22 /
tcp
1912201015 | 2025-04-03T17:11:25.532871
SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC53VSad7UGl6RNZ7by+4FcxSM59iVq9qASI2PxoUzfur/8
+oqTqayWM2n7EtURQfWzh3ydHb396pIWsS+ZGa7X50frunQ6DIdnYdHnVRuWLo8ZIx9Kkrus6l45
chNWp0gp1UR4Ch+5lXbSQF50s7FbrdwCsPsMQu8uOSm3iesRHo0Keb5bdww+GYsUBhRwwXqDQx7C
Zg/VaW+d+JDjWduyqNLFKpyWT15TlEkUzjF74YUjDYheDeZComGyOxszmMX2q0Rn07+77+nTJ8qu
ipBCIut5YZ9BPQIzK2O03nOXb7GLnTJdZ/y4bUdIauFFw11Oz/uWaAvDvpkhUrzT3m2z
Fingerprint: a3:9b:e7:4d:b4:c7:82:0f:1a:a5:0f:6f:36:2b:3f:c8
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group14-sha256
diffie-hellman-group14-sha1
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
chacha20-poly1305@openssh.com
aes128-ctr
aes192-ctr
aes256-ctr
aes128-gcm@openssh.com
aes256-gcm@openssh.com
MAC Algorithms:
umac-64-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-64@openssh.com
umac-128@openssh.com
hmac-sha2-256
hmac-sha2-512
hmac-sha1
Compression Algorithms:
none
zlib@openssh.com
415345492 | 2025-03-31T07:02:24.464489
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Type: text/html
Accept-Ranges: bytes
ETag: "2910843553"
Last-Modified: Sun, 24 Jan 2021 14:35:00 GMT
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: accept, origin, x-requested-with, content-type, x-transmission-session-id
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Content-Length: 3388
Date: Mon, 31 Mar 2025 07:02:24 GMT
Server: lighttpd/1.4.53
Vulnerabilities
415345492 | 2025-04-12T02:56:16.939841
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Type: text/html
Accept-Ranges: bytes
ETag: "2910843553"
Last-Modified: Sun, 24 Jan 2021 14:35:00 GMT
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: accept, origin, x-requested-with, content-type, x-transmission-session-id
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Content-Length: 3388
Date: Sat, 12 Apr 2025 02:56:16 GMT
Server: lighttpd/1.4.53
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d3:3b:b6:0c:79:9c:80:53:a5:40:70:9f:7d:de:d8:ec:59
Signature Algorithm: ecdsa-with-SHA384
Issuer: C=US, O=Let's Encrypt, CN=E5
Validity
Not Before: Feb 16 05:48:39 2025 GMT
Not After : May 17 05:48:38 2025 GMT
Subject: CN=cdn6.groupbuyforms.tw
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:34:3d:bb:32:26:bb:f4:d3:79:ce:6f:42:ea:69:
78:b1:47:fa:b3:44:6e:14:a3:26:a9:1f:59:ad:71:
32:9e:a1:6d:80:a2:03:e8:47:80:9a:10:44:17:5b:
bf:f8:c4:87:ad:86:31:72:a4:ec:82:e9:c0:ca:3a:
fa:9f:bf:54:af:37:42:97:6f:c1:4d:a0:1e:8f:d1:
60:9b:b9:4f:5c:af:33:cd:22:cd:2d:57:f1:16:40:
13:a8:60:1c:ce:b7:56
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
2F:E3:2D:2F:75:7B:4A:22:06:A1:B5:79:44:22:1F:58:2A:7D:13:C0
X509v3 Authority Key Identifier:
9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
Authority Information Access:
OCSP - URI:http://e5.o.lencr.org
CA Issuers - URI:http://e5.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:cdn6.groupbuyforms.tw
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 16 06:47:09.997 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:10:78:D3:A7:90:35:EA:27:EC:B8:72:C2:
95:A1:27:5F:C1:0C:92:A0:CD:A3:7A:B1:2F:00:1C:B5:
33:A3:A0:68:02:20:5C:DA:36:52:B8:68:C0:25:7D:C5:
DE:C7:B6:C7:71:02:97:D2:B4:94:8D:61:61:3E:7D:5E:
99:62:49:C6:DF:1A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 16 06:47:09.960 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:55:3F:B5:F4:82:8A:B6:18:3A:FC:A7:8E:
8A:C7:AD:C1:82:05:09:B0:4A:80:05:C0:BD:42:F8:78:
42:7A:1F:CB:02:20:7E:21:59:D2:99:9A:51:2F:F7:6F:
A6:19:A6:2A:79:02:E0:2B:52:0B:F3:2C:2E:57:C3:FC:
0A:09:EB:1D:9F:10
Signature Algorithm: ecdsa-with-SHA384
Signature Value:
30:65:02:31:00:fc:dd:e9:85:af:3d:b0:a3:aa:46:11:c5:f0:
16:3d:28:c4:36:88:33:46:39:6b:7e:b2:cf:2e:09:cb:69:05:
f2:7a:dc:ac:6b:c8:43:d2:01:2c:f3:ad:a1:11:b2:c3:21:02:
30:6e:e4:84:c4:ec:ff:7c:f3:d0:ef:50:49:8a:e0:1f:b4:10:
7e:1b:32:43:28:59:50:c8:c2:bc:96:eb:03:08:b3:7c:e1:bc:
51:5c:f0:ce:2e:70:c4:b4:ff:1d:0e:a3:79
Vulnerabilities
-1958685776 | 2025-04-05T18:39:33.317291
HTTP/1.1 200 OK
Set-Cookie: PLAY_SESSION=7a7a4af3fd7535bce1a365ca4e7c3384ed80b695-csrfToken=fd9596aa7805781e66d1f2bccbd751c23e261d3f-1743878373192-0d4fce6a5682806ad30d8bdf; Path=/; HTTPOnly
Content-Length: 2100
Content-Type: text/html; charset=utf-8
Date: Sat, 05 Apr 2025 18:39:33 GMT
<!DOCTYPE html>
<html>
<head>
<title>Home</title>
<link rel="shortcut icon" type="image/png" href="/img/favicon.png">
<link rel="stylesheet" media="screen" href="/lib/bootswatch-cerulean/css/bootstrap.min.css">
<link rel="stylesheet" media="screen" href="/css/main.css">
<script data-main="/js/main-web.js" src="/lib/requirejs/require.min.js" type="text/javascript"></script>
</head>
<body>
<div class="navbar navbar-default navbar-fixed-top">
<div class="container">
<!-- Brand and toggle get grouped for better mobile display -->
<div class="navbar-header">
<a class="navbar-brand" href="/">Play Multidomain Auth - Web</a>
<button class="navbar-toggle" type="button" data-toggle="collapse" data-target="#navbar-main">
<span class="sr-only">Toggle navigation</span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button>
</div>
<div class="navbar-collapse collapse" id="navbar-main">
<ul class="nav navbar-nav">
<li class="active"><a href="/">Index</a></li>
<li class="disabled"><a>My account</a></li>
</ul>
<ul class="nav navbar-nav navbar-right">
<li><a href="/lang/es">EspaƱol</a></li>
<li class=""><a href="/signin">Sign in</a></li>
<li class=""><a href="/signup">Sign up</a></li>
</ul>
</div>
</div>
</div>
<div class="container">
<div class="pull-right">
<img src="/common/img/play.svg" width="250" style="margin-top: 10px; margin-bottom: 20px"></img>
</div>
<img class="pull-right" src="/rsc/example.png" style="margin: 10px 30px 0 0"></img>
<h1 class="text-primary">Authorization example</h1>
<p class="lead">
This is a typical web page.<br>
Now, you aren't logged, so you can try to <a href="/signin">sign in</a> or <a href="/signup">sign up</a> and create your own account.<br>If you don't remember your password, you also can <a href="/reset-password">reset your password</a> with the traditional email mechanism.
</p>
</div>
</body>
</html>
