GeneralInformation

Hostnames	api-crawler.dev-nwa.com
Domains	dev-nwa.com
Country	Viet Nam
City	Ho Chi Minh City
Organization	Viettel Group
ISP	Viettel Group
ASN	AS7552

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 123 443 2002 3306 4000 5432 6379 8056 10050 40001

80 / tcp

-1836475360 | 2025-03-29T21:06:43.978260

Hashes

hash

-755826263

http.dom_hash

1239617585

http.html_hash

-1836475360

http.server_hash

1830366617

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Sat, 29 Mar 2025 21:06:43 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

Vulnerabilities

123 / udp

-1190625450 | 2025-04-01T13:15:39.851767

NTP
protocolversion: 3
stratum: 4
leap: 0
precision: -25
rootdelay: 0.358184814453
rootdisp: 0.100662231445
refid: 3413225004
reftime: 3952501724.41
poll: 3

443 / tcp

2031843274 | 2025-03-25T09:06:00.175741

Hashes

hash

1491025429

http.dom_hash

-2006505642

http.html_hash

2031843274

http.server_hash

1830366617

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 25 Mar 2025 09:05:49 GMT
Content-Type: application/json
Content-Length: 14
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:f9:e7:b1:9e:39:df:de:9d:ec:1a:12:89:53:ed:33:51:33
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Mar 19 10:26:55 2025 GMT
            Not After : Jun 17 10:26:54 2025 GMT
        Subject: CN=api-crawler.dev-nwa.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c4:94:36:97:95:3a:bf:16:1d:50:a6:b3:17:55:
                    5a:10:7a:c8:fa:80:a9:e3:f3:95:9a:40:11:cc:98:
                    30:4b:98:4c:d4:f1:64:d8:95:5a:01:2c:cc:27:45:
                    20:84:f4:e3:69:a6:8c:a4:6f:7f:aa:9a:17:64:ef:
                    4a:85:e6:a5:1f:84:83:69:b5:2a:69:9f:e6:4d:07:
                    1c:35:09:8b:52:75:b5:6b:9f:00:e9:c3:58:8d:ac:
                    b0:a1:4f:6f:3f:52:f2:b1:d2:d1:27:09:32:46:a5:
                    f1:35:4c:b1:a3:f2:0a:7e:c9:6c:2a:c6:b3:7e:c8:
                    ac:35:db:e5:43:41:e0:cc:2d:ee:53:5a:5f:86:b8:
                    2d:f0:7d:13:89:76:a6:4b:73:de:64:81:d7:ad:ef:
                    72:74:9d:e2:a4:ff:b0:87:51:fb:17:3d:cb:41:6d:
                    8b:b1:58:81:30:35:cd:69:4f:84:58:ad:46:6e:05:
                    4d:be:a1:59:85:d8:9e:f9:9a:cb:84:d2:87:6f:d2:
                    37:72:e2:32:21:2d:b2:76:7b:73:ad:bd:d3:99:58:
                    a5:42:38:9a:0d:66:59:05:57:77:71:8b:74:b3:bc:
                    f9:64:bb:56:59:e5:2f:9d:5b:01:ed:83:3d:e1:14:
                    e2:b2:ff:5a:9b:8e:3e:c7:78:e8:5b:1d:bf:ac:f2:
                    6b:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                67:7F:93:17:76:CF:A1:51:1F:9E:B8:E1:83:81:C1:07:37:44:99:1B
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api-crawler.dev-nwa.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://r11.c.lencr.org/52.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar 19 11:25:25.377 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FD:39:6A:25:7D:B4:B0:49:90:25:39:
                                C4:9C:8C:FA:24:F2:68:28:C5:D0:D4:A9:B4:DF:26:17:
                                14:6A:F4:DF:4D:02:20:44:20:42:6A:6C:C7:34:79:A3:
                                A5:8D:78:D3:2F:11:88:DB:4C:BB:F2:0A:E5:C1:AE:5F:
                                EE:35:AC:1D:39:E6:67
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar 19 11:25:27.404 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:55:DC:2B:C9:03:AF:A4:17:84:4C:99:D3:
                                83:8F:C8:06:2F:07:1F:29:FC:29:DC:B1:68:23:72:6C:
                                D7:FD:FE:31:02:20:1C:60:B7:88:94:DC:EC:73:0C:8B:
                                B5:7D:2E:9E:57:E7:01:66:E7:64:F5:42:A2:B7:34:8F:
                                71:6E:6B:71:B5:C5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        28:2c:5f:c9:02:27:56:6b:75:69:8a:5c:dd:96:49:59:03:52:
        30:7c:16:df:1e:d0:47:30:f4:6a:1f:fe:cf:dc:07:ee:7b:c6:
        b5:7c:6c:dd:a6:a4:12:e6:fe:1f:56:a2:88:f6:8d:5c:24:c5:
        8b:9a:64:d3:06:0f:51:bf:a7:c1:1f:61:d3:e8:3f:fa:8e:64:
        97:81:25:ac:3c:00:85:58:5f:9d:03:b6:a6:15:f5:29:1a:b0:
        51:84:6e:2c:ec:7c:6b:35:e6:08:6c:e5:03:94:8c:4f:9e:3b:
        5b:03:17:60:57:8b:90:e9:40:aa:d9:3f:d0:4f:f3:4f:56:a9:
        8e:87:25:a1:9f:72:64:46:93:a2:2c:17:db:fc:2c:dc:c1:5c:
        6f:cd:d5:fe:44:98:74:d3:c4:d0:30:19:fb:58:b8:24:7a:2a:
        be:bc:f8:a2:59:4b:53:64:90:51:4d:6a:df:86:d1:53:e1:3e:
        1e:e8:a0:e4:9f:da:86:4d:0c:3b:c1:f9:cf:51:fc:78:bf:d6:
        15:6f:f1:5c:0a:77:d4:eb:67:6f:fd:33:de:c5:4f:fa:25:49:
        f2:9a:88:15:09:34:b2:de:92:98:fe:ae:29:39:14:d5:c9:95:
        fd:d1:1f:92:1b:5f:b7:cd:6d:fa:b8:11:3d:2a:e2:f9:17:f7:
        1b:29:4e:22

