GeneralInformation

Hostnames	d5f0b158938c4bf9914f1cda19bc7be3-free-us-west.playflow.dev
Domains	playflow.dev
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Linux

WebTechnologies

Programming languages

Python

Web servers

Uvicorn

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 81 143 443 3001 7777

-1499220084 | 2024-05-15T01:12:36.238649

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLC4Tpl7pasd0AHlt2t8w8F/
PzCcLWknIS6AHyBgu8umakxGCveNoZtW8rAq8W2el50dEN7LNK0iDUVwT/gHeF4=
Fingerprint: ae:8d:a5:4c:ae:64:3d:42:11:c0:46:1b:4a:4f:d1:a8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1157054443 | 2024-05-12T17:53:08.113233

80 / tcp

HTTP/1.1 101 <font color="green">Web Socket Protocol</font> <span style=color: #ff0000;><strong><span style=color: #ff0000;>A</span><span style=color: #ff9900;>D</span><span style=color: #008000;>M</span><span style=color: #0000ff;>c</span><span style=color: #ff0000;>g</span><span style=color: #ff9900;>h</span><span style=color: #008000;>+</span></strong></span>
Content-length: 0

-1497963492 | 2024-05-08T00:18:10.673533

81 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 00:18:10 GMT
Content-Type: text/html
Content-Length: 4728
Last-Modified: Fri, 16 Feb 2024 03:17:48 GMT
Connection: keep-alive
ETag: "65ced3dc-1278"
Accept-Ranges: bytes

-382012810 | 2024-05-17T16:32:52.395506

143 / tcp

SSH-2.0-dropbear_2020.81
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCJ1Lv/FcBsDl//JkGqMUzIkzq2kgus0ssY34MtYFwPO+vf
wa+uLJyUEzkTRPowB85D9b7MGdI669mLjvveODmPumiz9m7niXPPrmaWrGbKJHo8pLlDJoJsFhXR
lJhoXVPDukNCs7li6eKdlvRxzPys7kUojYqJ0GVMN1WrCJm/T/qWwxjFi5m4DuTx8BmvMngnyimX
tobPdaQ4YHfFrVYBul1100qUbK/TBHwL2ReQKV58IVctR8l4dZqdf4fVIAnH3IQ82oWxiWNT2FZN
ZA96b1khk38JdMcTdxD+GBRe77dQo2lzHSn6m7J3h/9WPAGtkMsb2duU5ynK8ImE3WPd
Fingerprint: 50:01:95:c2:4c:e7:cf:44:dc:f3:e3:1f:6c:d6:8d:34

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp521
	ecdh-sha2-nistp384
	ecdh-sha2-nistp256
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	kexguess2@matt.ucc.asn.au

Server Host Key Algorithms:
	ssh-ed25519
	ecdsa-sha2-nistp256
	rsa-sha2-256
	ssh-rsa

