GeneralInformation

Hostnames	ec2-18-102-117-245.eu-south-1.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	eu-south-1
Cloud Service	EC2
Country	Italy
City	Milan
Organization	Amazon Data Services Italy
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 8445

80 / tcp

222909761 | 2025-03-17T17:04:19.934320

Hashes

hash

2064304606

http.dom_hash

51486116

http.html_hash

222909761

http.server_hash

1727046647

HTTP/1.1 200 OK
Date: Mon, 17 Mar 2025 17:04:19 GMT
Content-Type: text/html
Content-Length: 82
Connection: keep-alive
Server: nginx/1.22.1
Last-Modified: Sun, 16 Mar 2025 14:36:30 GMT
ETag: "67d6e1ee-52"
Accept-Ranges: bytes

443 / tcp

1651973090 | 2025-03-21T10:39:50.659761

Hashes

hash

-919967147

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Date: Fri, 21 Mar 2025 10:39:50 GMT
Content-Type: text/html
Content-Length: 612
Connection: keep-alive
Server: nginx/1.18.0 (Ubuntu)
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:61:b4:78:0e:33:52:3e:e3:48:33:aa:0c:8f:55:ac
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Mar  9 00:00:00 2025 GMT
            Not After : Apr  7 23:59:59 2026 GMT
        Subject: CN=*.nibol.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:ec:77:76:b7:99:b6:2f:ba:aa:e9:2d:d0:d7:
                    77:f3:a3:50:2b:ba:fc:45:40:19:71:b4:e6:a3:09:
                    0b:3e:d8:90:bc:16:00:74:87:ed:c5:a7:6f:b5:0c:
                    59:d6:4f:ed:ed:bf:ee:54:1b:33:f7:e2:e9:93:7c:
                    53:10:c5:5d:e6:64:5d:81:4f:6f:b4:29:66:89:e1:
                    0a:e5:a0:e7:84:b0:ea:55:a1:71:d3:76:eb:f5:72:
                    62:26:53:39:86:32:d0:ba:78:67:57:17:d8:98:aa:
                    d2:30:4b:39:66:6c:d8:f9:bd:8c:e3:f3:60:34:2a:
                    f2:92:4f:7f:65:7d:55:c7:a2:74:e4:71:cc:16:c1:
                    69:ec:80:85:85:6f:38:5e:6e:9b:f6:42:3c:4e:3d:
                    68:9e:33:b8:c5:86:a0:dc:d0:a0:9b:38:9b:e7:f7:
                    c6:95:02:9a:45:25:98:da:13:21:24:08:48:60:78:
                    4b:42:68:c2:49:d6:9d:1f:5c:48:af:5c:29:ee:4b:
                    7b:e4:d4:32:d3:35:71:63:94:9f:55:4c:6f:13:a9:
                    4f:63:df:02:f2:08:f7:12:4a:83:bb:88:a4:5c:7c:
                    cd:81:0a:95:72:d8:0a:42:c0:28:41:e2:1a:8f:42:
                    8c:1d:18:14:64:e1:0e:38:6a:5f:8d:38:45:0a:0c:
                    ee:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                02:B7:4E:ED:B4:10:02:3C:F8:17:2C:A4:BF:D9:6C:9C:C6:03:98:1D
            X509v3 Subject Alternative Name: 
                DNS:*.nibol.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
                                E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
                    Timestamp : Mar  9 00:03:24.989 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:60:CE:45:0E:B2:C4:7A:9B:F2:C1:90:F6:
                                7A:BC:25:81:07:82:78:A7:20:8C:80:9A:8E:D1:AE:46:
                                85:09:90:46:02:20:0B:D9:46:FF:9D:CF:95:03:62:37:
                                2C:A7:9F:5C:E5:98:AF:1C:32:FF:B6:AD:19:1D:4A:AC:
                                67:D6:4F:10:B7:F0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Mar  9 00:03:24.993 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AD:84:C7:2D:24:5A:4A:58:00:5E:BF:
                                1A:69:9F:94:C8:84:42:B2:07:14:A3:DA:18:80:C3:6A:
                                C7:4C:8C:C3:91:02:20:29:D5:95:EA:8B:9A:4A:33:B0:
                                F1:B2:D6:FF:F1:EB:66:99:9D:BF:B9:E1:56:03:4F:77:
                                44:A0:87:0D:2E:BA:80
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
                                5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
                    Timestamp : Mar  9 00:03:25.008 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:49:EC:37:03:56:95:55:93:89:4F:00:30:
                                A3:85:DE:54:94:18:D9:75:21:15:44:AD:99:E3:85:6B:
                                89:79:51:27:02:20:43:D2:D9:65:93:B9:6F:18:23:7E:
                                D7:FE:53:51:37:49:C6:1B:E9:C5:50:C1:FF:20:B7:CB:
                                AB:87:59:35:2F:F4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        90:83:fe:07:bf:6f:34:8e:a5:1e:2b:ee:fb:73:6f:0f:45:45:
        ce:68:4e:89:c9:90:24:c8:25:45:1b:90:a6:15:5a:49:6b:d3:
        9f:f3:8f:6a:87:c7:20:92:c6:44:84:95:4e:b9:2f:65:77:cf:
        24:06:dd:3e:8f:cf:8e:f7:29:ce:4c:39:15:83:6c:36:3d:8d:
        d2:6c:82:c8:ef:84:f2:5e:09:2c:8a:6d:06:61:53:11:bd:4d:
        86:30:0c:c7:b4:ad:b8:51:1f:cb:eb:bd:f7:46:1e:49:0a:81:
        1b:6d:57:7b:06:84:56:3c:2e:b6:f6:8a:ad:45:58:52:5d:bd:
        c4:af:7e:6a:4c:e2:6e:ae:e4:0b:73:e6:a7:37:73:36:25:51:
        d4:dd:4d:50:4b:40:b9:68:48:c6:5c:76:fc:8e:fb:20:55:b4:
        31:c6:3c:68:dd:0c:58:a7:49:37:08:5a:55:06:ff:52:74:ef:
        34:d0:e4:fb:5e:96:ad:5d:21:61:0f:21:42:f2:ac:30:da:6e:
        6d:31:7b:02:37:8c:3d:92:50:4c:27:ee:34:98:00:b5:02:69:
        06:52:40:12:73:ea:ec:e9:72:11:ed:37:72:4f:f7:ae:9e:20:
        ae:87:da:46:9a:c7:80:74:ee:3c:01:19:55:e2:e2:0a:83:17:
        b0:e6:37:38

Vulnerabilities

8445 / tcp

1102849523 | 2025-03-13T15:44:45.507376

Hashes

hash

120800605

http.dom_hash

-2079866405

http.html_hash

1102849523

http.server_hash

-982608622

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Thu, 13 Mar 2025 15:45:09 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

18.102.117.245

Last Seen: 2025-03-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

222909761 | 2025-03-17T17:04:19.934320

Hashes

nginx1.22.1

443 / tcp

1651973090 | 2025-03-21T10:39:50.659761

Hashes

nginx1.18.0

8445 / tcp

1102849523 | 2025-03-13T15:44:45.507376

Hashes

Products

Pricing

Contact Us

18.102.117.245

Last Seen: 2025-03-21

Tags:

GeneralInformation

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp 222909761 | 2025-03-17T17:04:19.934320

Hashes

nginx1.22.1

443 / tcp 1651973090 | 2025-03-21T10:39:50.659761

Hashes

nginx1.18.0

8445 / tcp 1102849523 | 2025-03-13T15:44:45.507376

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

222909761 | 2025-03-17T17:04:19.934320

443 / tcp

1651973090 | 2025-03-21T10:39:50.659761

8445 / tcp

1102849523 | 2025-03-13T15:44:45.507376