GeneralInformation

Hostnames	malyovana.com
Domains	malyovana.com
Cloud Provider	DigitalOcean
Cloud Region	nl-nh
Country	Netherlands
City	Amsterdam
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Linux 5.4.0-137-generic

WebTechnologies

JavaScript libraries

jQuery3.5.1

Miscellaneous

Popper

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 5432 5672 8080 9090 9100

-1811068623 | 2024-03-30T18:09:12.230975

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDoWmCvfibE0A93Dlo8ln1eIJVtk4sJC/lA1n2DtUdyFVAM
dpB1Xz7vPT0e96ERIRioNEsu/FqXOtv2E9BYphwPmrVlOBC+S53wnebSqJEmCtMc1asnLfKNeII7
FKXyHWkkAgSmhvQ8uz3OrWhbI0W2owsHdqmNBMsAzEQO6ZAqtlV7OzWJ7e/Go/n1oa7ZBwtHOzja
ttlpoMNLQana9xh4pWvaJSYCB5WWulopYEtAlmzNU+mujT98JplIa2vXr2K2g3PE+rN3QAFm571O
yhMIb3+FPd3U6Cn51EDvwOf45KOK0oiKCpfGSXtlcDGmzeoqbyohG3Qw0ROxGIM0YBciGXsHbpHF
8kDGgxzG/6mSkOCg/XxGCGZ1rAcn9L4vmrygSmmb/8hdV4F+IIaSN1RV25GxKbxjajqatq73yvEP
v4uUf/w/rl1uQegoUTmGCv3lvfxg4qAfKJaOpC+xcM0l6VY/3//YgVVzR3KtIdROyVCihbtQm1Hg
MEvdbLz2HSs=
Fingerprint: 7d:a0:da:cb:28:62:9f:b2:33:8e:8f:77:20:9b:56:47

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-03-31T19:29:19.075779

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 31 Mar 2024 19:29:18 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://174.138.3.128/