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes256-ctr

MAC Algorithms:
	hmac-sha1
	hmac-sha2-256

Compression Algorithms:
	zlib@openssh.com
	none

-1157054443 | 2024-05-14T05:15:18.837029

443 / tcp

HTTP/1.1 101 <font color="green">Web Socket Protocol</font> <span style=color: #ff0000;><strong><span style=color: #ff0000;>A</span><span style=color: #ff9900;>D</span><span style=color: #008000;>M</span><span style=color: #0000ff;>c</span><span style=color: #ff0000;>g</span><span style=color: #ff9900;>h</span><span style=color: #008000;>+</span></strong></span>
Content-length: 0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            46:3a:ff:4b:5e:3f:a1:b7:b0:e9:90:81:9b:14:78:7e:bc:5f:d1:94
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=California, L=Santa, O=143.110.224.4:81, OU=ADMcgh Corp, CN=EC Department/emailAddress=ChumoGH .Ing
        Validity
            Not Before: May  6 16:44:33 2024 GMT
            Not After : May  6 16:44:33 2027 GMT
        Subject: C=US, ST=California, L=Santa, O=143.110.224.4:81, OU=ADMcgh Corp, CN=EC Department/emailAddress=ChumoGH .Ing
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9d:ae:00:ff:65:3f:f4:a7:8d:50:1e:4a:55:f8:
                    db:53:88:83:42:87:76:92:f4:e7:a9:c8:58:3d:79:
                    83:5d:a9:a8:10:a8:de:2b:15:51:60:40:f9:84:79:
                    68:7c:ef:fc:c5:b8:bc:e2:fa:d4:3c:29:a8:05:57:
                    01:5b:4f:d3:01:3f:64:bb:f8:63:6c:2a:44:57:ab:
                    04:a6:78:8f:1a:4f:0b:4d:a5:be:6b:80:b1:e5:e5:
                    10:c2:ca:35:b0:39:b2:0d:ae:c5:b4:0a:bf:e2:74:
                    84:47:78:ff:d1:cb:47:80:28:48:dd:8c:f3:8c:d3:
                    7d:07:e9:6f:a6:ba:d8:18:18:99:a8:df:b8:4f:82:
                    dc:a0:90:ba:68:19:de:c7:dd:19:9d:32:7c:31:84:
                    c7:6d:ee:45:0a:6c:0d:cb:a8:f9:1e:09:12:41:a0:
                    f2:54:dc:8c:5e:05:7a:37:f5:c5:0c:7b:36:ca:5b:
                    ee:6a:93:e0:3a:5a:4a:0c:35:df:4e:fc:eb:4b:13:
                    14:95:80:08:e5:35:4f:00:36:03:1e:80:ba:3d:b3:
                    33:e4:1c:e5:9f:f1:78:5d:0f:9d:42:0b:d3:3f:b3:
                    f0:e8:2d:58:a4:5f:3d:aa:38:52:b0:c2:6f:c3:71:
                    72:5a:ca:d9:39:f3:c7:49:7d:9e:35:01:5a:da:66:
                    19:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                10:8B:55:1C:CC:1F:9A:62:F6:E3:53:3B:10:00:5E:F9:6C:48:36:1E
            X509v3 Authority Key Identifier: 
                10:8B:55:1C:CC:1F:9A:62:F6:E3:53:3B:10:00:5E:F9:6C:48:36:1E
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        36:9e:b2:50:58:b6:99:02:9d:15:e3:84:df:34:31:05:b1:1a:
        e0:95:b5:1a:94:79:fc:32:a4:92:1f:db:e2:5e:94:dc:20:59:
        31:c2:9b:29:54:a4:c3:01:95:20:e7:a0:9d:ea:a6:02:22:e4:
        59:46:94:03:f0:63:08:f8:4d:d9:b5:1d:e3:cf:1d:15:4b:34:
        4d:55:1d:cc:8f:10:65:88:0b:d3:7d:38:0a:61:af:11:fb:f5:
        da:f7:94:94:a1:6e:cd:ff:4c:4b:d7:59:8a:fe:e3:f7:6c:5a:
        4b:7c:f0:48:85:03:7f:1a:de:e2:b6:da:07:b2:dc:28:cc:64:
        34:d6:c7:85:3d:f5:43:b7:1f:24:d9:84:08:a9:e8:ae:9f:be:
        52:9d:00:0f:b6:a1:c8:e1:ca:00:4e:0d:82:0b:d3:43:c0:1d:
        ab:cf:4d:2a:b5:59:e3:e8:23:22:8e:b7:43:fc:d2:2b:45:46:
        f6:2b:03:bf:40:a5:ee:b3:2b:1e:55:de:fb:67:de:de:f2:33:
        f8:87:30:87:88:7d:2b:8c:fd:6f:ce:7c:6a:18:0c:af:f8:b5:
        52:cf:51:74:de:dd:d3:a4:76:74:5a:ff:de:88:34:51:4e:1c:
        fb:ae:41:77:1e:0d:70:e4:ce:b8:54:3a:e8:e8:24:72:a3:59:
        3e:fc:67:05

-166216652 | 2024-05-01T21:50:47.566099

3001 / tcp

HTTP/1.1 404 Not Found
date: Wed, 01 May 2024 21:50:46 GMT
server: uvicorn
content-length: 22
content-type: application/json

1326214070 | 2024-04-30T19:13:02.591972

7777 / tcp

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XTcTlhA8YB5YM/NZ1k2M+PFGUQ0=

143.110.224.4

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1499220084 | 2024-05-15T01:12:36.238649
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1157054443 | 2024-05-12T17:53:08.113233
80 / tcp

-1497963492 | 2024-05-08T00:18:10.673533
81 / tcp

nginx1.18.0

-382012810 | 2024-05-17T16:32:52.395506
143 / tcp

Dropbear sshd2020.81

-1157054443 | 2024-05-14T05:15:18.837029
443 / tcp

-166216652 | 2024-05-01T21:50:47.566099
3001 / tcp

1326214070 | 2024-04-30T19:13:02.591972
7777 / tcp

Products

Pricing

Contact Us

143.110.224.4

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1499220084 | 2024-05-15T01:12:36.238649 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1157054443 | 2024-05-12T17:53:08.113233 80 / tcp

-1497963492 | 2024-05-08T00:18:10.673533 81 / tcp

nginx1.18.0

-382012810 | 2024-05-17T16:32:52.395506 143 / tcp

Dropbear sshd2020.81

-1157054443 | 2024-05-14T05:15:18.837029 443 / tcp

-166216652 | 2024-05-01T21:50:47.566099 3001 / tcp

1326214070 | 2024-04-30T19:13:02.591972 7777 / tcp

Products

Pricing

Contact Us

-1499220084 | 2024-05-15T01:12:36.238649
22 / tcp

-1157054443 | 2024-05-12T17:53:08.113233
80 / tcp

-1497963492 | 2024-05-08T00:18:10.673533
81 / tcp

-382012810 | 2024-05-17T16:32:52.395506
143 / tcp

-1157054443 | 2024-05-14T05:15:18.837029
443 / tcp

-166216652 | 2024-05-01T21:50:47.566099
3001 / tcp

1326214070 | 2024-04-30T19:13:02.591972
7777 / tcp