GeneralInformation

Hostnames	www.codecdn.top
Domains	codecdn.top
Cloud Provider	DigitalOcean
Cloud Region	sg-05
Country	Singapore
City	Singapore
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 7777

-882827170 | 2024-05-15T01:04:56.580839

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCn/8GmVbXRerMFQbzIG89y5YrCr6bMKC70rMEMK7GBVe9Y
74juq+Y5HYOpY+6sndKD3sWzVLWlsJjPcQVv45v2TjcApNHLG+kPFJXuDxAHXqhhCmBboVd9/bkX
TytmixFq9asRsCh8LPgrrZiiG98QoFNaTP5WC64FWXgHnpxqVaSzxfJ9fWGvFDKmzkFSP4i1LkMd
uCvH/S3MhzPAsyEgCSmgVkyQZeG9ognkDLMHk9hzeaOHqOtXr0EBx0ZFyZp6stc1PnzEQoh3LwI3
R6YixPUEcyccHNbvHkLvfrAFV2K1r1nAK8y4oMSvmMpF47lVigKXGofb0NpHYtiugJSgpEnxW5fk
pht1f8qgYtv/aBj791w7btuvta5mr/sCKNhFiofKCv+tVd9kMG29ToL9nqTEAuPoTUbwQd0jtigY
mRpRjWnSXqZOdEphfwKvCkMQTYyu9wtTQXYcR5kYuxrEoVx2FTVhr5OGXrcCnOLQlFXD+ziJXcLc
VgH49FRoIac=
Fingerprint: dd:b2:9f:85:be:48:d1:3e:9a:d8:e2:bd:da:53:2d:d6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-15T04:08:16.937022

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 15 May 2024 04:08:16 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 11 Apr 2024 02:32:12 GMT
Connection: keep-alive
ETag: "66174bac-264"
Accept-Ranges: bytes