1651973090 | 2024-04-13T12:49:41.330789

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 12:49:41 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            e6:28:6a:8f:04:15:b3:1e:b2:a3:9b:be:5b:d6:eb:34
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Oct  8 00:00:00 2023 GMT
            Not After : Oct  8 23:59:59 2024 GMT
        Subject: CN=*.malyovana.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:3b:53:41:13:fc:c8:87:c2:d6:f7:64:d4:b2:
                    33:87:95:e5:5f:7b:f1:d9:df:d8:93:0e:b8:9e:02:
                    be:1e:e9:44:f8:bb:c8:45:ea:a9:2a:78:8f:1d:b8:
                    b2:4c:d7:5f:a1:f4:c9:b9:0c:cd:e7:53:8e:5e:50:
                    92:ad:c5:af:00:2a:eb:f9:fa:32:49:1a:9b:7d:fc:
                    2c:72:b7:c9:8d:be:40:b3:d8:f7:db:17:85:1e:21:
                    a2:38:70:93:d2:cb:0e:dd:11:77:88:fc:f1:0a:35:
                    6c:f4:1d:4c:91:b4:49:c5:12:d3:2c:46:b8:d1:1c:
                    82:5d:05:ca:09:dc:a5:83:ec:31:9a:2c:d9:6c:b4:
                    dd:70:6c:6e:ba:c1:32:bb:92:0a:41:53:0f:4d:64:
                    93:c2:78:18:10:fc:3e:ad:e8:6d:da:cb:d1:42:bb:
                    0e:2a:97:16:57:cd:f7:b8:2e:44:95:80:1f:48:c9:
                    f1:85:33:83:6b:82:be:89:80:ea:79:76:b9:95:33:
                    c1:88:bc:ef:6d:27:06:46:6b:54:a8:f9:be:a6:ed:
                    02:12:d9:5d:42:59:5a:c8:1b:04:5c:8c:b7:8b:a2:
                    5c:11:3a:09:21:bf:e8:02:2c:2c:60:3a:2b:61:92:
                    31:cf:d6:bc:9c:a0:db:f1:f7:97:35:d6:43:06:19:
                    14:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                AA:35:D5:58:4D:26:5E:8B:9F:31:02:7C:16:B9:FB:1D:EA:F8:0F:FE
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.malyovana.com, DNS:malyovana.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct  8 18:17:33.839 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EE:43:06:8D:D5:E3:B1:F2:47:7B:CB:
                                25:1C:38:E7:58:77:DB:A1:9C:31:82:86:08:84:5B:B3:
                                F9:06:A3:15:0A:02:21:00:8F:F2:6C:61:4C:44:A9:76:
                                7D:46:FB:29:E1:0D:BD:C1:95:EC:27:E6:EB:69:46:F3:
                                F1:FA:C0:4F:E3:01:63:2E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct  8 18:17:33.924 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EF:8C:5D:7F:2C:CC:7C:C8:C8:81:F7:
                                27:94:6B:CD:03:D5:E1:6A:5F:6F:DA:66:EA:1C:A0:44:
                                1C:1B:00:8C:AE:02:21:00:83:D7:CA:A6:D6:A7:27:82:
                                66:4A:D4:D0:37:B2:B6:49:05:D4:E7:64:AB:27:9B:6B:
                                0B:26:F5:B8:6A:61:C4:B4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct  8 18:17:33.949 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:38:5B:54:9F:2F:A8:85:3F:BF:13:93:A4:
                                DB:78:0F:06:7D:4E:B2:11:CC:CB:A0:67:4B:F8:94:91:
                                3B:23:C0:D2:02:20:28:0C:36:D3:A2:A3:5B:70:B8:F4:
                                A3:15:1F:49:83:61:34:BB:96:79:C9:0A:55:1B:96:3C:
                                92:22:5B:C1:A1:2E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        89:ce:43:9c:a1:48:69:94:16:0e:8e:c3:b0:14:54:4a:0b:68:
        e0:0d:8c:36:6c:69:27:3b:5d:6f:26:6e:77:59:6c:7d:1f:d4:
        f1:65:c4:4a:f1:85:6a:ca:4d:a0:9b:35:03:46:90:13:8a:89:
        6b:b0:be:d9:a0:49:03:d3:13:9b:eb:92:c7:97:16:af:3e:44:
        1f:33:09:13:11:e4:c7:bd:a1:31:1e:6f:f5:04:fd:c8:bf:7b:
        86:01:b0:f4:93:cb:ac:58:e0:1f:1f:2d:d4:26:4d:ce:42:5c:
        b9:0f:0c:f0:6e:d7:fe:c6:4d:89:ab:03:fe:40:27:e3:a7:eb:
        fe:be:70:58:28:a2:09:d2:10:46:2c:82:2d:2c:33:38:8f:8a:
        2d:6c:4b:63:0d:75:76:19:18:ea:78:6a:28:17:b8:7a:54:e7:
        df:d4:5b:a8:f5:16:1f:38:d8:c2:54:b1:0d:96:38:2c:a5:3d:
        dd:36:aa:59:c9:01:1e:88:9a:2f:fa:d3:99:04:04:01:26:16:
        9a:80:bd:12:7e:9c:bb:04:8a:23:35:e7:8e:2a:34:02:8d:f3:
        94:49:a2:fd:b5:7b:3a:b1:2d:ed:c6:99:6b:95:a8:c5:c7:bb:
        1f:40:84:36:a7:63:d3:d7:06:7f:b2:bf:05:66:95:3b:df:e8:
        dd:3f:13:63

-608855309 | 2024-04-14T01:16:27.200558

5432 / tcp

PostgreSQL
FATAL:  no pg_hba.conf entry for host "224.25.119.139", user "postgres", database "template0", SSL on
FATAL:  no pg_hba.conf entry for host "224.25.119.139", user "postgres", database "template0", SSL off

