GeneralInformation

Hostnames	dns.tipsy.coffee sslvpn.tipsy.coffee
Domains	tipsy.coffee
Country	Taiwan
City	Taipei
Organization	Chunghwa Telecom Co.,Ltd.
ISP	Data Communication Business Group
ASN	AS3462

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 53 80 111 443 8443 8880

22 / tcp

-766152331 | 2025-03-11T19:41:45.424585

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLRul2m+um63BjwyopxD0Hkc
E3+DYrdm+aqFC3zJC/USwQrFmzkIdHLwUinSxJoSzkEgGSmdfKaU9xZziCp8ZGc=
Fingerprint: e4:38:e5:49:22:e7:87:42:cc:a7:fd:65:a5:a9:68:34

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-26T15:06:03.525792

Hashes

hash

987188529

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 26 Mar 2025 15:06:02 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 28 Mar 2022 21:54:53 GMT
Connection: keep-alive
ETag: "62422ead-264"
Accept-Ranges: bytes

Vulnerabilities

111 / udp

-1345205424 | 2025-03-21T17:45:20.412125

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

443 / tcp

-301205943 | 2025-04-03T04:52:54.366097

Hashes

hash

-1260915757

http.dom_hash

1723962030

http.favicon.hash

-635881733

http.html_hash

-301205943

http.server_hash

-1340961475

http.title_hash

109182747

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 03 Apr 2025 04:52:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1151
Connection: keep-alive
Accept-Ranges: bytes
Access-Control-Allow-Origin: http://dns
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ff:5d:ce:12:f1:0e:62:4a:4c:01:d2:af:0e:87:0a:97:db
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb 12 15:09:07 2025 GMT
            Not After : May 13 15:09:06 2025 GMT
        Subject: CN=*.tipsy.coffee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ce:0d:c8:05:f2:1a:2d:83:a6:3e:52:9e:a7:d2:
                    6d:07:d8:3b:1a:35:41:c3:da:5e:01:1b:8e:f7:63:
                    63:fb:b3:dd:26:7c:0a:8e:64:56:fb:13:21:51:31:
                    c9:98:54:b2:4f:3d:a2:44:4b:fb:bb:66:f7:c0:84:
                    9c:dc:38:b7:24:4d:5d:28:24:46:4c:82:14:1c:83:
                    7c:01:c5:8c:fb:63:7f:bb:73:65:93:d3:71:27:2a:
                    7b:37:e6:d2:8e:08:cc:66:21:63:e0:87:eb:f1:4b:
                    cb:e7:b5:09:12:e4:3b:bb:ca:43:a4:94:e9:07:ee:
                    59:86:2a:38:d6:73:e2:44:f0:8f:9b:bd:81:05:dd:
                    26:c2:00:13:92:df:6b:1e:6a:80:fb:57:fc:bf:b0:
                    b2:e0:69:08:00:6f:dc:4e:1c:a4:c7:79:9c:fc:64:
                    b5:f0:d6:b5:6d:9a:33:9a:9b:dd:3b:db:ea:c0:22:
                    86:e0:d1:24:4d:46:ad:62:77:6b:cc:ee:1f:05:ae:
                    e0:22:ea:37:65:66:bd:a7:88:76:1f:99:a5:2a:05:
                    3d:27:ce:fb:bf:1f:b5:2a:48:dd:7a:99:55:7c:2e:
                    53:9a:ad:54:f5:cc:82:6d:2b:fb:81:eb:1f:a9:62:
                    c7:27:9e:c2:50:20:4a:9f:3b:48:43:56:ff:f7:c2:
                    ea:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C8:BB:6B:86:16:DF:6D:D9:9C:F2:77:42:FA:9E:A9:EE:01:EE:A1:2A
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.tipsy.coffee
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 12 16:07:38.063 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:89:EE:81:FE:4D:CF:0E:81:39:0A:67:
                                22:BF:FC:A4:01:31:2D:7A:07:86:6D:28:DF:F0:0A:36:
                                93:85:A9:BB:4F:02:20:67:73:24:3D:C4:B2:19:EE:5B:
                                4C:E4:02:56:A0:FD:3A:D1:F0:A4:13:3C:CC:3F:E2:9B:
                                18:69:5B:0F:AE:9C:00
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Feb 12 16:07:38.449 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AE:4E:C4:31:8D:E4:90:08:70:99:6D:
                                B6:99:C7:C5:B4:75:3C:8C:09:6C:94:63:F5:40:C5:F1:
                                2D:A5:4B:E2:F7:02:20:25:67:21:35:B3:E6:8B:10:64:
                                A5:91:B6:A5:D6:5E:85:CC:35:88:E2:6C:4F:3F:9C:B4:
                                C7:BA:0C:DC:81:68:04
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0e:3e:fd:fc:fd:9a:a8:03:eb:8c:54:54:68:61:65:f4:82:76:
        ed:87:9a:3e:45:a5:9b:f6:73:ac:9e:bf:b0:41:a6:7d:de:82:
        9a:61:c6:8d:f6:c7:ac:e9:3c:3f:0a:82:01:fd:ec:15:3f:a1:
        f3:4e:f7:e5:cb:8d:b1:1a:5c:5d:5f:cc:1f:64:a9:74:da:cb:
        1b:f1:8b:d7:97:87:0f:80:ef:80:85:06:1f:83:e0:d7:86:d8:
        e3:c5:f3:3c:4f:92:c0:81:0a:4a:c4:d9:22:fb:2c:fe:c6:df:
        8f:b8:08:3f:21:d2:2f:3f:23:10:a6:59:11:d7:70:00:99:fa:
        8f:bf:8c:a8:ac:1e:52:82:9b:16:de:1b:5b:10:bd:5f:61:68:
        aa:7c:8c:46:2d:2e:04:22:d6:7a:7c:06:90:c6:51:7a:6b:4c:
        9e:af:e7:6f:9f:64:9a:00:c8:20:57:63:32:89:9f:ed:cf:08:
        db:9c:6b:83:bc:a0:ca:25:cf:ca:5f:47:52:36:27:90:8b:04:
        b7:30:41:7d:b5:d3:fc:b2:83:34:85:af:73:93:78:fe:b6:5d:
        d4:b5:e9:0c:8b:cd:64:71:98:d7:3f:c4:2e:55:c1:c4:9e:74:
        6f:82:d3:07:7f:1d:82:a3:32:f5:2c:9c:d8:98:dc:4e:83:cf:
        35:ad:79:4d

