4e:71:1a:be:85:6e:
75:10:63:1d:81:6e:04:a2:a9:a9:36:c9:1c:82:f0:
68:68:b5:17:a3:54:54:0c:fa:ae:da:9b:af:98:9f:
2a:ad:92:ec:54:05:f6:e2:2a:4c:3e:cd:f6:e5:94:
fe:63:70:14:a0
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Authority Key Identifier:
A5:CE:37:EA:EB:B0:75:0E:94:67:88:B4:45:FA:D9:24:10:87:96:1F
X509v3 Subject Key Identifier:
0D:BC:34:A5:5E:79:52:DA:F9:11:E8:B6:FA:43:12:21:0C:39:7F:41
X509v3 Subject Alternative Name:
DNS:discordapp.com, DNS:*.discordapp.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Agreement
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl3.digicert.com/CloudflareIncECCCA-3.crl
Full Name:
URI:http://crl4.digicert.com/CloudflareIncECCCA-3.crl
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/CloudflareIncECCCA-3.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Oct 20 02:21:38.610 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:65:76:40:E1:4E:64:9B:D1:45:C3:F7:C8:
B4:2E:42:86:48:AC:AE:12:5A:23:FE:87:75:04:EB:1B:
2C:9C:26:ED:02:20:49:93:BD:C4:95:C3:CE:31:9C:22:
68:C0:60:D5:9F:A4:14:78:B5:1B:0D:23:50:E9:C3:AF:
8D:36:73:76:75:AD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Oct 20 02:21:38.579 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:8E:73:C7:2C:2B:4D:D3:D0:FD:3A:17:
90:8F:A2:49:84:75:C0:05:2F:DA:F0:15:4E:45:D1:44:
24:3F:3D:F0:F0:02:20:60:F5:52:28:47:08:71:D7:D6:
3E:ED:37:F0:9C:F4:01:1F:49:D1:51:25:C1:63:3B:06:
E6:7C:7E:EA:7A:01:79
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Oct 20 02:21:38.561 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:5E:D4:02:55:DE:E1:9D:50:42:2A:61:20:
37:AC:61:CC:DF:39:98:EB:99:EB:1F:35:75:57:CD:00:
58:27:9D:59:02:21:00:95:2B:54:CD:E4:07:1B:36:A5:
63:D6:05:FC:19:78:FE:4D:8A:D9:C5:83:F3:A8:32:F5:
28:C0:24:9D:0D:E3:79
Signature Algorithm: ecdsa-with-SHA256
Signature Value:
30:45:02:20:7f:56:78:4c:b3:f7:1f:29:31:5e:21:c1:86:2d:
3e:ba:d0:a1:fe:f2:f0:3e:a6:4c:0f:db:97:bc:14:c2:b8:9a:
02:21:00:df:f0:87:03:8e:d9:97:5e:e2:ae:a5:e1:37:34:d1:
e3:24:5c:d2:83:fb:a4:19:4e:64:60:bf:c5:4d:47:01:82
-2000609865 | 2024-04-11T23:35:29.8629669100 / tcp
HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close
400 Bad Request
Prometheus Node Exporter:
node_exporter_build_info:
branch: HEAD
goversion: go1.19.3
revision: 1b48970ffcf5630534fb00bb0687d73c66d1c959
version: 1.5.0
node_os_info:
id: debian
name: Debian GNU/Linux
pretty_name: Debian GNU/Linux 11 (bullseye)
version: 11 (bullseye)
version_codename: bullseye
version_id: 11
node_uname_info:
domainname: (none)
machine: x86_64
nodename: debian
release: 5.10.0-26-cloud-amd64
sysname: Linux
version: #1 SMP Debian 5.10.197-1 (2023-09-29)
node_dmi_info:
bios_date: 12/12/2017
bios_release: 0.0
bios_vendor: DigitalOcean
bios_version: 20171212
board_asset_tag: 384554753
board_name: Droplet
board_vendor: DigitalOcean
board_version: 20171212
chassis_vendor: QEMU
chassis_version: pc-i440fx-6.1
product_family: DigitalOcean_Droplet
product_name: Droplet
product_version: 20171212
system_vendor: DigitalOcean
node_network_info:
ens4:
address: c6:5a:5e:34:b1:e3
broadcast: ff:ff:ff:ff:ff:ff
device: ens4
duplex: unknown
operstate: up
lo:
address: 00:00:00:00:00:00
broadcast: 00:00:00:00:00:00
device: lo
operstate: unknown
tun0:
device: tun0
duplex: full
operstate: unknown
docker0:
address: 02:42:af:87:f1:84
broadcast: ff:ff:ff:ff:ff:ff
device: docker0
duplex: unknown
operstate: down
ens3:
address: ca:4c:17:8c:52:cd
broadcast: ff:ff:ff:ff:ff:ff
device: ens3
duplex: unknown
operstate: up