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            39:0c:c1:b2:6b:88:b7:cf:28:81:ab:65:6f:bb:f2:3d:86:dc:8c:4c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=malyovana-mobile-apps
        Validity
            Not Before: Sep 21 14:09:27 2022 GMT
            Not After : Sep 18 14:09:27 2032 GMT
        Subject: CN=malyovana-mobile-apps
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f0:78:de:2b:b4:f2:a5:17:9e:ce:84:19:c8:89:
                    4c:4b:96:9f:5f:78:20:89:02:a3:97:43:ec:84:99:
                    ad:2a:7c:5f:bc:31:08:f6:b7:2b:7c:41:95:58:d2:
                    65:ac:36:ab:08:a6:00:3a:03:5e:aa:65:2c:48:de:
                    d0:27:ed:92:1c:58:e9:4d:b2:d5:36:6c:b7:ae:e0:
                    a1:d9:c0:06:88:2b:ec:4e:48:34:4a:97:e2:c4:15:
                    e4:ad:bd:fe:28:cd:eb:53:e7:c3:da:5a:75:f0:13:
                    5e:15:f5:41:e5:fa:30:0b:36:a3:0d:80:d0:59:fb:
                    7c:7b:6b:51:15:c3:c8:a7:3b:1d:65:b8:1c:35:4b:
                    63:20:7e:5c:6b:44:7d:45:77:3a:b7:17:c1:9c:98:
                    e7:c0:dd:03:bc:88:14:26:87:a9:18:2b:3f:24:60:
                    cc:a4:95:16:3f:05:44:e1:6a:bd:f7:54:35:1b:e1:
                    06:20:53:21:cd:7f:99:43:b5:ad:8a:cd:af:ad:7a:
                    cc:33:57:29:e1:b3:a2:67:f1:0d:c0:01:11:a5:1c:
                    07:71:f1:7f:21:57:aa:63:3d:23:ce:95:bc:75:fa:
                    87:e3:ea:a8:26:82:11:08:23:cb:0d:97:76:40:0b:
                    5e:ae:69:f5:03:a9:9d:8d:fd:06:56:e0:70:c7:a2:
                    a0:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:malyovana-mobile-apps
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        56:6a:82:05:dc:4b:43:65:5e:22:c9:6b:6d:f0:4c:4a:55:6c:
        46:31:1f:86:7d:17:ca:54:14:df:e4:4e:f7:fa:0c:d7:32:86:
        49:b3:be:da:05:90:7a:c6:08:8f:3b:26:e3:08:57:3b:c4:b2:
        20:e0:f1:d3:62:47:06:43:33:d0:6b:0f:39:6e:cd:c2:33:5b:
        9b:83:c2:c1:9c:36:c4:9b:9c:f6:8c:f4:e4:f6:41:38:09:62:
        47:5c:35:80:37:21:2b:06:4b:9b:81:f7:cd:ee:7d:83:82:1b:
        8e:12:ff:d0:2e:32:71:c2:e7:c8:54:45:78:ad:13:da:f7:6f:
        90:e6:54:c3:0a:51:4d:38:6c:7d:03:d5:04:cc:86:84:16:2e:
        41:d1:d3:45:66:11:54:69:09:bd:8f:4c:ad:5c:d4:18:0e:08:
        87:21:83:58:a7:2b:47:95:9e:ee:24:a7:f5:36:e2:49:df:52:
        c8:35:df:3e:67:6e:4f:e4:02:c4:2f:e4:4f:22:a1:17:c5:23:
        17:fc:14:d6:0c:30:5b:d7:5a:2d:22:00:f1:32:d2:4b:34:0f:
        d6:0a:35:11:bf:eb:cf:3c:16:a7:88:89:c1:2f:e4:83:a5:75:
        ec:ef:1a:bb:82:55:bf:ee:92:fe:08:a7:c9:9f:15:56:c9:03:
        e3:95:9f:b1