8443 / tcp

-1588766627 | 2025-03-15T16:41:38.948262

Hashes

hash

-1953844361

http.dom_hash

1723962030

http.favicon.hash

-635881733

http.html_hash

-1588766627

http.title_hash

109182747

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: http://118.163.170.2
Content-Length: 1151
Content-Type: text/html; charset=utf-8
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
Vary: Accept-Encoding
Date: Sat, 15 Mar 2025 16:41:38 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:01:42:79:53:d6:19:23:53:8f:d1:14:75:9e:86:e2:56:fc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Oct 15 15:09:38 2024 GMT
            Not After : Jan 13 15:09:37 2025 GMT
        Subject: CN=dns.tipsy.coffee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9b:d1:25:c9:87:e5:05:85:20:7c:71:33:dc:cd:
                    50:cb:9d:99:b7:25:72:1f:19:2f:00:13:c1:ad:6c:
                    6a:9f:98:4c:69:cd:a8:64:4d:0c:84:09:b9:91:6d:
                    ef:46:5c:47:bb:58:97:1d:55:a3:bf:1e:c7:84:a6:
                    2c:1a:ef:84:71:97:4e:5c:37:97:5f:4f:d6:13:ea:
                    0b:7c:37:d5:0b:9d:e9:d3:af:35:ad:70:88:5b:06:
                    fd:c4:14:2c:a6:2c:47:fb:84:6b:8a:e3:3d:50:ba:
                    38:49:ba:38:3a:08:cf:25:9e:0b:f5:2d:be:da:5a:
                    cf:cf:7a:38:e5:c3:61:57:1d:92:2b:66:8f:c7:36:
                    5f:4f:71:71:da:93:a3:45:b0:91:54:25:c4:c8:59:
                    19:2a:ba:77:71:fd:77:42:02:8c:03:1c:5c:4a:0c:
                    4c:73:69:7a:c1:55:69:0e:34:e7:df:b1:e4:09:83:
                    6c:68:1a:b3:7a:53:9f:e5:cf:c8:11:b1:39:6e:b8:
                    35:74:1f:79:d1:a9:d3:49:2c:01:56:5c:ed:f9:f9:
                    ca:4a:41:41:cb:06:53:4b:a5:6b:c9:02:8c:88:3b:
                    49:32:31:1c:c7:e3:82:7b:b1:39:cb:5b:7e:26:d4:
                    45:e6:1a:0a:86:bf:1c:fa:b4:0b:a9:ba:b9:0b:d8:
                    5e:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                77:65:F0:45:50:11:5E:D3:FF:A5:6F:E8:2A:88:74:2B:D9:70:52:F7
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dns.tipsy.coffee
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Oct 15 16:08:08.473 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FD:D4:D5:83:51:D9:2B:C0:2D:3C:C2:
                                CF:4F:FD:50:52:49:B0:AE:05:A1:51:32:3D:AC:21:70:
                                B3:8E:42:85:7F:02:20:48:F1:99:AD:35:A7:E0:5F:CC:
                                B3:37:AB:1C:36:D4:6B:61:EA:19:17:85:00:6B:20:B4:
                                FF:EE:3A:FF:27:8F:F7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Oct 15 16:08:08.655 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9E:7D:38:93:DC:DB:52:FE:64:C1:96:
                                2A:BD:26:91:C7:D1:B1:BD:FB:0B:C9:08:B0:1C:F8:95:
