GeneralInformation

Hostnames	wzap.resenmunck.com.br admin.wzap.rockapps.com.br api.wzap.rockapps.com.br
Domains	resenmunck.com.br rockapps.com.br
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	Clifton
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

JavaScript frameworks

AngularJS

Tag managers

Google Tag Manager

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 500 3333 5432 6379 9000 9443

1835854234 | 2024-06-03T19:11:59.336525

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.7
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCqIabYuhB3PWVlLoX/KppNm
QHK6rr3uJGtDuvm/mNRQK4YPOPewbL47khrUL8MpvX9AjTuITiYz+uRsOc6ImFk=
Fingerprint: e1:24:f7:18:9a:9d:a3:9a:d8:45:59:3a:fe:6f:0c:de

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1060095501 | 2024-06-13T22:25:03.516486

80 / tcp

Error

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 13 Jun 2024 22:25:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-1060095501 | 2024-06-07T01:20:03.319219

443 / tcp

Error

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 07 Jun 2024 01:20:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b0:bf:11:59:fb:f8:8b:07:6d:0e:31:76:39:1b:d7:6e:5a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  4 17:56:27 2024 GMT
            Not After : Aug  2 17:56:26 2024 GMT
        Subject: CN=api.wzap.rockapps.com.br
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:3b:02:16:d7:f2:bd:cd:67:46:bc:e2:27:d0:aa:
                    13:59:48:28:6b:3c:66:8f:c7:d6:6f:d7:e4:be:d5:
                    c0:d2:98:4f:23:e3:b8:96:ee:be:39:d3:81:fc:70:
                    71:1c:20:70:af:e7:12:81:9a:68:50:30:70:a8:a6:
                    2a:e3:61:01:8a
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C4:8A:90:20:F8:51:8F:61:27:DC:46:E2:0B:C5:7E:FA:03:EF:9C:F6
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.wzap.rockapps.com.br, DNS:api.wzap.rockapps.com.br
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May  4 18:56:27.527 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:3D:F6:FD:ED:8D:47:7A:96:BA:DB:EA:C6:
                                A9:56:58:77:76:F6:06:E7:86:56:6E:98:1B:5F:DE:28:
                                76:0B:3B:7F:02:20:59:75:46:2E:A5:E7:23:42:E3:8B:
                                71:58:5F:88:76:45:BB:07:FA:26:2C:07:74:3F:5C:C2:
                                D8:FC:9D:F5:38:62
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  4 18:56:27.551 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:79:E8:9D:ED:58:1A:C3:3A:1A:BD:05:A3:
                                9F:81:63:F5:EF:19:6E:5E:12:A5:66:31:E4:74:BC:F5:
                                43:56:92:2F:02:21:00:BA:A5:B8:FF:71:D7:1F:7A:13:
                                7B:7F:3A:87:83:7A:6F:82:18:82:7E:3E:08:1C:3F:65:
                                42:C1:53:F9:F7:86:C3
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        20:f5:dc:08:ee:3b:da:11:ae:d6:e0:ae:51:5b:02:4c:36:75:
        a0:35:30:4c:ae:78:d7:3a:4a:19:1d:c4:a1:bd:c7:46:e5:0e:
        f5:d0:95:1e:52:f4:35:ca:99:da:64:e3:ce:43:56:c3:45:29:
        12:a1:7e:45:7d:35:8a:61:01:41:56:7d:22:ae:01:59:85:57:
        4e:31:47:f7:3e:c1:93:6f:18:d6:a7:27:14:a3:0f:4c:f9:22:
        0b:59:26:65:e5:f9:43:64:9a:be:ac:a7:2b:4a:25:b3:35:94:
        30:57:4c:1f:ae:aa:b6:bb:6a:3f:3b:71:53:17:0e:a3:e6:b7:
        7d:94:cc:3d:25:3e:71:6f:14:2e:67:f1:d2:a6:39:55:ce:0d:
        4d:85:ce:e3:60:94:9f:84:d2:9b:2c:04:d9:67:30:80:c2:b8:
        27:c2:34:84:eb:aa:06:9d:64:76:4c:86:1d:3f:83:ea:e9:0f:
        38:45:d6:ef:6e:7f:10:74:01:b5:55:c1:2c:31:4d:40:79:4d:
        d3:30:cf:67:31:8d:4b:5b:31:e9:6f:15:d9:b6:77:94:c8:fa:
        06:b2:cb:85:e9:4d:f8:e4:94:77:56:63:8a:34:52:eb:a8:52:
        36:26:09:11:9f:b7:62:b6:a3:78:55:3a:9d:3f:d8:b4:c5:6c:
        2d:37:5b:40

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

-811412187 | 2024-05-27T23:01:08.633198

500 / udp

VPN (IKE)

Initiator SPI: 71746e72636b6b66
Responder SPI: 7770676637697973
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
    Encryption:     False
    Commit:         False
    Authentication: False
Message ID: 00000000
Length: 36

-60991883 | 2024-06-12T13:14:17.995245

3333 / tcp

Izing

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Sat, 04 May 2024 19:47:14 GMT
ETag: W/"889-18f45257873"
Content-Type: text/html; charset=UTF-8
Content-Length: 2185
Date: Wed, 12 Jun 2024 13:14:17 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-726790289 | 2024-06-13T05:08:22.153472

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

-1927723706 | 2024-06-17T19:37:02.119599

6379 / tcp

-NOAUTH Authentication required.

