GeneralInformation

Hostnames	218.184.210.35.bc.googleusercontent.com lightdash.thegang.io
Domains	googleusercontent.com thegang.io
Cloud Provider	Google
Cloud Region	europe-west1
Country	Belgium
City	Brussels
Organization	Google LLC
ISP	Google LLC
ASN	AS15169
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

2130553748 | 2025-03-13T05:05:23.999169

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMTUO11PYn6jQN9CMEuORigD
PFoDsU7tZl5vhag7g+zj+TpU6Sx3lNVRIrii9wmPgXemFZpQ/p3KtDEowQA5UWg=
Fingerprint: ca:fa:2c:8f:de:63:e8:c5:bc:08:be:8b:48:0a:6c:7a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

677579724 | 2025-03-06T17:04:28.451950

Hashes

hash

-1840225152

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 06 Mar 2025 17:04:28 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

Vulnerabilities

443 / tcp

280289981 | 2025-03-22T17:22:52.455639

Hashes

hash

-56708469

http.dom_hash

-384313526

http.favicon.hash

-1977795181

http.html_hash

280289981

http.robots_hash

864332182

http.server_hash

967792298

http.title_hash

-1408696866

Lightdash

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 22 Mar 2025 17:22:52 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3095
Connection: keep-alive
Content-Security-Policy-Report-Only: default-src 'self' https://*.sentry.io https://analytics.lightdash.com https://*.usepylon.com https://*.pusher.com wss://*.pusher.com https://*.headwayapp.co https://headway-widget.net https://*.posthog.com https://*.intercom.com https://*.intercom.io wss://*.intercom.io https://*.intercomcdn.com https://*.rudderlabs.com https://www.googleapis.com https://apis.google.com https://accounts.google.com https://vega.github.io https://cdn.jsdelivr.net/npm/monaco-editor@0.43.0/ https://*.lightdash.cloud;img-src 'self' data: https://*;frame-src 'self' https://*;frame-ancestors 'self';worker-src 'self' blob: https://*.sentry.io https://analytics.lightdash.com https://*.usepylon.com https://*.pusher.com wss://*.pusher.com https://*.headwayapp.co https://headway-widget.net https://*.posthog.com https://*.intercom.com https://*.intercom.io wss://*.intercom.io https://*.intercomcdn.com https://*.rudderlabs.com https://www.googleapis.com https://apis.google.com https://accounts.google.com https://vega.github.io https://cdn.jsdelivr.net/npm/monaco-editor@0.43.0/ https://*.lightdash.cloud;child-src 'self' blob: https://*.sentry.io https://analytics.lightdash.com https://*.usepylon.com https://*.pusher.com wss://*.pusher.com https://*.headwayapp.co https://headway-widget.net https://*.posthog.com https://*.intercom.com https://*.intercom.io wss://*.intercom.io https://*.intercomcdn.com https://*.rudderlabs.com https://www.googleapis.com https://apis.google.com https://accounts.google.com https://vega.github.io https://cdn.jsdelivr.net/npm/monaco-editor@0.43.0/ https://*.lightdash.cloud;script-src 'self' 'unsafe-eval' https://*.sentry.io https://analytics.lightdash.com https://*.usepylon.com https://*.pusher.com wss://*.pusher.com https://*.headwayapp.co https://headway-widget.net https://*.posthog.com https://*.intercom.com https://*.intercom.io wss://*.intercom.io https://*.intercomcdn.com https://*.rudderlabs.com https://www.googleapis.com https://apis.google.com https://accounts.google.com https://vega.github.io https://cdn.jsdelivr.net/npm/monaco-editor@0.43.0/ https://*.lightdash.cloud;script-src-elem 'self' 'unsafe-inline' https://*.sentry.io https://analytics.lightdash.com https://*.usepylon.com https://*.pusher.com wss://*.pusher.com https://*.headwayapp.co https://headway-widget.net https://*.posthog.com https://*.intercom.com https://*.intercom.io wss://*.intercom.io https://*.intercomcdn.com https://*.rudderlabs.com https://www.googleapis.com https://apis.google.com https://accounts.google.com https://vega.github.io https://cdn.jsdelivr.net/npm/monaco-editor@0.43.0/ https://*.lightdash.cloud;report-uri;base-uri 'self';font-src 'self' https: data:;form-action 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 0
