GeneralInformation

Hostnames	api.ilibri.ai mvp.ilibri.ai static.88-198-53-36.clients.your-server.de
Domains	ilibri.ai your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online AG
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8080

-2132733423 | 2024-05-03T12:18:43.497187

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHnLreT2ILp23cl8ezWnh4zT
QPrzTSC02vM5iZ19AJ5H1K8XJphV8VgguW84Aiy2e60SL+iZxH3r1sFgDC91WRY=
Fingerprint: 86:2f:7a:94:b2:aa:83:21:bf:00:cc:82:2c:88:89:b1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-01T04:03:52.124819

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 04:03:51 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://api.ilibri.ai/

760963708 | 2024-05-02T02:51:13.057123

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 02:51:12 GMT
Content-Length: 0
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:36:f2:b4:f0:74:73:a5:c3:85:5d:5f:af:72:2c:b5:bc:df
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 13 17:31:22 2024 GMT
            Not After : Jun 11 17:31:21 2024 GMT
        Subject: CN=api.ilibri.ai
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:04:e1:02:ed:d0:85:48:75:6f:fd:a5:d8:20:5c:
                    00:1d:cb:2c:a5:49:1f:53:18:2f:33:0e:5c:28:4d:
                    0d:8d:06:c0:f3:27:17:6f:aa:2b:90:ad:23:11:4d:
                    51:ba:7f:6b:79:a5:37:25:79:e4:da:0c:e0:86:09:
                    8e:3f:fb:5d:c1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                78:13:CF:B5:8E:BA:AF:E1:B7:A5:B7:E5:1C:A2:A3:70:FA:AE:6A:77
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.ilibri.ai, DNS:mvp.ilibri.ai
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 13 18:31:22.923 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:57:C7:91:41:A2:52:92:4B:8A:94:C1:FF:
                                F6:C3:FC:23:75:BF:8E:DC:63:BD:34:51:7F:FD:36:C8:
                                51:E9:20:72:02:20:15:1A:58:0F:56:A7:5D:BF:74:69:
                                F6:C7:CD:9B:24:F7:31:2E:23:8D:98:1C:87:2F:AD:69:
                                3C:CF:7C:DF:E8:5A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 13 18:31:22.987 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F3:3A:74:05:F1:2C:4F:9C:69:E1:E8:
                                59:20:2F:89:22:5E:CD:2B:40:36:8B:0D:90:69:D4:00:
                                7D:5C:9F:B2:5F:02:21:00:9D:2B:46:92:5F:85:49:C1:
                                DA:2C:55:DD:F0:2C:0F:90:E9:A3:C2:58:15:CB:F5:E2:
                                03:0E:56:D0:07:33:F9:39
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:ac:0f:c3:a8:e8:e7:42:f0:47:0a:d0:46:c3:4d:0d:28:4f:
        61:e9:8f:33:a6:da:3c:8d:9f:34:2e:6d:ac:13:5d:8d:54:43:
        e1:56:d5:3d:cb:9f:f0:80:2d:2a:e3:34:51:92:16:72:04:5d:
        cb:9b:57:f3:f9:20:3f:0b:e4:11:1f:85:b2:33:1b:d7:85:25:
        68:f1:89:36:7d:a5:ad:60:36:ac:89:4e:84:ed:39:fa:48:60:
        f1:10:58:01:1e:69:0a:8b:d4:c6:31:2b:04:c1:e6:80:84:57:
        5f:43:49:c0:22:a5:07:4a:43:a5:44:84:14:32:fe:f7:80:30:
        9d:55:20:b0:0b:be:e8:4a:50:58:05:1a:35:6a:85:6a:34:51:
        48:bb:ec:4e:49:99:28:a9:d2:20:ab:9b:56:f4:60:87:cd:f1:
        03:d0:a9:f9:79:6f:98:db:36:ca:71:d7:51:97:c8:ec:48:ed:
        2f:44:2a:d6:6a:cd:35:be:26:37:08:22:b5:41:77:32:2f:75:
        d5:12:37:3c:b1:b1:51:fe:87:e7:dd:06:4a:e5:7b:d2:84:c5:
        69:f3:bf:04:99:85:31:31:49:f7:6c:cd:8f:56:99:83:7a:b1:
        e2:e4:d6:c0:02:ed:a4:f5:07:82:2f:b2:d8:9b:37:38:d6:ba:
        1d:c6:e3:58

-1409271110 | 2024-04-20T13:08:26.198801

8080 / tcp

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Sat, 20 Apr 2024 13:08:25 GMT
Server: Kestrel

88.198.53.36

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2132733423 | 2024-05-03T12:18:43.497187
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-01T04:03:52.124819
80 / tcp

nginx1.18.0

760963708 | 2024-05-02T02:51:13.057123
443 / tcp

nginx1.18.0

-1409271110 | 2024-04-20T13:08:26.198801
8080 / tcp

Products

Pricing

Contact Us

88.198.53.36

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2132733423 | 2024-05-03T12:18:43.497187 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-01T04:03:52.124819 80 / tcp

nginx1.18.0

760963708 | 2024-05-02T02:51:13.057123 443 / tcp

nginx1.18.0

-1409271110 | 2024-04-20T13:08:26.198801 8080 / tcp

Products

Pricing

Contact Us

-2132733423 | 2024-05-03T12:18:43.497187
22 / tcp

589765266 | 2024-05-01T04:03:52.124819
80 / tcp

760963708 | 2024-05-02T02:51:13.057123
443 / tcp

-1409271110 | 2024-04-20T13:08:26.198801
8080 / tcp