GeneralInformation

Hostnames	ec2-18-200-134-170.eu-west-1.compute.amazonaws.com qa3-manual-api.aihub.onyx-develop.com
Domains	amazonaws.com onyx-develop.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

JavaScript libraries

jQuery3.5.1

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443

-174115805 | 2024-10-16T07:32:54.169418

80 / tcp

Object moved

HTTP/1.1 302 Found
Date: Wed, 16 Oct 2024 07:32:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 212
Connection: keep-alive
Cache-Control: private
Location: https://18.200.134.170/ServiceCenter/
Set-Cookie: ASP.NET_SessionId=2gfstprx4vssx1kxmyrkww1u; path=/; secure; HttpOnly
Set-Cookie: osVisitor=c08dee07-a0bb-4092-a283-9dcdf1acaf27; expires=Mon, 16-Oct-2124 07:32:54 GMT; path=/; secure; HttpOnly
Set-Cookie: osVisit=78d2e3bb-014e-451c-ae45-bb762e7dd022; expires=Wed, 16-Oct-2024 08:02:54 GMT; path=/; secure; HttpOnly
X-Robots-Tag: noindex, nofollow
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000;includeSubDomains
Content-Security-Policy: base-uri 'self'; child-src 'self'; frame-src 'self'; connect-src 'self'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' data:; img-src 'self' blob: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self'; report-uri /SecurityUtils/rest/Report/ReportViolations?Params=zJpdjHR6XJProfZpfcIQfw1trN5XiJAmtJGhrXOlg3LdI3wG4ugDuWM8fVYsddlw09hdFuBUy1THbDg8fqyb7g%3D%3D;
X-Content-Security-Policy: base-uri 'self'; child-src 'self'; frame-src 'self'; connect-src 'self'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' data:; img-src 'self' blob: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self'; report-uri /SecurityUtils/rest/Report/ReportViolations?Params=zJpdjHR6XJProfZpfcIQfw1trN5XiJAmtJGhrXOlg3LdI3wG4ugDuWM8fVYsddlw09hdFuBUy1THbDg8fqyb7g%3D%3D;
X-WebKit-CSP: base-uri 'self'; child-src 'self'; frame-src 'self'; connect-src 'self'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' data:; img-src 'self' blob: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self'; report-uri /SecurityUtils/rest/Report/ReportViolations?Params=zJpdjHR6XJProfZpfcIQfw1trN5XiJAmtJGhrXOlg3LdI3wG4ugDuWM8fVYsddlw09hdFuBUy1THbDg8fqyb7g%3D%3D;
X-Content-Type-Options: nosniff

172499365 | 2024-10-23T23:56:25.870146

443 / tcp

Root – Django REST framework

HTTP/1.1 401 Unauthorized
Date: Wed, 23 Oct 2024 23:56:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5179
Connection: keep-alive
Server: nginx/1.18.0
WWW-Authenticate: Bearer
Vary: Accept, Cookie, Origin
Allow: GET, OPTIONS
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin
Correlation-ID: ca640632e70d49fc88e0b240a536f23a
Set-Cookie: csrftoken=xFPXynpaGLLZQobfLGCep30eKY5n9geo; expires=Wed, 22 Oct 2025 23:56:25 GMT; Max-Age=31449600; Path=/; SameSite=Lax

