GeneralInformation

Hostnames	ec2-18-217-23-71.us-east-2.compute.amazonaws.com archive-denali.elevationeg.com
Domains	amazonaws.com elevationeg.com
Cloud Provider	Amazon
Cloud Region	us-east-2
Cloud Service	EC2
Country	United States
City	Columbus
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 3306 33060

558856490 | 2024-12-31T08:38:41.714733

22 / tcp

SSH-2.0-OpenSSH_8.7
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBONzk59Y3VJ6F0lPbLDvaxeL
MSbBE7K8yaX9PFcxG4JepKSr510yB0mAVZOaewD1g+K3sz9R75AQga4+glGIM7M=
Fingerprint: 27:29:6f:6b:5f:e6:b5:d1:a5:50:88:89:53:d4:b8:b9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com
	aes256-ctr
	aes128-gcm@openssh.com
	aes128-ctr

MAC Algorithms:
	hmac-sha2-256-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256
	hmac-sha1
	umac-128@openssh.com
	hmac-sha2-512

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 5 moreCVE-2023-51385 CVE-2023-48795 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

-1762489226 | 2024-12-21T06:48:17.678298

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Date: Sat, 21 Dec 2024 06:48:19 GMT
Server: Apache/2.4.62 (Amazon Linux) OpenSSL/3.0.8
Location: https://archive-denali.elevationeg.com/
Content-Length: 247
Content-Type: text/html; charset=iso-8859-1

-2026612939 | 2024-12-31T07:15:56.886238

443 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 31 Dec 2024 07:15:56 GMT
Server: Apache/2.4.62 (Amazon Linux) OpenSSL/3.0.8
Last-Modified: Mon, 11 Jun 2007 18:53:14 GMT
ETag: "2d-432a5e4a73a80"
Accept-Ranges: bytes
Content-Length: 45
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:83:58:08:67:5f:cf:c2:a2:1a:c2:e0:b1:45:70:f0:00:54
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Nov  1 11:09:30 2024 GMT
            Not After : Jan 30 11:09:29 2025 GMT
        Subject: CN=archive-denali.elevationeg.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:60:94:a4:b8:63:c3:bd:49:95:97:bf:83:5d:d1:
                    74:2a:22:7e:7e:e1:14:29:b4:35:1a:b4:34:d8:bc:
                    fb:8e:04:6e:7d:35:1c:15:80:a1:ba:a1:36:9a:5a:
                    49:65:a3:29:ba:c0:33:a0:df:69:2e:bc:c7:d3:62:
                    09:b3:c2:71:67
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B7:96:95:97:2A:A5:80:BC:7D:4E:E6:6D:0E:01:89:77:BC:DF:C5:D9
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:archive-denali.elevationeg.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Nov  1 12:08:01.316 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:83:2C:DB:83:EF:ED:1A:30:2C:8D:D8:
                                74:D8:90:E2:C5:1C:1B:64:4A:6F:3F:8E:47:31:EC:74:
                                D9:60:0A:85:10:02:20:7A:43:B3:48:87:F9:43:61:09:
                                12:BA:BD:8E:20:CB:3D:EF:94:7B:BA:59:8E:64:5D:4E:
                                11:75:48:DA:33:F5:74
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Nov  1 12:08:03.397 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:53:7B:8A:29:AD:EC:7A:3E:AE:D0:6F:9C:
                                FA:69:C6:E6:E3:82:12:65:03:87:21:AC:B3:95:02:64:
                                7F:E5:1B:EE:02:20:04:7B:74:47:4D:47:9E:BD:16:83:
                                B4:91:7D:76:F4:D2:71:EF:5D:4A:2C:C7:43:93:08:7F:
                                BC:F3:3F:18:02:0B
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:66:f6:c8:e9:92:15:49:88:6f:d0:be:a8:2f:3b:
        bc:de:07:a0:c3:9e:6b:ca:c3:96:bd:d5:03:e1:97:23:48:42:
        46:8b:87:14:b1:59:58:7f:e9:a8:10:0e:dd:09:e3:7e:02:30:
        41:4b:34:f2:6a:19:91:a6:43:c3:fd:86:99:bd:11:f8:f2:87:
        2e:21:0a:53:be:e0:2b:4c:ee:c9:7a:b8:d9:c1:2c:23:d8:a3:
        c2:db:29:03:66:0a:74:75:fc:b5:e8:6a

431232254 | 2024-12-26T15:57:53.320370

3306 / tcp

MySQL:
  Error Message: Host '224.10.225.83' is not allowed to connect to this MySQL server
  Error Code: 1130

-795948505 | 2024-12-13T19:51:25.006599

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

18.217.23.71

Last Seen: 2024-12-31

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

558856490 | 2024-12-31T08:38:41.714733
22 / tcp

OpenSSH8.7

-1762489226 | 2024-12-21T06:48:17.678298
80 / tcp

Apache httpd2.4.62

-2026612939 | 2024-12-31T07:15:56.886238
443 / tcp

Apache httpd2.4.62

431232254 | 2024-12-26T15:57:53.320370
3306 / tcp

MySQL

-795948505 | 2024-12-13T19:51:25.006599
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

18.217.23.71

Last Seen: 2024-12-31

Tags:

GeneralInformation

Vulnerabilities All ports Port 22 Port 80 Port 443 Latest CVSS

OpenPorts

558856490 | 2024-12-31T08:38:41.714733 22 / tcp

OpenSSH8.7

-1762489226 | 2024-12-21T06:48:17.678298 80 / tcp

Apache httpd2.4.62

-2026612939 | 2024-12-31T07:15:56.886238 443 / tcp

Apache httpd2.4.62

431232254 | 2024-12-26T15:57:53.320370 3306 / tcp

MySQL

-795948505 | 2024-12-13T19:51:25.006599 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

Vulnerabilities

558856490 | 2024-12-31T08:38:41.714733
22 / tcp

-1762489226 | 2024-12-21T06:48:17.678298
80 / tcp

-2026612939 | 2024-12-31T07:15:56.886238
443 / tcp

431232254 | 2024-12-26T15:57:53.320370
3306 / tcp

-795948505 | 2024-12-13T19:51:25.006599
33060 / tcp