Permissions-Policy: camera=(), microphone=()
Lightdash-Version: 0.1552.1
Cache-Control: no-cache, private
Accept-Ranges: bytes
Last-Modified: Fri, 21 Mar 2025 16:28:58 GMT
ETag: W/"c17-195b9894d10"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:22:70:8c:30:84:44:de:ee:1f:8e:62:e6:b2:dc:17:9b:a7
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Feb 21 03:14:07 2025 GMT
            Not After : May 22 03:14:06 2025 GMT
        Subject: CN=lightdash.thegang.io
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:fb:49:51:a1:dc:c0:37:d3:64:90:58:2a:9e:81:
                    18:1c:9c:aa:ab:77:81:6b:cd:5c:ce:3c:1e:cd:c1:
                    94:12:19:6d:e8:ba:88:c0:14:e8:d6:df:6f:e3:5b:
                    32:26:82:ee:be:8b:ba:6d:bc:bf:20:87:4f:0e:5f:
                    9b:99:12:f4:af
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C1:3E:5A:EA:46:F1:C2:96:72:16:58:4B:3A:0D:FE:59:7B:A7:55:98
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:lightdash.thegang.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 21 04:12:37.503 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:37:F1:1A:9B:12:54:64:E5:89:2D:1D:CA:
                                00:76:BB:A3:98:B4:F4:10:0E:9B:EE:A2:27:38:49:36:
                                11:AA:78:8C:02:20:1E:79:0A:6B:3B:73:BE:C7:A4:58:
                                82:10:63:A2:F9:74:52:75:72:97:43:CD:78:5C:76:53:
                                C6:AA:7F:10:9C:B4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Feb 21 04:12:37.461 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:96:92:8D:03:AF:56:51:FC:6A:BD:A2:
                                EC:7D:C5:4F:72:FB:BF:27:B0:68:9F:C3:ED:19:43:96:
                                E6:3A:FC:77:47:02:20:09:71:B9:B7:B5:02:16:0C:16:
                                1A:1C:7D:59:EA:04:1C:AE:4B:04:B1:1E:2C:A6:C8:0A:
                                AC:9A:32:34:C1:FE:68
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:05:c5:7b:b9:39:e1:18:d3:ff:a4:f1:41:a3:2b:
        a5:c5:5c:db:8f:e7:8a:9e:0d:a4:4e:6e:f2:d4:87:30:d0:80:
        47:6e:71:e9:ac:80:1c:1e:53:44:c2:93:4d:22:50:76:02:30:
        4e:a9:9b:da:3e:02:ad:48:12:f8:0f:fe:a4:78:0d:fb:42:dd:
        01:12:34:38:e9:97:e9:20:17:a0:b7:4a:74:61:83:de:dc:12:
        c9:79:b0:fc:78:e7:76:2d:7e:ed:d1:50

Vulnerabilities

35.210.184.218

Last Seen: 2025-03-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

2130553748 | 2025-03-13T05:05:23.999169

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

677579724 | 2025-03-06T17:04:28.451950

Hashes

nginx1.18.0

443 / tcp

280289981 | 2025-03-22T17:22:52.455639

Hashes

nginx1.18.0

Products

Pricing

Contact Us

35.210.184.218

Last Seen: 2025-03-22

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 2130553748 | 2025-03-13T05:05:23.999169

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 677579724 | 2025-03-06T17:04:28.451950

Hashes

nginx1.18.0

443 / tcp 280289981 | 2025-03-22T17:22:52.455639

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

2130553748 | 2025-03-13T05:05:23.999169

80 / tcp

677579724 | 2025-03-06T17:04:28.451950

443 / tcp

280289981 | 2025-03-22T17:22:52.455639