GeneralInformation

Hostnames	ec2-13-250-203-133.ap-southeast-1.compute.amazonaws.com kon-ticket.com
Domains	amazonaws.com kon-ticket.com
Cloud Provider	Amazon
Cloud Region	ap-southeast-1
Cloud Service	EC2
Country	Singapore
City	Singapore
Organization	Amazon Data Services Singapore
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

80 / tcp

589765266 | 2025-03-11T08:47:29.648780

Hashes

hash

-680490948

http.dom_hash

1239617585

http.html_hash

589765266

http.server_hash

967792298

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Date: Tue, 11 Mar 2025 08:47:29 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Server: nginx/1.18.0 (Ubuntu)
Location: https://api.marcopolo.link/

Vulnerabilities

443 / tcp

1026798518 | 2025-03-17T20:51:40.745471

Hashes

hash

-324989629

http.dom_hash

1845389201

http.favicon.hash

-1492478083

http.html_hash

1026798518

http.server_hash

-21396236

http.title_hash

-891920045

Kon Ticket Report

HTTP/1.1 200 OK
Date: Mon, 17 Mar 2025 20:51:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8843
Connection: keep-alive
Server: nginx/1.26.3
Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-nextjs-cache: HIT
X-Powered-By: Next.js
Cache-Control: s-maxage=31536000, stale-while-revalidate
ETag: "116wgyt4syn6tf"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:56:90:c5:c0:90:fd:98:f7:25:f1:87:10:bb:79:85
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Feb 18 00:00:00 2025 GMT
            Not After : Mar 20 23:59:59 2026 GMT
        Subject: CN=*.kon-ticket.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:4f:c3:da:73:2c:9d:4b:7e:d2:92:8b:2a:6b:
                    d7:05:6b:d2:4c:e6:bd:c6:a5:a3:02:4d:2e:87:62:
                    8b:5b:ea:d5:14:01:ac:10:ca:2d:66:da:42:73:3d:
                    c9:21:f2:7e:7e:dd:af:a4:f8:d2:b4:58:e4:7d:8a:
                    c0:91:4d:9a:f9:e4:21:3d:5a:7d:ca:20:44:10:a5:
                    a9:6c:8a:f3:fc:3b:d3:c9:8f:d5:a1:0d:3e:51:79:
                    27:ea:b8:c0:d3:84:62:53:c1:1d:cc:aa:cd:a7:3d:
                    f8:20:e9:30:4b:1c:4a:8a:4b:0f:91:fb:0a:78:00:
                    73:b6:84:19:e8:24:99:6c:ce:54:da:fa:a5:34:67:
                    cc:16:66:39:c5:57:fb:7a:4a:02:8f:dc:64:90:a4:
                    b3:16:d3:28:7c:39:54:e8:db:7a:8b:3a:c6:cf:5b:
                    95:16:01:73:8e:16:67:78:de:d2:c5:5f:bb:c8:82:
                    f1:47:21:c5:2f:e4:ac:e1:32:1c:c7:1c:80:f6:8d:
                    ed:3c:70:57:54:7c:cc:26:56:5c:72:e4:72:0a:58:
                    50:55:80:db:be:52:ad:0b:a7:b9:a5:e6:2d:c2:62:
                    41:d5:39:4e:82:94:9b:54:dd:fd:1d:a5:45:89:77:
                    ff:70:df:9c:26:c2:f2:40:3b:3e:c5:06:df:4b:11:
                    80:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                DA:8D:C8:A1:C5:F1:BD:51:37:72:EC:8A:4B:D8:40:81:47:C3:FC:87
            X509v3 Subject Alternative Name: 
                DNS:*.kon-ticket.com, DNS:kon-ticket.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
                                E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
                    Timestamp : Feb 18 00:29:28.823 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A3:0A:3C:65:E8:F6:0E:69:35:20:8E:
                                46:2D:CF:7E:BE:9C:4C:DE:A9:8E:1B:40:D5:86:97:54:
                                13:C7:0A:C0:EB:02:20:7C:97:20:B6:45:03:48:1A:1C:
                                FD:20:3F:3D:3A:36:B2:20:B0:1A:C3:66:A2:69:EF:B3:
                                77:E3:01:2F:CF:23:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Feb 18 00:29:28.815 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:14:D3:DD:B9:92:FA:F1:A7:A0:A8:B2:
                                CC:EC:56:E5:BE:BD:96:8F:AB:7C:90:2B:BE:CD:91:8B:
                                FB:FF:26:16:02:20:48:8F:CD:8E:A4:9F:B4:37:BE:7D:
                                3F:F0:BF:37:3E:B2:55:41:DD:50:68:AA:66:A2:9C:48:
                                57:5B:F9:50:96:60
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
                                5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
                    Timestamp : Feb 18 00:29:28.834 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9B:40:77:2F:F6:F6:72:B0:B1:CB:90:
                                18:40:43:74:6C:14:4A:15:C4:2D:56:0B:31:17:7E:94:
                                51:3A:C4:B9:CA:02:20:39:0B:89:3B:E6:AD:13:86:24:
                                16:F8:55:C6:A5:B3:F8:5F:25:AC:95:4B:16:DC:CD:A6:
                                BB:DF:8C:2A:C7:1B:5F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        53:55:c8:73:99:af:e1:03:96:c0:82:e7:e2:46:e2:59:66:28:
        a0:8b:c2:3b:eb:f9:1d:17:e0:e7:0b:99:7c:ad:80:ff:c0:f9:
        43:f6:0e:1f:3f:90:c4:84:2d:f6:7a:66:cb:06:b7:96:23:d7:
        58:0d:5b:32:ba:29:53:51:d1:0f:8a:64:ab:48:46:36:2d:64:
        77:d9:0c:5a:d3:51:c0:6e:c0:c4:90:0e:6f:4f:2e:f0:94:70:
        75:87:fb:e3:24:6b:3f:8b:fd:6d:83:3e:09:c0:99:42:09:35:
        f4:c0:a7:75:cd:ed:a7:da:55:58:9d:ed:a0:6f:03:89:8e:8f:
        f8:8a:f3:05:50:df:7d:5a:9d:14:0c:03:12:c4:60:5e:5c:c1:
        a1:40:ac:0c:62:d6:b9:e7:66:28:b7:69:ec:c7:78:18:36:61:
        e0:1e:64:61:5f:31:bd:6f:92:c6:20:46:71:c6:ef:5d:19:ee:
        1e:13:b0:5a:99:b5:9b:c5:ef:b6:ff:8d:d4:51:39:38:44:18:
        28:3f:c1:bb:92:11:1a:57:db:4c:eb:c4:5d:dd:47:7a:bd:d4:
        9c:6c:c4:59:72:46:3d:f6:98:ab:ab:ec:71:7a:fd:48:0c:ad:
        21:d2:81:07:c5:4c:f1:4c:07:7b:0e:7f:73:f3:9b:83:45:5d:
        58:a8:0b:2e

13.250.203.133

Last Seen: 2025-03-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

589765266 | 2025-03-11T08:47:29.648780

Hashes

nginx1.18.0

443 / tcp

1026798518 | 2025-03-17T20:51:40.745471

Hashes

nginx1.26.3

Products

Pricing

Contact Us

13.250.203.133

Last Seen: 2025-03-17

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

80 / tcp 589765266 | 2025-03-11T08:47:29.648780

Hashes

nginx1.18.0

443 / tcp 1026798518 | 2025-03-17T20:51:40.745471

Hashes

nginx1.26.3

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

589765266 | 2025-03-11T08:47:29.648780

443 / tcp

1026798518 | 2025-03-17T20:51:40.745471