GeneralInformation

Hostnames	promo.doradobet.com
Domains	doradobet.com
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-921362546 | 2024-05-22T02:19:02.145927

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBH6HRyL6Nb+pv3tFFx+GpqNt
aTl4XXx78x0gxJzJyXRO0OTeFaUR3C4W1JFytbvaok8PWZv7CIckpexjI5gUwVs=
Fingerprint: 4b:a7:9f:54:cf:27:fe:c9:ff:61:48:43:1e:b2:4c:9c

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

287939818 | 2024-05-30T23:33:00.929458

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 May 2024 23:33:00 GMT
Content-Type: application/octet-stream
Content-Length: 405
Last-Modified: Tue, 12 Mar 2024 16:32:11 GMT
Connection: keep-alive
ETag: "65f0838b-195"
Accept-Ranges: bytes

1980899903 | 2024-05-27T15:48:02.729828

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 27 May 2024 15:48:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://promo.doradobet.com/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:67:ce:7d:56:90:57:aa:1e:8b:6a:0d:6d:e4:9f:e7:56:bc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 11 15:58:34 2024 GMT
            Not After : Jul 10 15:58:33 2024 GMT
        Subject: CN=promo.doradobet.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ac:87:b7:bf:cd:a4:41:9a:58:d3:5e:49:4d:32:
                    a1:8d:6c:31:1a:79:7e:45:0d:01:5f:b9:cf:55:19:
                    20:a2:72:5c:53:33:08:a3:e3:fa:74:e2:a1:a1:70:
                    3d:1f:cd:6a:ff:2a:99:dd:94:dd:9d:84:fa:cb:71:
                    27:a3:04:d5:9d:fd:91:4c:09:84:91:d6:3f:cd:10:
                    7e:ed:af:4e:8b:b3:f5:8c:d2:3f:bf:15:c5:0e:88:
                    31:47:87:9f:98:7e:a8:2d:2e:7d:7d:fd:04:19:af:
                    84:f8:a3:ac:1d:d7:dc:71:37:8a:78:73:94:af:74:
                    8f:17:a9:3c:83:b4:27:ef:24:31:3f:a5:07:fc:a2:
                    9a:03:73:50:c5:b5:01:68:36:89:53:16:22:0b:d1:
                    e8:ea:c5:40:1a:43:13:45:86:d2:bd:22:30:55:bb:
                    e4:09:66:1a:b9:b2:0c:fa:4d:2d:ff:22:d3:3e:21:
                    ea:59:7f:c0:b6:0c:80:27:b1:38:9d:4c:a2:a6:9a:
                    4c:19:3f:95:be:f8:ca:16:50:6d:86:16:36:46:2b:
                    79:8b:3b:83:74:c6:46:eb:82:b1:c3:ba:42:3f:8a:
                    87:7b:48:06:4c:7d:c5:6d:e2:d8:61:f8:57:7b:4c:
                    dc:3c:82:d9:8b:ef:8d:4f:c8:bc:58:bf:75:2c:dc:
                    74:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D3:CA:86:62:D0:97:56:F2:67:B0:25:E8:C2:87:C5:DD:D1:75:99:E3
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:promo.doradobet.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 11 16:58:35.115 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F6:26:9D:BD:1C:35:1E:63:87:6D:9B:
                                4B:6E:6E:0B:64:A0:7F:FA:64:AC:39:4E:4F:A2:38:6F:
                                97:82:2D:D4:F1:02:21:00:BC:CD:96:98:93:19:F7:39:
                                B5:FC:33:B4:3F:6E:A7:E8:38:86:36:1F:16:FA:72:D7:
                                40:DB:19:54:16:64:FF:E8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 11 16:58:35.118 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BC:8F:81:5B:94:E3:96:D6:61:4A:37:
                                C2:44:80:77:1C:E1:C7:75:F6:2F:EA:F3:45:90:AC:E5:
                                4F:D5:DF:A9:67:02:21:00:96:04:5A:4B:10:87:08:6E:
                                DC:6C:4B:A6:BF:DC:42:79:95:B5:F4:FC:56:06:DB:95:
                                A0:88:6F:43:37:B2:27:9C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:c7:b5:d4:33:26:91:30:14:ed:ca:f4:2d:b2:88:75:19:4d:
        f6:dd:ee:f7:f1:2d:73:d5:3d:3e:dd:80:41:f1:b4:fa:9b:08:
        79:a8:95:89:99:09:23:54:55:15:bf:28:d9:89:ef:09:98:c3:
        df:d0:92:65:f3:fd:90:8b:bc:ca:19:4b:5b:5a:89:31:1c:87:
        ff:ab:38:86:3b:68:e0:76:d7:d6:49:7c:53:39:0d:d0:8b:1f:
        35:e4:3c:fe:1b:25:e6:f5:87:08:ce:3b:d9:a8:90:30:65:24:
        a1:7b:b9:95:e9:04:d3:00:9a:d8:e2:7e:59:e2:52:24:b5:1f:
        af:79:49:4f:87:d3:d1:9b:67:b1:7e:d2:f8:43:19:45:ca:c5:
        3f:91:d4:bf:fd:be:6f:c2:2a:e0:a2:79:23:98:dd:cb:43:97:
        08:39:c8:de:8c:77:98:7f:a9:42:00:96:bb:9a:66:e1:3f:70:
        3e:70:20:38:96:e6:65:a6:26:50:66:d1:3e:1a:44:e7:ea:6b:
        75:68:5f:c1:ee:ff:b6:15:5f:3b:7d:42:38:e3:45:b9:28:50:
        3f:fd:ee:7b:db:56:ed:a1:89:55:a0:bb:15:69:e3:e9:9d:b7:
        23:13:54:82:50:dd:03:41:b1:77:47:be:22:01:1c:27:da:9d:
        db:be:96:4f

104.248.176.202

Last Seen: 2024-05-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-921362546 | 2024-05-22T02:19:02.145927
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

287939818 | 2024-05-30T23:33:00.929458
80 / tcp

nginx1.18.0

1980899903 | 2024-05-27T15:48:02.729828
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

104.248.176.202

Last Seen: 2024-05-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-921362546 | 2024-05-22T02:19:02.145927 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

287939818 | 2024-05-30T23:33:00.929458 80 / tcp

nginx1.18.0

1980899903 | 2024-05-27T15:48:02.729828 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-921362546 | 2024-05-22T02:19:02.145927
22 / tcp

287939818 | 2024-05-30T23:33:00.929458
80 / tcp

1980899903 | 2024-05-27T15:48:02.729828
443 / tcp