-2098053163 | 2024-05-13T05:45:49.135127

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0
Date: Mon, 13 May 2024 05:45:49 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:37:d0:18:59:3b:61:83:c6:25:8c:02:7d:13:72:b7:e8:f4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 11 01:32:34 2024 GMT
            Not After : Jul 10 01:32:33 2024 GMT
        Subject: CN=www.codecdn.top
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:58:71:ff:d5:a1:e9:e8:3d:ca:67:8d:4a:a2:
                    52:dc:f5:c0:8f:c4:ca:68:8d:7b:d0:24:83:9d:43:
                    38:c3:6f:a2:07:37:21:5e:14:da:85:ec:a1:5f:6e:
                    11:9b:6a:10:24:ec:9c:a1:37:b5:d9:57:53:47:58:
                    96:01:fa:dd:85:13:91:2a:26:f1:64:20:db:1a:74:
                    b7:ec:ab:7e:9d:1a:68:55:81:e5:84:dc:3a:3f:e3:
                    b9:db:30:1d:50:12:fb:b6:78:c9:22:0b:fb:c7:40:
                    33:44:74:82:f3:38:64:90:fc:6a:fa:3c:51:81:ee:
                    e7:cb:6e:f2:18:46:c4:63:81:89:d4:69:33:3b:ba:
                    f2:95:76:60:0d:8b:36:d6:74:87:44:aa:ca:e3:62:
                    c4:19:6d:da:5a:2c:00:17:d8:61:3c:60:e6:eb:14:
                    04:82:71:1b:1e:32:13:b5:95:87:6d:6e:bd:35:d1:
                    7e:cc:95:dc:00:89:40:8e:ba:ae:ef:8d:24:52:4f:
                    f5:4c:b1:a3:3a:13:ce:75:ea:4d:4f:28:39:25:dd:
                    96:32:62:ad:c3:2b:a3:de:a1:e8:d0:a3:53:e4:f9:
                    47:cc:21:fa:2f:45:4f:14:66:94:8c:ae:0c:b8:3a:
                    27:c7:a6:24:3c:eb:aa:27:51:56:48:95:9d:11:b2:
                    4e:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B9:DD:51:48:B9:04:D1:60:E2:B5:1E:4A:04:BB:75:17:72:D1:D9:8E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.codecdn.top
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 11 02:32:34.059 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:06:EB:F4:57:FB:5B:4A:76:F6:07:A1:6B:
                                29:AA:E8:90:A7:C3:A4:66:59:75:4A:DF:5F:04:6B:73:
                                77:8C:15:CC:02:21:00:AD:9D:F9:C0:EB:4A:90:31:E3:
                                4E:82:23:B7:86:83:B8:C5:93:52:D8:7F:98:15:32:88:
                                57:96:1F:F9:21:7C:13
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 11 02:32:34.068 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CC:D3:E2:08:CF:24:DD:63:18:4F:37:
                                F3:77:24:25:BF:1B:B6:54:79:8A:D0:F0:E8:18:08:03:
                                1C:F7:2C:1A:95:02:20:1C:14:91:02:3D:22:C0:5B:9E:
                                93:EC:49:F4:5E:22:E1:1A:02:34:3A:5A:09:4D:48:5A:
                                D0:81:40:82:DD:73:71
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        80:55:36:c6:e9:ae:c5:54:3d:79:70:f2:5e:cb:11:bb:c2:6e:
        ba:7e:fd:ab:88:26:d3:c0:a8:7b:30:6c:a2:ee:04:37:97:e2:
        b1:83:b1:ff:36:ba:3f:e0:c0:cc:5b:1e:e7:1a:d4:42:eb:84:
        bc:44:a1:4e:d8:e2:40:e1:09:e7:30:15:ca:25:25:82:90:dc:
        ed:ae:ee:8c:8c:89:1f:fc:40:9f:59:de:3a:e5:13:76:29:b4:
        ed:80:b0:21:7a:b3:0c:69:cc:32:de:c2:94:4b:e7:5a:28:54:
        90:80:13:78:60:2c:54:40:15:45:b2:ae:0c:b6:e4:b3:f2:01:
        2d:3c:4a:2f:2f:d3:dc:0e:c1:8c:1a:54:e2:16:21:27:42:db:
        d2:8b:a6:53:64:99:d3:d7:00:09:62:4f:0a:19:08:e6:55:c6:
        0f:6d:c1:cd:af:35:8c:53:fc:d2:a5:2f:5d:e3:9a:81:a0:e7:
        1f:e0:25:f3:77:39:ea:c9:ce:04:1b:3e:2f:c2:f2:4d:2e:7c:
        6f:a0:e5:0e:26:30:6a:5a:4a:dc:45:4c:8a:ef:ef:da:5b:71:
        ea:f7:5c:73:93:c2:89:e6:1e:b3:a3:a2:d4:4d:da:f9:12:3c:
        a0:67:74:77:4d:fb:cc:27:55:29:fe:05:55:bd:1f:9f:db:47:
        db:b9:1d:19

-541572734 | 2024-05-11T13:01:29.334993

7777 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 11 May 2024 13:01:29 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/plain

174.138.20.10

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-882827170 | 2024-05-15T01:04:56.580839
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-05-15T04:08:16.937022
80 / tcp

nginx1.18.0

-2098053163 | 2024-05-13T05:45:49.135127
443 / tcp

nginx1.18.0

-541572734 | 2024-05-11T13:01:29.334993
7777 / tcp

Products

Pricing

Contact Us

174.138.20.10

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-882827170 | 2024-05-15T01:04:56.580839 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-05-15T04:08:16.937022 80 / tcp

nginx1.18.0

-2098053163 | 2024-05-13T05:45:49.135127 443 / tcp

nginx1.18.0

-541572734 | 2024-05-11T13:01:29.334993 7777 / tcp

Products

Pricing

Contact Us

-882827170 | 2024-05-15T01:04:56.580839
22 / tcp

1651973090 | 2024-05-15T04:08:16.937022
80 / tcp

-2098053163 | 2024-05-13T05:45:49.135127
443 / tcp

-541572734 | 2024-05-11T13:01:29.334993
7777 / tcp