Vulnerabilities

2002 / tcp

2000849801 | 2025-03-31T15:53:32.532006

SSH-2.0-OpenSSH_7.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDSAfKiHgrhoQRfklNqhXCte3vzm9GwwMbrGahlKRPpXzZl
yUN/8o64qtzUo+LANpg1hlUORX7ScW2LdB48/HNzbp4RMMSp/5PGeWKSLAjTcx2zV+RI9ABBBdN4
n1khiinG9mh27umLucfeQB60oIfY6ee1YJplKz/IxJF+KRcyq8i9NM08zZedI5ja8AbspQuZ2D9A
thd5xxxg5ycrRg2OH/0CpZ896mIXlqRn6kTVnvSlH3zP/RaCdiHvQDNo8aAnDq8TYpQ3Sz4qPQc0
F/tX1Pzy0hFbfMxbQiZWc9o/jHoigwfeNth6RjlfLQj950TBf1pq05hGwUtnxxNF1MjL
Fingerprint: da:78:14:64:b2:34:94:fc:e3:8c:d1:42:d4:83:60:66

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	cast128-cbc
	3des-cbc

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

Vulnerabilities

2 3 13 1

3306 / tcp

-998406261 | 2025-03-11T09:44:54.382824

MySQL:
  Error Message: Host '224.66.54.178' is not allowed to connect to this MySQL server
  Error Code: 1130

4000 / tcp

2021921990 | 2025-03-29T13:27:23.080230

HTTP/1.1 400 Bad Request
Date: Sat, 29 Mar 2025 13:27:22 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 127
Connection: close

error when reading request headers: cannot find http request method in "NXSH-5.6.7\n". Buffer size=11, contents: "NXSH-5.6.7\n"

5432 / tcp

-726790289 | 2025-03-11T03:30:36.045000

PostgreSQL
fe_sendauth: no password supplied

6379 / tcp

-1927723706 | 2025-03-25T10:30:28.289787

-NOAUTH Authentication required.

