GeneralInformation

Hostnames	altowa.de pfsense.gfuzz.de
Domains	altowa.de gfuzz.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 3000 3001

-1121567685 | 2025-01-03T00:29:06.736325

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.26.2
Date: Fri, 03 Jan 2025 00:29:10 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://justext.de/
Strict-Transport-Security: max-age=31536000; includeSubDomains

-1257660714 | 2025-01-03T21:37:54.136473

443 / tcp

Nextcloud

HTTP/1.1 400 Bad Request
Server: nginx/1.26.2
Date: Fri, 03 Jan 2025 21:37:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
X-XSS-Protection: 1; mode=block
X-Powered-By: PHP/8.2.26
Set-Cookie: ocuchl0nfvc8=aaf0230d000a1157d5871f328645aea3; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: oc_sessionPassphrase=V29vnNO9denNyassbQDv5ZcibYRc4X13fVs6HF%2BRbKrF0SaDV7ogAhhZVzDemJcZXCQl4leAQ5okI83e05kLjrmyS7NpBu3OdkFWJ%2F1vTo6ZpgFoE5Tzf7a%2FsSPEfpb7; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: ocuchl0nfvc8=aaf0230d000a1157d5871f328645aea3; path=/; secure; HttpOnly; SameSite=Lax
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-GjCj6CYpgxwX19dbCYm/WyXGBpZbswgVivbN670jMYk='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Set-Cookie: ocuchl0nfvc8=aaf0230d000a1157d5871f328645aea3; path=/; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=31536000; includeSubDomains

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:67:ed:7f:0d:0c:85:93:17:c0:8d:00:87:ee:eb:fe:d6:cb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Nov 27 21:43:59 2024 GMT
            Not After : Feb 25 21:43:58 2025 GMT
        Subject: CN=altowa.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:53:a3:4a:a9:fe:3f:e8:50:6a:77:a7:c4:b1:
                    31:83:46:b7:e3:07:8c:f0:2b:e8:30:29:aa:0f:15:
                    f7:b9:6a:d6:71:76:fd:7f:a0:46:64:96:23:58:a0:
                    13:34:bb:d7:eb:f4:44:df:48:a2:c8:91:4e:2d:e2:
                    47:81:e2:88:9a:8e:80:0c:a6:f8:02:d3:37:86:08:
                    3e:86:6e:09:62:2c:04:b4:9f:51:e0:3c:83:19:ea:
                    dc:57:9e:4c:9f:6d:41:34:cf:fb:25:91:c5:c4:6c:
                    d3:17:fd:31:a1:6a:8e:26:0d:f6:ac:36:05:67:dc:
                    48:af:1b:62:14:7b:bf:1a:b5:c0:d8:fc:71:50:b6:
                    ac:80:22:70:5b:8f:6f:93:d9:ab:8c:99:82:98:8f:
                    4e:06:57:80:90:d2:11:ac:71:5d:1e:07:df:14:da:
                    9e:23:b6:23:10:f1:e3:49:94:fd:b8:3a:5e:72:89:
                    1e:e8:22:33:64:58:26:bd:c8:e5:8b:36:e2:29:dc:
                    aa:12:c3:ec:fc:47:63:15:92:34:1f:95:17:f3:70:
                    3c:0c:d0:68:21:f4:93:76:7b:88:33:74:8b:40:a5:
                    ec:2c:6a:2b:a4:bc:b1:d4:b0:2e:00:40:81:0a:77:
                    fe:88:c1:a6:14:05:33:53:f9:61:1f:88:cb:db:8b:
                    e1:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                10:62:51:40:44:EA:A9:6E:DD:7A:E6:7A:77:A4:B5:AA:EF:7E:18:4E
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.altowa.de, DNS:altowa.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Nov 27 22:42:30.017 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A7:D6:0F:DB:0A:E2:E7:B9:1A:05:9B:
                                91:AB:22:04:09:5F:6D:E6:5A:5D:1A:8A:BB:7A:25:D1:
                                AE:17:28:AD:32:02:20:01:16:FE:38:0A:9A:6D:9E:02:
                                D4:A9:65:35:B2:97:E3:D1:E9:8F:E1:FC:66:73:6E:1F:
                                32:DB:02:CF:60:8D:94
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Nov 27 22:42:30.003 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:03:C0:D5:51:9D:EE:F9:5D:58:B5:C3:B6:
                                D9:7E:14:A9:E3:EA:A5:23:2A:5E:25:C7:F7:CF:2E:1F:
                                BD:9E:1D:08:02:21:00:BD:04:36:26:C3:ED:1D:74:A0:
                                13:27:AE:A1:2F:B7:28:13:86:DA:F9:E5:0D:5F:CA:34:
                                9D:8C:E7:15:E7:1C:D6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:2e:0e:3a:14:14:b7:c3:4e:72:17:0d:b2:0b:1b:1e:d8:78:
        31:1b:65:65:7d:b1:4c:2f:07:b0:84:57:0d:c3:57:c1:77:f6:
        67:35:be:95:30:35:fc:2f:54:8a:24:34:f4:22:ce:fa:5c:28:
        fd:9f:8e:99:e8:ec:b9:83:6f:c6:bc:a5:f7:ad:d5:a6:3a:48:
        0a:14:cb:ba:49:0e:1b:51:91:eb:4f:3b:97:33:02:d7:3d:68:
        79:fb:a2:af:ea:b6:d7:6a:8e:74:93:4d:61:a7:1c:9b:0e:54:
        5c:88:b2:3b:14:df:e8:00:24:f5:25:e4:f5:67:8e:f2:15:83:
        4d:42:3a:c0:46:87:8d:b6:c0:09:30:c9:eb:cd:88:de:93:8d:
        7b:ad:b6:7d:dc:f9:f2:70:67:c7:41:c2:6a:e6:ea:44:9b:86:
        66:71:de:59:51:6a:71:2f:82:67:34:76:d9:8e:6f:9b:4c:4d:
        e4:e6:a6:81:bc:90:f5:83:68:b9:9e:b0:7c:30:d3:44:6d:21:
        a3:ac:6b:55:7c:81:94:49:cb:90:9a:1d:3f:88:62:ad:17:b3:
        50:e2:ed:7d:3a:b4:b6:72:9c:8b:17:a3:83:b8:a3:11:0b:d6:
        cb:bb:07:9c:75:b8:ef:49:97:06:7c:83:23:78:33:1d:fb:38:
        de:44:2e:bd