1212680812 | 2024-06-17T11:30:24.414029

9000 / tcp

Portainer

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 19130
Content-Type: text/html; charset=utf-8
Last-Modified: Sun, 21 Apr 2024 23:50:59 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Date: Mon, 17 Jun 2024 11:30:24 GMT

1212680812 | 2024-06-13T10:22:18.375620

9443 / tcp

Portainer

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 19130
Content-Type: text/html; charset=utf-8
Last-Modified: Sun, 21 Apr 2024 23:50:59 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Date: Thu, 13 Jun 2024 10:22:18 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:09:e7:fe:83:c3:67:27:8f:d6:58:ae:2f:9e:de:c1
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: 
        Validity
            Not Before: May  4 18:54:39 2024 GMT
            Not After : May  4 18:54:39 2029 GMT
        Subject: 
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:c1:4a:95:f2:fe:6b:41:32:2e:8d:19:24:20:95:
                    c7:78:0f:8b:ea:20:34:ae:df:77:13:ca:34:2d:8c:
                    f9:03:83:08:2f:fb:f8:9e:e9:9a:47:23:91:64:60:
                    dd:8f:db:74:ea:aa:64:e1:5a:a4:56:09:16:9f:60:
                    e3:b1:64:f9:d5
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Alternative Name: critical
                DNS:localhost, IP Address:0.0.0.0
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:44:02:20:3b:87:1a:7e:42:e9:3b:26:7b:6e:59:ba:64:c1:
        68:0c:b1:69:cf:2f:c3:ac:cc:5f:8d:16:13:66:95:0e:34:8d:
        02:20:20:3d:3d:07:c8:cc:68:e4:e5:b1:ba:19:94:02:3b:d8:
        79:1c:1a:6d:b0:fa:eb:75:5c:16:56:e3:d8:32:d8:da

64.225.25.136

Last Seen: 2024-06-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1835854234 | 2024-06-03T19:11:59.336525
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1060095501 | 2024-06-13T22:25:03.516486
80 / tcp

nginx1.18.0

-1060095501 | 2024-06-07T01:20:03.319219
443 / tcp

nginx1.18.0

-811412187 | 2024-05-27T23:01:08.633198
500 / udp

-60991883 | 2024-06-12T13:14:17.995245
3333 / tcp

-726790289 | 2024-06-13T05:08:22.153472
5432 / tcp

PostgreSQL16.0 - 16.2

-1927723706 | 2024-06-17T19:37:02.119599
6379 / tcp

Redis key-value store

1212680812 | 2024-06-17T11:30:24.414029
9000 / tcp

Portainer2.19.5

1212680812 | 2024-06-13T10:22:18.375620
9443 / tcp

Portainer2.19.5

Products

Pricing

Contact Us

64.225.25.136

Last Seen: 2024-06-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

1835854234 | 2024-06-03T19:11:59.336525 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.7

-1060095501 | 2024-06-13T22:25:03.516486 80 / tcp

nginx1.18.0

-1060095501 | 2024-06-07T01:20:03.319219 443 / tcp

nginx1.18.0

-811412187 | 2024-05-27T23:01:08.633198 500 / udp

-60991883 | 2024-06-12T13:14:17.995245 3333 / tcp

-726790289 | 2024-06-13T05:08:22.153472 5432 / tcp

PostgreSQL16.0 - 16.2

-1927723706 | 2024-06-17T19:37:02.119599 6379 / tcp

Redis key-value store

1212680812 | 2024-06-17T11:30:24.414029 9000 / tcp

Portainer2.19.5

1212680812 | 2024-06-13T10:22:18.375620 9443 / tcp

Portainer2.19.5

Products

Pricing

Contact Us

Vulnerabilities

1835854234 | 2024-06-03T19:11:59.336525
22 / tcp

-1060095501 | 2024-06-13T22:25:03.516486
80 / tcp

-1060095501 | 2024-06-07T01:20:03.319219
443 / tcp

-811412187 | 2024-05-27T23:01:08.633198
500 / udp

-60991883 | 2024-06-12T13:14:17.995245
3333 / tcp

-726790289 | 2024-06-13T05:08:22.153472
5432 / tcp

-1927723706 | 2024-06-17T19:37:02.119599
6379 / tcp

1212680812 | 2024-06-17T11:30:24.414029
9000 / tcp

1212680812 | 2024-06-13T10:22:18.375620
9443 / tcp