GeneralInformation

Hostnames	ec2-13-54-250-64.ap-southeast-2.compute.amazonaws.com marketdataservice.api.quickbooks.intuit.ca prd-master-sbg-sbm-mds-v3-active.ap-southeast-1.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.ap-southeast-2.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.eu-west-1.sbg-sbm-mds-v2-prd.a.intuit.com prd-master.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v2-active.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.sa-east-1.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.us-east-1.sbg-sbm-mds-v2-prd.a.intuit.com prd-master-sbg-sbm-mds-v3-active.us-west-2.sbg-sbm-mds-v2-prd.a.intuit.com marketdataservice.au.api.intuit.com marketdataservice.br.api.intuit.com marketdataservice.ca.api.intuit.com marketdataservice.in.api.intuit.com marketdataservice.api.intuit.com marketdataservice.uk.api.intuit.com marketdataservice.us.api.intuit.com prod.mds.intuit.com marketdataservice.api.quickbooks.in
Domains	amazonaws.com intuit.ca intuit.com quickbooks.in
Cloud Provider	Amazon
Cloud Region	ap-southeast-2
Cloud Service	EC2
Country	Australia
City	Sydney
Organization	Amazon Corporate Services Pty Ltd
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(1)

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

80 / tcp

-617618899 | 2025-03-04T18:53:28.391681

Hashes

hash

-778671152

http.dom_hash

1239617585

http.html_hash

-617618899

http.server_hash

1830366617

http.title_hash

-1030444411

403 Forbidden

HTTP/1.1 403 Forbidden
Date: Tue, 04 Mar 2025 18:53:28 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Set-Cookie: AWSALB=k49KXqFNqyY130wYZ209QI/IJnBHGjWUsB1CeQ9KJlp8R/3eAqRsQcOEhyrg4WQf/irCd4nSxkvxh+BDvOtQu4C6WG6yKjXxBlW5OI56o9NfNl34QuO/qYmdF+1j; Expires=Tue, 11 Mar 2025 18:53:28 GMT; Path=/
Set-Cookie: AWSALBCORS=k49KXqFNqyY130wYZ209QI/IJnBHGjWUsB1CeQ9KJlp8R/3eAqRsQcOEhyrg4WQf/irCd4nSxkvxh+BDvOtQu4C6WG6yKjXxBlW5OI56o9NfNl34QuO/qYmdF+1j; Expires=Tue, 11 Mar 2025 18:53:28 GMT; Path=/; SameSite=None
Server: nginx/1.20.1

