GeneralInformation

Hostnames	dashboard.unishield.co
Domains	unishield.co
Cloud Provider	DigitalOcean
Cloud Region	sg-05
Country	Singapore
City	Singapore
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

WebTechnologies

Tag managers

Google Tag Manager

UI frameworks

Ant Design

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 3000 9066

22 / tcp

1609684951 | 2025-03-15T08:42:05.137302

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBOXa47yWiBfCfM8+oMp2zNKz
opcwpgRw8XpTFvYBXqIvqspOuY+22T9zha3bz8aCFbTfqbSJFNFC3/eA6Jl2j9I=
Fingerprint: e8:29:fa:1f:06:9d:69:00:47:bf:ce:0b:62:ed:06:bc

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-28T22:40:02.052530

Hashes

hash

-1079810004

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 28 Mar 2025 22:40:01 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

-1715199671 | 2025-03-29T01:11:11.608114

Hashes

hash

-339245036

http.dom_hash

1715535023

http.html_hash

-1715199671

http.server_hash

967792298

http.title_hash

-632577252

Dashboard

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 29 Mar 2025 01:11:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 32629
Connection: keep-alive
Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-nextjs-cache: HIT
X-Powered-By: Next.js
Cache-Control: s-maxage=31536000, stale-while-revalidate
ETag: "w7oz1az5vyp57"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:af:02:43:fa:06:54:e1:7b:f3:df:08:e2:2b:09:20:2e:70
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Mar  6 18:59:06 2025 GMT
            Not After : Jun  4 18:59:05 2025 GMT
        Subject: CN=dashboard.unishield.co
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:22:d1:23:b9:24:3e:7b:e2:28:c0:4f:e7:57:25:
                    f7:e2:1c:3b:23:ee:0f:e5:c5:38:c8:6d:2a:a9:87:
                    6f:e0:76:fd:dc:07:c4:6e:73:c8:61:d8:6b:3e:17:
                    91:83:1f:61:6c:b7:c8:c0:4d:dd:9d:8b:0b:96:7f:
                    4a:3f:24:7c:78
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                63:44:A3:9B:9C:91:80:06:A3:9F:4C:2A:0F:DD:D7:5F:92:C0:8A:A6
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dashboard.unishield.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 73:20:22:0F:08:16:8A:F9:F3:C4:A6:8B:0A:B2:6A:9A:
                                4A:00:EE:F5:77:85:8A:08:4D:05:00:D4:A5:42:44:59
                    Timestamp : Mar  6 19:57:36.436 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DB:06:F1:93:8E:B0:C8:A3:9A:17:11:
                                24:8F:40:11:11:36:00:69:BB:1F:4A:3D:00:DF:D1:33:
                                47:BE:DC:A1:1F:02:20:3F:BE:20:C7:51:F3:3D:EC:01:
                                AC:78:DE:AD:68:87:4E:55:14:58:B6:70:FA:70:87:2B:
                                9A:EC:4D:F5:D6:C3:E0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Mar  6 19:57:36.716 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:38:B6:D9:A6:0F:B2:70:A4:5E:2E:B0:71:
                                4D:E0:9A:84:8D:7D:A3:FA:49:B9:5A:1C:33:29:55:62:
                                98:60:E7:AB:02:20:5E:27:0C:DA:D0:E5:6D:43:B5:DC:
                                44:38:A8:52:44:F6:17:86:DB:B0:13:AD:C0:B4:67:66:
                                BA:8F:8B:53:11:AB
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:2b:36:6f:22:b2:2c:57:0a:f2:5d:22:51:2a:12:
        d0:7d:89:5d:8d:b7:1c:e2:62:a8:f2:18:26:fa:b7:fd:3b:bc:
        68:8d:7f:50:de:9a:d4:5c:33:ed:cf:95:83:53:d1:1c:02:31:
        00:89:e8:0e:22:ff:39:74:6d:7b:e9:9f:1c:9c:8a:49:a0:70:
        ff:5f:78:13:c1:dd:60:a8:84:af:69:9a:6d:69:29:8d:ca:dd:
        2c:ce:a6:97:50:fb:d3:c2:b3:83:83:98:08

Vulnerabilities

3000 / tcp

-275310387 | 2025-03-24T20:37:50.785414

Hashes

hash

675126336

http.dom_hash

-807197122

http.html_hash

-275310387

http.title_hash

-632577252

Dashboard

HTTP/1.1 200 OK
Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-nextjs-cache: HIT
X-Powered-By: Next.js
Cache-Control: s-maxage=31536000, stale-while-revalidate
ETag: "z6estd1az2nen"
Content-Type: text/html; charset=utf-8
Content-Length: 30377
Date: Mon, 24 Mar 2025 20:37:50 GMT
Connection: keep-alive
Keep-Alive: timeout=5

9066 / tcp

781256979 | 2025-03-27T16:46:13.361071

Hashes

hash

61710621

http.dom_hash

-1360783717

http.html_hash

781256979

http.title_hash

-2079686961

Unishield

HTTP/1.1 200 OK
x-nextjs-cache: STALE
X-Powered-By: Next.js
Cache-Control: s-maxage=300, stale-while-revalidate
ETag: "12bc95s1qw22ah5"
Content-Type: text/html; charset=utf-8
Content-Length: 106953
Vary: Accept-Encoding
Date: Thu, 27 Mar 2025 16:46:12 GMT
Connection: keep-alive
Keep-Alive: timeout=5

174.138.24.86

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

1609684951 | 2025-03-15T08:42:05.137302

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-03-28T22:40:02.052530

Hashes

nginx1.18.0

443 / tcp

-1715199671 | 2025-03-29T01:11:11.608114

Hashes

nginx1.18.0

3000 / tcp

-275310387 | 2025-03-24T20:37:50.785414

Hashes

9066 / tcp

781256979 | 2025-03-27T16:46:13.361071

Hashes

Products

Pricing

Contact Us

174.138.24.86

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1609684951 | 2025-03-15T08:42:05.137302

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-03-28T22:40:02.052530

Hashes

nginx1.18.0

443 / tcp -1715199671 | 2025-03-29T01:11:11.608114

Hashes

nginx1.18.0

3000 / tcp -275310387 | 2025-03-24T20:37:50.785414

Hashes

9066 / tcp 781256979 | 2025-03-27T16:46:13.361071

Hashes

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1609684951 | 2025-03-15T08:42:05.137302

80 / tcp

1651973090 | 2025-03-28T22:40:02.052530

443 / tcp

-1715199671 | 2025-03-29T01:11:11.608114

3000 / tcp

-275310387 | 2025-03-24T20:37:50.785414

9066 / tcp

781256979 | 2025-03-27T16:46:13.361071