CVE-2013-2220 CVE-2007-3205

-1908167 | 2024-12-21T15:04:54.343381

3000 / tcp

{GFUZZ-WELCOME-TO-MAAAD-MONDAY-CTF}

-1991447983 | 2025-01-01T10:18:54.569036

3001 / tcp

buf: \xff\nval: 0xbeefbabe\nHave a nice day.\n

144.76.31.135

Last Seen: 2025-01-03

GeneralInformation

Vulnerabilities

OpenPorts

-1121567685 | 2025-01-03T00:29:06.736325
80 / tcp

nginx1.26.2

-1257660714 | 2025-01-03T21:37:54.136473
443 / tcp

Nextcloud

-1908167 | 2024-12-21T15:04:54.343381
3000 / tcp

-1991447983 | 2025-01-01T10:18:54.569036
3001 / tcp

Products

Pricing

Contact Us

144.76.31.135

Last Seen: 2025-01-03

GeneralInformation

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

-1121567685 | 2025-01-03T00:29:06.736325 80 / tcp

nginx1.26.2

-1257660714 | 2025-01-03T21:37:54.136473 443 / tcp

Nextcloud

-1908167 | 2024-12-21T15:04:54.343381 3000 / tcp

-1991447983 | 2025-01-01T10:18:54.569036 3001 / tcp

Products

Pricing

Contact Us

Vulnerabilities

-1121567685 | 2025-01-03T00:29:06.736325
80 / tcp

-1257660714 | 2025-01-03T21:37:54.136473
443 / tcp

-1908167 | 2024-12-21T15:04:54.343381
3000 / tcp

-1991447983 | 2025-01-01T10:18:54.569036
3001 / tcp