8056 / tcp

-830532227 | 2025-03-25T09:05:57.884990

Hashes

hash

1980499534

http.dom_hash

1882092635

http.favicon.hash

-2009722838

http.html_hash

-830532227

http.server_hash

1006625099

http.title_hash

-1483136221

Redirecting to https://27.71.232.56/login

HTTP/1.1 302 Found
Server: nginx/1.26.2
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Cache-Control: no-cache, private
Date: Tue, 25 Mar 2025 09:05:47 GMT
Location: https://27.71.232.56/login
Set-Cookie: XSRF-TOKEN=eyJpdiI6InpJTDJZYnJ1Zjc0R25rbWhOWjF5Q0E9PSIsInZhbHVlIjoiWVNHbzFLaDdUWDhnVnJndDB4bVlmNEdobllIa0F2UDBCZHJiT1ZFRm5RYnNyWTM3TTN0dmoxYlFDellad2x4bFBmRFlYTzZSYktJQ3JlclNZVW9vN21iTUpsVm4vN2ZQTkRiWThTNTRLTlMvdW5pVGQ4RXVWZHVYZ2pHNHpzSFYiLCJtYWMiOiJlZDU5MjBjYzViMmYxNTQxYzU0MDUzYjM1ZjNmNjUwNjlkZTU3YzczZWJhMDhjNTU2NzIwYzE5MDc2MDE2YTUwIiwidGFnIjoiIn0%3D; expires=Tue, 25-Mar-2025 11:05:47 GMT; Max-Age=7200; path=/; samesite=lax
Set-Cookie: kol_brancherx_session=eyJpdiI6IlBBTW9ieS9uZWd1N0Z6N3RTU2Y5eVE9PSIsInZhbHVlIjoiTm9jQmlpNkNPQjRhb0dHbHRMdklkZFJnaGR6dFJGbE1GK2pIQkd4SHBoN2FJeDRkNENQT0U2TTVyMG9sMmFXQVFaUkcrc21iWDlvUm5CbGx3c3pjYk1ScnE3MFV0Vnp3YjluZGRRVzhOUXN5UEFaM3M5N0F1cHNDOW5MVGN6a3oiLCJtYWMiOiJiZDA4Mzc5OTEyMWQ4N2Y5NjY0OWMzMWEwODFiZGEzMzY3OGFmZjU0MGFjNmE5MGNkNGJiMjZjMTFiNTAwZmZiIiwidGFnIjoiIn0%3D; expires=Tue, 25-Mar-2025 11:05:47 GMT; Max-Age=7200; path=/; httponly; samesite=lax

Vulnerabilities

1 4

40001 / tcp

-1714804253 | 2025-03-17T03:34:13.599733

Hashes

hash

227295517

http.dom_hash

-2006505642

http.html_hash

-1714804253

HTTP/1.0 200 OK
Connection: close
Content-Type: text/plain
Content-Length: 85


MongoDB Server Information
Authentication partially enabled
{
    "storageEngines": [
        "devnull", 
        "ephemeralForTest", 
        "wiredTiger"
    ], 
    "buildEnvironment": {
        "distarch": "x86_64", 
        "cc": "/opt/mongodbtoolchain/v3/bin/gcc: gcc (GCC) 8.5.0", 
        "cppdefines": "SAFEINT_USE_INTRINSICS 0 PCRE_STATIC NDEBUG _XOPEN_SOURCE 700 _GNU_SOURCE _FORTIFY_SOURCE 2 BOOST_THREAD_VERSION 5 BOOST_THREAD_USES_DATETIME BOOST_SYSTEM_NO_DEPRECATED BOOST_MATH_NO_LONG_DOUBLE_MATH_FUNCTIONS BOOST_ENABLE_ASSERT_DEBUG_HANDLER BOOST_LOG_NO_SHORTHAND_NAMES BOOST_LOG_USE_NATIVE_SYSLOG BOOST_LOG_WITHOUT_THREAD_ATTR ABSL_FORCE_ALIGNED_ACCESS", 
        "cxxflags": "-Woverloaded-virtual -Wno-maybe-uninitialized -fsized-deallocation -std=c++17", 
        "linkflags": "-Wl,--fatal-warnings -pthread -Wl,-z,now -fuse-ld=gold -fstack-protector-strong -Wl,--no-threads -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro -Wl,--compress-debug-sections=none -Wl,-z,origin -Wl,--enable-new-dtags", 
        "ccflags": "-Werror -include mongo/platform/basic.h -ffp-contract=off -fasynchronous-unwind-tables -ggdb -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -fno-omit-frame-pointer -fno-strict-aliasing -O2 -march=sandybridge -mtune=generic -mprefer-vector-width=128 -Wno-unused-local-typedefs -Wno-unused-function -Wno-deprecated-declarations -Wno-unused-const-variable -Wno-unused-but-set-variable -Wno-missing-braces -fstack-protector-strong -Wa,--nocompress-debug-sections -fno-builtin-memcmp", 
        "target_arch": "x86_64", 
        "distmod": "ubuntu2004", 
        "target_os": "linux", 
        "cxx": "/opt/mongodbtoolchain/v3/bin/g++: g++ (GCC) 8.5.0"
    }, 
    "ok": 1.0, 
    "sysInfo": "deprecated", 
    "modules": [], 
    "openssl": {
        "compiled": "OpenSSL 1.1.1f  31 Mar 2020", 
        "running": "OpenSSL 1.1.1f  31 Mar 2020"
    }, 
    "javascriptEngine": "mozjs", 
    "version": "5.0.29", 
    "allocator": "tcmalloc", 
    "versionArray": [
        5, 
        0, 
        29, 
        0
    ], 
    "debug": false, 
    "maxBsonObjectSize": 16777216, 
    "bits": 64, 
    "gitVersion": "cd239f3b0c7796df9e576ae5a9efcf4e6960560c"
}

