GeneralInformation

Hostnames	talisman-online.ru
Domains	talisman-online.ru
Country	Russian Federation
City	Saint Petersburg
Organization	Selectel SPb
ISP	OOO "Network of data-centers "Selectel"
ASN	AS49505

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 111 443 3306

-1879037038 | 2024-04-23T09:42:43.935309

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDZwkeHRdcMh/1cESHVPvpFavkdo7AQ+LZvpHlRds7JoE6D
/utDPgi/2hrHoK+jvjF2tfXIyvuO4ErtZfH71j52urpmqK+Blk4x88BWoxHXSoCfbEJayYX0yLhT
O0nNkTHtzElkRicdgSsHXgdNU3ziZgDeGk3YTwxc5v5kczXdC/oLAQ+lfGsg47vCjA0S3zk4Jvqs
izleeHPnTfRyz6foAkPMxHRRUnsbFoEC6rOxzmKbCapACg9zXsLZp8Tslsyl4jgl0E81AJ+Ob4dL
RwHt3DktcNQsvGMh9PBLWmufgVZFNM9xApJN9ZZm9iKrl1iai+6CCHM3tW+9bcHrP4+l
Fingerprint: 4a:e8:fa:53:18:1a:c1:92:ad:47:04:62:3b:ba:8c:59

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

834175644 | 2024-04-27T23:56:48.804149

80 / tcp

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.2
Date: Sat, 27 Apr 2024 23:56:48 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: http://www.talisman-online.ru/