                                76:20:D1:2B:26:02:21:00:BF:88:EE:74:7A:17:82:93:
                                0F:85:81:3F:6E:B6:B7:15:E1:15:F4:B5:7D:8A:98:57:
                                21:F5:26:99:0B:7D:6D:A6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        76:65:78:0f:17:1b:b8:19:ec:b7:1b:a7:35:68:55:9f:8b:19:
        fd:23:81:71:12:a2:94:98:93:02:30:e1:3e:c0:e0:2c:47:ed:
        3f:eb:be:2b:ce:cc:ab:cb:1a:ad:cb:24:23:3e:cf:2b:4c:eb:
        8f:aa:92:b4:fe:32:c0:84:86:79:5f:bc:76:1e:36:27:d7:20:
        28:01:52:32:32:ef:e5:9a:27:29:53:f1:68:01:b1:4e:16:60:
        ea:e4:2a:0b:35:b3:65:7a:f1:cc:8d:34:b3:ad:49:34:e7:e3:
        99:ef:ce:99:72:c0:76:66:af:05:b5:45:dd:17:92:7d:99:45:
        3f:7c:c2:1c:78:2e:dc:0e:22:35:01:d9:ca:1b:97:89:78:dd:
        4b:52:11:f0:b8:55:dd:4c:4e:72:b9:50:e0:21:59:1a:d8:3e:
        ab:bb:0c:24:bb:b5:ca:f1:cc:f4:98:09:1e:dd:80:05:ec:3d:
        fb:d4:e8:4f:f5:86:f6:28:b8:46:d1:fe:e3:01:26:2b:af:a0:
        47:2d:49:a2:21:60:cb:79:bb:2e:df:65:20:49:9a:78:1b:7b:
        a4:ba:07:93:57:69:4f:c7:88:7c:f1:f4:f2:d2:c8:d6:16:bc:
        76:fd:97:41:ce:de:3b:74:d2:5d:dc:a4:7f:ea:9d:65:23:46:
        aa:e3:ed:ec

8880 / tcp

1379163786 | 2025-03-22T01:51:29.765825

HTTP/1.1 307 Temporary Redirect
Content-Type: text/html; charset=utf-8
Location: https://118.163.170.2:8443/
Date: Sat, 22 Mar 2025 01:51:29 GMT
Content-Length: 63

<a href="https://118.163.170.2:8443/">Temporary Redirect</a>.

118.163.170.2

Last Seen: 2025-04-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

-766152331 | 2025-03-11T19:41:45.424585

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-03-26T15:06:03.525792

Hashes

nginx1.18.0

111 / udp

-1345205424 | 2025-03-21T17:45:20.412125

443 / tcp

-301205943 | 2025-04-03T04:52:54.366097

Hashes

nginx

8443 / tcp

-1588766627 | 2025-03-15T16:41:38.948262

Hashes

8880 / tcp

1379163786 | 2025-03-22T01:51:29.765825

Products

Pricing

Contact Us

118.163.170.2

Last Seen: 2025-04-03

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

22 / tcp -766152331 | 2025-03-11T19:41:45.424585

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-03-26T15:06:03.525792

Hashes

nginx1.18.0

111 / udp -1345205424 | 2025-03-21T17:45:20.412125

443 / tcp -301205943 | 2025-04-03T04:52:54.366097

Hashes

nginx

8443 / tcp -1588766627 | 2025-03-15T16:41:38.948262

Hashes

8880 / tcp 1379163786 | 2025-03-22T01:51:29.765825

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-766152331 | 2025-03-11T19:41:45.424585

80 / tcp

1651973090 | 2025-03-26T15:06:03.525792

111 / udp

-1345205424 | 2025-03-21T17:45:20.412125

443 / tcp

-301205943 | 2025-04-03T04:52:54.366097

8443 / tcp

-1588766627 | 2025-03-15T16:41:38.948262

8880 / tcp

1379163786 | 2025-03-22T01:51:29.765825