GeneralInformation

Hostnames	sayaka.anemoneya.me shrimpcam.app
Domains	anemoneya.me shrimpcam.app
Country	United States
City	Las Vegas
Organization	BuyVM Services
ISP	FranTech Solutions
ASN	AS53667

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8554 8888 8889

-1287864283 | 2024-05-06T10:45:27.791582

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.3
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBF4KhersHEnngzbDeSh66F90
3NNjEQ1J/fjgKwZQJFEzY/5oA/46AvuHpZYc2o5kdE7oE/DL4/GyxYQVpSAOwic=
Fingerprint: 15:ef:f8:41:f7:85:d7:02:2e:88:fe:e9:bb:3a:4a:e8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-01T19:26:32.880665

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 19:26:32 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://209.141.36.110/

2127371763 | 2024-05-01T19:26:35.908768

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 19:26:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 171
Connection: keep-alive
ETag: "62acf3af-ab"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            cd:05:c8:12:7a:b1:a9:85:93:3e:c1:c0:26:b4:f1:b9
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=AT, O=ZeroSSL, CN=ZeroSSL ECC Domain Secure Site CA
        Validity
            Not Before: Mar 23 00:00:00 2024 GMT
            Not After : Jun 21 23:59:59 2024 GMT
        Subject: CN=shrimpcam.app
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:9b:ed:02:39:4b:8e:f2:a4:e5:c4:9a:1c:34:8b:
                    82:39:4b:d3:bd:7e:62:3a:b7:4c:57:7d:fb:ec:fe:
                    37:fc:84:3d:5d:e6:62:a8:f1:6e:e3:e1:dd:4d:d0:
                    42:1c:05:b6:e4:7a:c4:58:92:04:f3:5b:59:c1:e9:
                    ef:ba:5e:f0:a7:13:8f:05:99:be:e7:8b:24:a9:19:
                    23:c2:0a:09:97:0d:ec:6e:f9:2d:75:a0:8a:64:90:
                    72:26:11:f4:3c:97:ac
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0F:6B:E6:4B:CE:39:47:AE:F6:7E:90:1E:79:F0:30:91:92:C8:5F:A3
            X509v3 Subject Key Identifier: 
                DD:52:36:E0:06:0E:AC:10:DD:C7:FD:B8:15:77:CC:B8:49:9C:9A:8A
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.78
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://zerossl.crt.sectigo.com/ZeroSSLECCDomainSecureSiteCA.crt
                OCSP - URI:http://zerossl.ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 23 00:09:58.271 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:ED:5E:2B:A1:FF:E5:C5:01:D3:F0:F3:
                                D9:A2:9E:3E:79:2A:A7:80:59:84:E5:34:FD:B2:FB:B8:
                                19:64:71:15:3B:02:20:7E:6E:F2:49:DE:B9:E0:CA:07:
                                DF:95:83:0A:E7:07:2C:23:B0:7F:AA:28:5A:44:C6:9E:
                                34:F9:29:E2:4B:39:75
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 23 00:09:58.174 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AB:50:A5:A3:6A:D4:09:E6:A9:06:E1:
                                A8:53:4E:C1:A9:A2:57:0D:E8:42:AF:41:BC:7B:08:9E:
                                FF:62:95:09:3B:02:20:07:87:9E:AF:40:FA:C9:92:CD:
                                73:16:1F:68:E3:E2:6F:07:60:CC:C5:1C:D8:B7:9B:94:
                                5D:C9:9B:D5:42:2A:68
            X509v3 Subject Alternative Name: 
                DNS:shrimpcam.app, DNS:*.shrimpcam.app
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:0b:5d:a4:9a:b6:b1:6e:e1:59:88:50:57:b3:02:
        79:9b:73:c9:f1:3f:dc:fe:bd:29:8f:f2:26:5a:3b:e5:9b:6b:
        99:dd:b4:d1:a7:45:18:c0:b7:1f:46:1c:11:7b:4a:6c:02:30:
        08:c9:45:49:24:f8:c9:ae:ed:5c:cd:ca:ce:14:c6:be:9f:94:
        31:c8:04:5b:3e:0b:1f:b0:63:06:74:51:c9:19:a8:fe:7d:a7:
        a6:1f:53:ad:1e:09:64:17:dc:90:dd:eb

-552355161 | 2024-05-05T19:56:11.421928

8554 / tcp

RTSP/1.0 200 OK
CSeq: 1
Public: DESCRIBE, ANNOUNCE, SETUP, PLAY, RECORD, PAUSE, GET_PARAMETER, TEARDOWN
Server: gortsplib

-1255326477 | 2024-04-29T04:56:55.568188

8888 / tcp

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Content-Type: text/plain
Server: mediamtx
Date: Mon, 29 Apr 2024 04:56:55 GMT
Content-Length: 18

985541391 | 2024-04-30T21:05:20.972400

8889 / tcp

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Content-Type: text/plain
Server: mediamtx
Date: Tue, 30 Apr 2024 21:05:20 GMT
Content-Length: 18

404 page not found

209.141.36.110

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1287864283 | 2024-05-06T10:45:27.791582
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.3

589765266 | 2024-05-01T19:26:32.880665
80 / tcp

nginx1.18.0

2127371763 | 2024-05-01T19:26:35.908768
443 / tcp

nginx1.18.0

-552355161 | 2024-05-05T19:56:11.421928
8554 / tcp

-1255326477 | 2024-04-29T04:56:55.568188
8888 / tcp

985541391 | 2024-04-30T21:05:20.972400
8889 / tcp

Products

Pricing

Contact Us

209.141.36.110

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1287864283 | 2024-05-06T10:45:27.791582 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.3

589765266 | 2024-05-01T19:26:32.880665 80 / tcp

nginx1.18.0

2127371763 | 2024-05-01T19:26:35.908768 443 / tcp

nginx1.18.0

-552355161 | 2024-05-05T19:56:11.421928 8554 / tcp

-1255326477 | 2024-04-29T04:56:55.568188 8888 / tcp

985541391 | 2024-04-30T21:05:20.972400 8889 / tcp

Products

Pricing

Contact Us

-1287864283 | 2024-05-06T10:45:27.791582
22 / tcp

589765266 | 2024-05-01T19:26:32.880665
80 / tcp

2127371763 | 2024-05-01T19:26:35.908768
443 / tcp

-552355161 | 2024-05-05T19:56:11.421928
8554 / tcp

-1255326477 | 2024-04-29T04:56:55.568188
8888 / tcp

985541391 | 2024-04-30T21:05:20.972400
8889 / tcp