-1345205424 | 2024-05-01T05:23:04.281333

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

897585984 | 2024-04-29T06:38:38.770087

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Mon, 29 Apr 2024 06:38:38 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://www.talisman-online.ru/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:43:df:d0:58:40:6e:a1:bd:28:54:f5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Oct 23 19:54:49 2023 GMT
            Not After : Nov 23 19:54:48 2024 GMT
        Subject: CN=*.talisman-online.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:99:b1:d8:7e:89:97:13:a1:18:59:34:89:e8:74:
                    34:11:e8:8e:1c:e7:e7:73:40:76:c5:db:36:b2:59:
                    da:54:9f:c9:1e:c5:b3:96:9e:4d:fc:0c:2a:01:65:
                    b7:6d:93:4f:21:06:8d:63:7f:bf:bc:94:bc:96:7e:
                    17:28:c7:a8:6c:b5:c6:3d:bc:a0:d7:c5:0e:08:2f:
                    d0:b5:4b:ed:82:de:3c:2c:b8:e3:29:2d:52:1d:ae:
                    08:f3:3c:4a:1c:aa:e8:58:c0:6b:7e:46:a2:ae:7d:
                    3d:54:66:92:2e:d1:8d:21:09:84:c1:8c:7e:ca:86:
                    39:94:f6:00:3b:bb:65:55:17:ad:84:df:ce:28:16:
                    fa:1f:a5:6b:23:e7:be:d8:fb:16:1b:bc:af:ea:9e:
                    47:74:e0:66:ae:7f:07:e5:8f:96:46:3d:dc:40:ad:
                    6a:51:3b:f2:ee:8e:10:db:66:95:58:f0:6a:12:c7:
                    e0:d5:f4:9b:74:8a:fe:d3:08:94:5d:7b:f8:99:fe:
                    e5:86:7f:18:aa:90:e3:c7:a2:4d:ef:b5:39:9d:34:
                    e2:01:e4:db:5b:d3:e5:83:22:9b:73:07:6e:2a:91:
                    3a:a3:31:db:f0:7c:4f:70:3a:32:45:b3:1b:42:ff:
                    24:24:13:64:8e:bc:2f:9f:9b:31:54:2d:69:04:9f:
                    3e:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:*.talisman-online.ru, DNS:talisman-online.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                18:58:48:46:C0:1E:E6:F2:18:CB:0B:6F:50:96:39:62:67:48:B2:D5
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 23 19:54:51.264 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:75:69:E5:A0:F4:DA:D2:0E:89:E2:A0:86:
                                BD:C1:D8:9D:5D:EE:C9:57:AE:52:0E:A6:25:AB:7F:13:
                                66:1D:66:53:02:20:01:7D:DE:E1:78:25:50:A5:15:A8:
                                88:18:FC:16:39:B4:42:6C:D1:2E:67:3F:8F:BA:50:37:
                                AD:34:99:3E:3D:7E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 23 19:54:50.504 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E2:F1:21:48:1C:3C:57:89:A9:D1:2A:
                                95:A3:21:4A:06:89:93:E9:47:46:38:AF:E1:0B:1B:9B:
                                3B:D8:4D:94:F3:02:20:39:F6:04:DE:1A:3B:F4:FB:D4:
                                7A:4F:6F:64:62:D0:50:7E:55:B1:40:A0:C9:49:A6:98:
                                5A:2D:E1:BC:2D:C8:7C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 23 19:54:51.138 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A7:76:4A:71:E7:29:A6:AB:44:BB:8B:
                                18:00:14:41:37:5F:AE:6B:9B:64:42:19:F5:F8:5A:F7:
                                75:38:F2:E8:3A:02:20:61:42:AF:5D:3F:A1:6F:4C:52:
                                05:84:0F:A1:5C:FA:E2:80:14:7A:FB:D1:35:82:07:05:
                                6B:16:74:12:04:75:97
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        24:cb:b4:87:f5:60:fc:a9:06:36:5c:3b:0c:88:f4:e9:b3:85:
        de:12:f1:87:38:73:24:f9:fd:67:32:71:62:85:dd:4f:15:5d:
        ca:0d:94:97:04:88:cd:45:3f:22:c0:20:cd:28:bd:2e:ec:d4:
        95:7e:8f:8e:24:e1:c5:84:b9:b3:bd:7f:76:f7:df:13:ae:a8:
        c8:8e:37:09:a5:e9:56:6d:ba:7d:f0:5f:99:a2:67:45:be:a6:
        49:95:ba:c8:29:73:3c:31:80:37:5e:4b:ad:e7:5e:7c:34:e8:
        9c:00:b4:93:79:9f:01:18:05:19:4f:99:2a:a9:17:16:02:61:
        bf:00:05:e8:14:36:8d:54:dd:68:6a:28:27:1e:55:44:44:2a:
        8b:61:9f:19:a7:b5:5c:08:b3:ac:b4:57:85:bc:ee:6a:7d:7e:
        6f:52:44:9a:70:d4:0a:10:a1:37:69:47:d6:cb:52:b8:c6:e0:
        53:5e:ac:92:88:b6:d4:da:ee:68:ca:8d:9a:cb:a8:59:e2:4e:
        c5:9d:31:7a:cd:46:ee:9e:d6:56:90:91:ad:e9:58:bb:b6:cd:
        a5:64:9b:cb:8a:f8:e3:03:be:ab:e3:70:2d:b6:9d:cd:df:61:
        4c:9e:60:1f:3b:2b:3a:8f:4c:47:49:62:fe:38:1a:e6:69:d2:
        02:a3:db:ca

238813804 | 2024-04-27T13:51:01.651101

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.42-0ubuntu0.18.04.1
  Capabilities: 65535
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

95.213.151.140

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1879037038 | 2024-04-23T09:42:43.935309
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

834175644 | 2024-04-27T23:56:48.804149
80 / tcp

nginx1.20.2

-1345205424 | 2024-05-01T05:23:04.281333
111 / tcp

897585984 | 2024-04-29T06:38:38.770087
443 / tcp

nginx1.20.2

238813804 | 2024-04-27T13:51:01.651101
3306 / tcp

MySQL5.7.42-0ubuntu0.18.04.1

Products

Pricing

Contact Us

95.213.151.140

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1879037038 | 2024-04-23T09:42:43.935309 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

834175644 | 2024-04-27T23:56:48.804149 80 / tcp

nginx1.20.2

-1345205424 | 2024-05-01T05:23:04.281333 111 / tcp

897585984 | 2024-04-29T06:38:38.770087 443 / tcp

nginx1.20.2

238813804 | 2024-04-27T13:51:01.651101 3306 / tcp

MySQL5.7.42-0ubuntu0.18.04.1

Products

Pricing

Contact Us

-1879037038 | 2024-04-23T09:42:43.935309
22 / tcp

834175644 | 2024-04-27T23:56:48.804149
80 / tcp

-1345205424 | 2024-05-01T05:23:04.281333
111 / tcp

897585984 | 2024-04-29T06:38:38.770087
443 / tcp

238813804 | 2024-04-27T13:51:01.651101
3306 / tcp