Vulnerabilities

443 / tcp

-1060095501 | 2025-03-28T23:16:52.038658

Hashes

hash

-755815866

http.dom_hash

1231516973

http.html_hash

-1060095501

http.server_hash

-1340961475

http.title_hash

-1449824703

Error

HTTP/1.1 404 Not Found
Date: Fri, 28 Mar 2025 23:11:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
Server: nginx
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            08:56:11:4f:3e:59:82:be:06:7a:13:c1:26:46:32:87
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
        Validity
            Not Before: Jan  6 00:00:00 2025 GMT
            Not After : Feb  6 23:59:59 2026 GMT
        Subject: C=US, ST=California, L=San Diego, O=INTUIT INC., CN=prd-master.sbg-sbm-mds-v2-prd.a.intuit.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f6:aa:3c:cf:1d:a6:7f:5c:4e:ff:bd:0d:9b:bd:
                    4c:ad:83:16:2e:3c:d8:b6:da:4c:6d:8b:65:c0:af:
                    2f:21:97:e0:6c:70:59:fa:c4:53:70:ed:46:3e:fc:
                    d9:ed:ff:4f:a8:76:19:8c:f1:f1:1d:87:51:dc:8b:
                    d3:00:87:6c:c2:d3:72:be:a2:11:34:03:80:91:4a:
                    b4:ac:50:16:af:71:2d:f1:5e:89:4b:9e:a7:2b:a0:
                    0c:0e:b2:62:13:3a:58:a0:0f:b7:37:8d:16:31:8d:
                    ee:b4:83:7f:e2:9b:7a:cd:cf:2a:82:b0:b9:11:da:
                    7d:59:28:af:5c:1f:6d:9c:6c:25:90:b3:42:33:5f:
                    77:11:74:fc:06:fd:d8:9b:31:45:92:3a:a3:fe:15:
                    a3:44:21:e6:c9:0d:93:b8:19:4c:48:fb:f4:4d:24:
                    59:21:e3:6b:ff:87:f6:6e:16:be:1c:59:66:c1:1f:
                    7a:c0:15:1d:d7:b6:5c:f1:ba:8f:27:cc:29:32:0b:
                    b3:57:c6:a7:86:31:ce:aa:1f:18:b4:e2:b8:45:e2:
                    a2:d6:b6:5c:16:49:ce:03:4d:fe:30:d2:bd:5c:2a:
                    1d:7a:75:9d:6d:b3:84:75:5d:d1:83:44:8d:9a:a6:
                    f7:4a:45:71:5c:15:f5:58:47:e3:05:e7:2c:65:12:
                    55:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
            X509v3 Subject Key Identifier: 
                05:11:93:FB:B6:A7:3D:9F:AE:10:34:BB:9A:38:83:4F:B6:D9:E5:A6
            X509v3 Subject Alternative Name: 
                DNS:prd-master.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.us-east-1.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.us-west-2.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.eu-west-1.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.ap-southeast-1.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.ap-southeast-2.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prod.mds.intuit.com, DNS:marketdataservice.au.api.intuit.com, DNS:marketdataservice.uk.api.intuit.com, DNS:marketdataservice.br.api.intuit.com, DNS:marketdataservice.in.api.intuit.com, DNS:marketdataservice.us.api.intuit.com, DNS:marketdataservice.ca.api.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:marketdataservice.api.intuit.com, DNS:marketdataservice.api.quickbooks.intuit.ca, DNS:marketdataservice.api.quickbooks.in, DNS:prd-master-sbg-sbm-mds-v2-active.sbg-sbm-mds-v2-prd.a.intuit.com, DNS:prd-master-sbg-sbm-mds-v3-active.sa-east-1.sbg-sbm-mds-v2-prd.a.intuit.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
                Full Name:
                  URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
                                DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
                    Timestamp : Jan  6 05:50:12.605 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:06:4B:07:D9:EF:82:8A:85:D6:BE:8B:77:
                                57:81:C3:97:18:26:D7:96:36:A3:58:C0:EF:55:59:FA:
                                36:7A:C9:24:02:20:3E:12:5D:61:41:7B:A6:65:31:DB:
                                05:43:4F:AD:FF:22:DB:C9:F7:28:B7:94:07:73:1C:26:
                                44:D0:FE:BC:5E:55
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Jan  6 05:50:12.659 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6B:FE:80:C9:DC:D0:FF:8C:09:58:79:E6:
                                A5:AD:1F:B3:1D:45:98:CC:6B:03:00:95:3B:9A:97:3A:
                                A2:F4:02:11:02:20:37:DB:47:FD:63:B9:D4:3A:29:41:
                                72:13:C3:60:01:BC:74:CE:53:57:F3:8A:D6:A8:07:1C:
                                98:E4:26:4E:7B:8E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
                                5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
                    Timestamp : Jan  6 05:50:12.680 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9D:1B:03:21:EB:1B:00:C0:7C:A3:43:
                                2F:39:9D:18:1E:0C:2E:97:C0:2A:22:28:38:5C:C0:E5:
                                A4:EB:CE:B1:27:02:20:27:ED:AE:3A:AB:91:9F:D8:CB:
                                55:A4:F3:0A:4E:7E:06:C8:05:63:64:16:15:7B:2B:65:
                                15:E6:FC:3C:1C:6C:C0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a8:89:a4:b2:90:dc:7d:22:57:28:6b:a4:49:c9:33:af:8e:67:
        9a:5a:9d:b2:fd:4f:37:52:16:b4:c6:7f:66:22:8f:f3:6f:bc:
        f8:67:f3:82:ea:ef:1f:0f:e9:c6:0e:5d:09:6d:36:47:3d:1b:
        ee:4b:17:6e:de:82:9d:9d:ba:00:ba:f8:9d:bc:ad:60:a1:00:
        e8:f1:17:19:6c:49:0c:85:6e:07:33:c6:37:1e:b7:bf:63:e6:
        1f:00:c6:12:96:3c:29:dc:38:48:ca:db:34:1f:2b:39:7a:3a:
        7b:68:d2:d4:ec:c5:a2:71:9b:c8:6f:9c:50:b6:1b:68:d9:5f:
        7e:d8:59:50:b5:16:26:ca:d7:7f:bf:a0:4a:54:e5:dd:be:58:
        9d:48:1b:61:ff:c9:82:09:65:a2:60:48:17:4d:c2:64:c2:db:
        87:1c:44:52:61:11:79:0f:eb:af:a9:e4:4b:9b:c6:77:17:e9:
        ad:eb:da:27:63:51:6a:60:4f:52:7d:f9:61:85:de:bd:2e:2e:
        c1:c1:ff:51:d1:1e:95:9e:7e:2f:c4:18:e5:37:97:57:3b:8e:
        67:8b:c8:ba:fb:99:ff:42:73:11:60:44:4e:80:e7:ff:f3:0e:
        f0:e7:2e:fd:81:26:b1:a6:4d:b7:b5:07:20:02:71:4b:72:26:
        46:77:36:33

13.54.250.64

Last Seen: 2025-03-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

-617618899 | 2025-03-04T18:53:28.391681

Hashes

nginx1.20.1

443 / tcp

-1060095501 | 2025-03-28T23:16:52.038658

Hashes

nginx

Products

Pricing

Contact Us

13.54.250.64

Last Seen: 2025-03-28

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

80 / tcp -617618899 | 2025-03-04T18:53:28.391681

Hashes

nginx1.20.1

443 / tcp -1060095501 | 2025-03-28T23:16:52.038658

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-617618899 | 2025-03-04T18:53:28.391681

443 / tcp

-1060095501 | 2025-03-28T23:16:52.038658