Vulnerabilities

3 10 16

27.71.232.56

Last Seen: 2025-04-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

80 / tcp

-1836475360 | 2025-03-29T21:06:43.978260

Hashes

nginx1.20.1

123 / udp

-1190625450 | 2025-04-01T13:15:39.851767

443 / tcp

2031843274 | 2025-03-25T09:06:00.175741

Hashes

nginx1.20.1

2002 / tcp

2000849801 | 2025-03-31T15:53:32.532006

OpenSSH7.4

3306 / tcp

-998406261 | 2025-03-11T09:44:54.382824

MySQL

4000 / tcp

2021921990 | 2025-03-29T13:27:23.080230

5432 / tcp

-726790289 | 2025-03-11T03:30:36.045000

PostgreSQL15.5 - 15.6

6379 / tcp

-1927723706 | 2025-03-25T10:30:28.289787

Redis key-value store

8056 / tcp

-830532227 | 2025-03-25T09:05:57.884990

Hashes

nginx1.26.2

40001 / tcp

-1714804253 | 2025-03-17T03:34:13.599733

Hashes

MongoDB5.0.29

Products

Pricing

Contact Us

27.71.232.56

Last Seen: 2025-04-01

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 2002 Port 8056 Port 40001 Latest CVSS

OpenPorts

80 / tcp -1836475360 | 2025-03-29T21:06:43.978260

Hashes

123 / udp -1190625450 | 2025-04-01T13:15:39.851767

443 / tcp 2031843274 | 2025-03-25T09:06:00.175741

Hashes

2002 / tcp 2000849801 | 2025-03-31T15:53:32.532006

3306 / tcp -998406261 | 2025-03-11T09:44:54.382824

4000 / tcp 2021921990 | 2025-03-29T13:27:23.080230

5432 / tcp -726790289 | 2025-03-11T03:30:36.045000

6379 / tcp -1927723706 | 2025-03-25T10:30:28.289787

8056 / tcp -830532227 | 2025-03-25T09:05:57.884990

Hashes

40001 / tcp -1714804253 | 2025-03-17T03:34:13.599733

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-1836475360 | 2025-03-29T21:06:43.978260

123 / udp

-1190625450 | 2025-04-01T13:15:39.851767

443 / tcp

2031843274 | 2025-03-25T09:06:00.175741

2002 / tcp

2000849801 | 2025-03-31T15:53:32.532006

3306 / tcp

-998406261 | 2025-03-11T09:44:54.382824

4000 / tcp

2021921990 | 2025-03-29T13:27:23.080230

5432 / tcp

-726790289 | 2025-03-11T03:30:36.045000

6379 / tcp

-1927723706 | 2025-03-25T10:30:28.289787

8056 / tcp

-830532227 | 2025-03-25T09:05:57.884990

40001 / tcp

-1714804253 | 2025-03-17T03:34:13.599733