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:c4:dc:96:d2:6c:15:50:0a:18:74:41:f7:00:49:c7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Jul  2 00:00:00 2024 GMT
            Not After : Jul 31 23:59:59 2025 GMT
        Subject: CN=qa3-manual-api.aihub.onyx-develop.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:98:d6:25:58:69:b0:d2:60:b4:21:d5:bf:02:3a:
                    f9:a1:03:8e:e6:ae:d8:7e:84:ea:0f:2b:3b:53:21:
                    53:df:8c:67:0d:46:c5:e3:d6:fa:ab:3e:d6:1b:52:
                    1a:b2:04:e5:e2:85:51:67:3b:21:31:92:ee:36:61:
                    74:ff:65:22:a4:d9:48:47:71:ef:1c:7a:46:a7:3c:
                    c2:0c:b6:e0:e8:b7:9b:ad:c8:50:78:9d:68:27:fd:
                    55:80:7d:87:d3:6e:31:42:3b:db:9e:c4:36:eb:56:
                    a2:f5:4e:65:de:dc:ca:d4:2d:f8:3f:79:1b:88:8c:
                    82:a7:be:67:b5:11:5b:00:64:c9:31:8d:23:dc:64:
                    ac:31:29:63:03:65:00:3b:97:31:8a:5a:df:56:4d:
                    29:8b:57:35:df:0e:ff:ae:a9:93:a9:a1:4b:13:aa:
                    df:28:cc:96:e6:d7:a2:e3:87:42:ef:42:fc:4c:67:
                    4c:93:e0:38:32:cc:f5:e4:aa:4e:ef:08:59:9b:90:
                    6a:a0:d2:cf:c8:95:92:08:ee:40:44:8a:b1:94:56:
                    0d:bc:56:f6:5a:45:9d:1d:dd:8c:6e:36:ee:12:29:
                    68:33:38:00:7d:d6:05:4b:32:d0:26:e3:e5:ad:d8:
                    01:78:d6:d5:a0:1f:83:36:f4:98:7c:ca:65:d3:be:
                    e6:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                3B:36:E0:C8:AE:D7:99:7E:8C:C9:BA:35:9C:5F:A2:5D:30:B4:3D:C4
            X509v3 Subject Alternative Name: 
                DNS:qa3-manual-api.aihub.onyx-develop.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Jul  2 10:28:31.362 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6E:F9:4C:D2:C8:66:8F:CC:C9:B2:1A:5A:
                                8F:AD:6D:1E:BD:0A:F8:32:B5:BF:4B:DD:1F:EA:E8:7F:
                                F0:BE:28:32:02:20:06:9F:B1:69:D7:5D:C1:31:5F:67:
                                82:B7:96:64:43:E5:90:93:49:05:33:A7:F9:77:10:1B:
                                94:84:CD:D1:45:B6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Jul  2 10:28:31.424 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:44:38:1D:8E:13:35:75:5D:30:4E:10:F1:
                                3F:D4:CF:E8:CD:BA:3B:09:61:2D:16:16:AF:53:73:11:
                                11:00:A2:0F:02:20:1B:1F:90:7F:35:7B:CD:DE:32:4B:
                                55:D0:A4:F8:FB:25:E2:95:03:B3:59:0E:38:A8:27:90:
                                31:94:E1:36:33:1C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Jul  2 10:28:31.449 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:20:C6:8C:37:A3:6C:D3:B5:AF:0B:12:D8:
                                BD:DF:25:5A:24:F6:3D:FE:73:9D:43:06:F0:C3:64:D9:
                                96:C8:39:59:02:21:00:D3:E2:0C:81:68:CA:C6:D2:7A:
                                7A:88:FE:98:4B:E5:6D:25:57:17:8E:F3:8C:C0:CB:13:
                                47:43:A7:F0:C6:E2:B0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        83:0c:d0:a7:e8:90:c7:68:ed:68:72:54:01:0d:f3:c6:ce:84:
        02:2f:f1:ea:f3:97:91:c6:6c:80:ef:6e:db:7a:0f:f6:03:9a:
        0e:62:23:12:04:8a:7d:a4:f9:b4:ee:1c:df:d3:b4:51:09:96:
        1d:65:1f:d3:de:2e:bc:d1:c1:96:b7:97:f4:8f:c1:81:bf:c2:
        ef:ee:dc:7f:80:6b:8f:da:eb:c5:04:47:89:51:0f:58:a2:ea:
        e8:df:18:2f:46:c8:e4:9a:f8:a9:e0:aa:ac:bb:51:4b:28:cd:
        2f:97:af:13:10:9b:78:7f:06:8e:a9:68:47:f7:46:df:83:90:
        1e:36:49:b3:fe:d9:4f:ad:f4:39:59:54:30:36:d9:dd:ea:5e:
        52:df:d3:53:cd:ac:1e:9c:1f:01:d4:f7:6b:69:7c:d2:78:30:
        d6:22:8e:56:a9:b8:27:aa:76:f2:34:12:bf:45:a7:7c:e8:4c:
        e9:3e:64:4a:6a:69:04:53:d7:48:9b:e4:fc:88:e9:8a:c3:af:
        2b:87:d0:6a:9a:3a:77:7a:f4:ab:e3:99:12:bb:5d:74:84:2f:
        e2:c1:5a:c9:d1:fa:d6:fa:f0:a2:a3:30:7e:98:cb:82:5a:22:
        81:ce:97:09:50:0f:ff:ce:be:d7:5e:33:3b:e7:c5:12:36:df:
        32:9c:ec:c4

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

18.200.134.170

Last Seen: 2024-10-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-174115805 | 2024-10-16T07:32:54.169418
80 / tcp

172499365 | 2024-10-23T23:56:25.870146
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

18.200.134.170

Last Seen: 2024-10-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

-174115805 | 2024-10-16T07:32:54.169418 80 / tcp

172499365 | 2024-10-23T23:56:25.870146 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

-174115805 | 2024-10-16T07:32:54.169418
80 / tcp

172499365 | 2024-10-23T23:56:25.870146
443 / tcp