-1805173244 | 2024-04-17T22:55:15.259350

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.13.0
  Platform: Erlang/OTP 26.2.2
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

-311946932 | 2024-04-16T14:24:31.470542

8080 / tcp

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 14:24:31 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked

1433301888 | 2024-03-31T16:26:02.881600

9090 / tcp

HTTP/1.1 200 OK
Date: Sun, 31 Mar 2024 16:26:02 GMT
Content-Length: 734
Content-Type: text/html; charset=utf-8

-379244462 | 2024-04-19T13:05:00.621062

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goarch: amd64
    goos: linux
    goversion: go1.21.4
    revision: 7333465abf9efba81876303bb57e6fadb946041b
    tags: netgo osusergo static_build
    version: 1.7.0
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: a365ea7c67d6
    release: 5.4.0-137-generic
    sysname: Linux
    version: #154-Ubuntu SMP Thu Jan 5 17:03:22 UTC 2023
  node_dmi_info:
    bios_date: 12/12/2017
    bios_vendor: DigitalOcean
    bios_version: 20171212
    board_asset_tag: 317635667
    board_name: Droplet
    board_vendor: DigitalOcean
    board_version: 20171212
    chassis_vendor: QEMU
    chassis_version: pc-i440fx-6.1
    product_family: DigitalOcean_Droplet
    product_name: Droplet
    product_version: 20171212
    system_vendor: DigitalOcean
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      adminstate: up
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    eth0:
      address: 02:42:0a:05:00:07
      adminstate: up
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth0
      duplex: full
      operstate: up

MAC Addresses

02:42:0A:05:00:07
    Unknown

174.138.3.128

Last Seen: 2024-04-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1811068623 | 2024-03-30T18:09:12.230975
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-03-31T19:29:19.075779
80 / tcp

nginx1.18.0

1651973090 | 2024-04-13T12:49:41.330789
443 / tcp

nginx1.18.0

-608855309 | 2024-04-14T01:16:27.200558
5432 / tcp

PostgreSQL

-1805173244 | 2024-04-17T22:55:15.259350
5672 / tcp

RabbitMQ3.13.0

-311946932 | 2024-04-16T14:24:31.470542
8080 / tcp

1433301888 | 2024-03-31T16:26:02.881600
9090 / tcp

-379244462 | 2024-04-19T13:05:00.621062
9100 / tcp

Prometheus Node Exporter1.7.0

Products

Pricing

Contact Us

174.138.3.128

Last Seen: 2024-04-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1811068623 | 2024-03-30T18:09:12.230975 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-03-31T19:29:19.075779 80 / tcp

nginx1.18.0

1651973090 | 2024-04-13T12:49:41.330789 443 / tcp

nginx1.18.0

-608855309 | 2024-04-14T01:16:27.200558 5432 / tcp

PostgreSQL

-1805173244 | 2024-04-17T22:55:15.259350 5672 / tcp

RabbitMQ3.13.0

-311946932 | 2024-04-16T14:24:31.470542 8080 / tcp

1433301888 | 2024-03-31T16:26:02.881600 9090 / tcp

-379244462 | 2024-04-19T13:05:00.621062 9100 / tcp

Prometheus Node Exporter1.7.0

Products

Pricing

Contact Us

-1811068623 | 2024-03-30T18:09:12.230975
22 / tcp

589765266 | 2024-03-31T19:29:19.075779
80 / tcp

1651973090 | 2024-04-13T12:49:41.330789
443 / tcp

-608855309 | 2024-04-14T01:16:27.200558
5432 / tcp

-1805173244 | 2024-04-17T22:55:15.259350
5672 / tcp

-311946932 | 2024-04-16T14:24:31.470542
8080 / tcp

1433301888 | 2024-03-31T16:26:02.881600
9090 / tcp

-379244462 | 2024-04-19T13:05:00.621062
9100 / tcp