GeneralInformation

Hostnames	3pacademy.vn www.3pacademy.vn
Domains	3pacademy.vn
Country	Viet Nam
City	Hanoi
Organization	VCCorp Corporation
ISP	VNPT Corp
ASN	AS45899

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 3001 4080 9080

22 / tcp

1614004137 | 2025-03-06T15:45:30.361445

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.3
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAnumcVDQEOzoEFF57MHIEA/
gAN6NiZynapNnXZ7JZoG2xLPlIVg2MeEvHPAY4C7a3h/EPGCerc9z/k0oOwyDh0=
Fingerprint: 24:79:9c:71:b7:98:46:d9:59:aa:a1:7f:d6:51:91:09

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-04T06:48:30.635461

Hashes

hash

1291280687

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 04 Mar 2025 06:48:30 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 06 Feb 2024 02:42:22 GMT
Connection: keep-alive
ETag: "65c19c8e-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

589765266 | 2025-03-05T15:18:42.984634

Hashes

hash

-1832888097

http.dom_hash

1239617585

http.html_hash

589765266

http.server_hash

967792298

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 05 Mar 2025 15:18:42 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://3pacademy.vn/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            c7:18:a2:79:2d:1b:2c:e3:eb:60:57:b6:b5:1f:40:fe
        Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=AT, O=ZeroSSL, CN=ZeroSSL RSA Domain Secure Site CA
        Validity
            Not Before: Jul 16 00:00:00 2024 GMT
            Not After : Oct 14 23:59:59 2024 GMT
        Subject: CN=3pacademy.vn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:93:dd:b3:53:6b:52:d2:91:73:83:60:cd:ad:6b:
                    20:97:8f:85:04:89:2b:18:5e:0d:5c:e5:08:f3:5c:
                    15:f9:4f:fb:29:43:a9:be:e8:c9:6f:63:2d:ec:13:
                    c9:e2:2c:24:fd:01:b1:e0:66:97:15:94:c8:d2:1e:
                    d1:82:e0:41:1f:01:5e:15:2e:4d:47:c3:f3:15:26:
                    98:cc:30:2c:14:24:62:1d:73:c0:ba:99:07:fd:d1:
                    37:ae:40:56:e0:14:ab:22:47:af:5d:cf:9a:1b:44:
                    b4:65:e7:36:72:37:d9:da:c1:d1:fb:94:5f:c7:38:
                    3b:93:3c:3f:fe:04:25:95:b1:49:b7:14:22:3e:4b:
                    0a:a2:42:90:f1:a6:36:f7:44:c9:50:e2:19:65:48:
                    88:b6:34:2c:83:d9:02:8d:25:b6:8d:14:2b:c1:12:
                    0d:e1:c1:9d:55:3e:34:cb:1c:c3:bb:55:ef:a9:9c:
                    ea:58:5a:6a:1c:65:88:94:48:e3:ab:94:b0:a1:d4:
                    04:64:32:39:3a:e7:55:7a:05:fc:73:6b:b4:e8:21:
                    7a:9f:ae:8d:ea:42:aa:35:55:db:2c:e7:af:ae:74:
                    57:c5:4c:b8:df:60:e5:35:f4:a7:7e:c7:42:94:79:
                    04:52:18:fc:95:47:24:b9:7e:f4:49:c6:05:f3:ba:
                    c3:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C8:D9:78:68:A2:D9:19:68:D5:3D:72:DE:5F:0A:3E:DC:B5:86:86:A6
            X509v3 Subject Key Identifier: 
                8B:E6:9D:A3:67:DA:10:45:20:C7:52:B8:DC:A9:81:2E:B6:CE:C0:DA
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.78
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt
                OCSP - URI:http://zerossl.ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Jul 16 07:31:01.817 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:5C:85:39:13:7D:ED:B4:AE:80:0A:A6:8D:
                                4E:71:3F:93:67:B5:30:60:0C:68:EE:07:31:99:76:B0:
                                B6:E9:8F:44:02:21:00:93:41:28:B7:DC:3D:FA:55:BE:
                                EC:B3:01:8A:CA:FC:BB:9A:CE:2A:BC:A6:15:81:EB:E0:
                                A4:4A:0E:05:60:C0:9F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Jul 16 07:31:01.766 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:19:C0:0E:06:DD:12:89:F7:B3:1B:B2:43:
                                1A:33:ED:3B:53:90:D8:B6:A6:86:1C:91:E5:5A:BA:F3:
                                98:4B:9E:67:02:21:00:F6:4C:3F:5F:D1:6C:96:CF:21:
                                9D:C1:82:8E:98:97:06:17:6A:6F:A8:21:50:9D:A0:31:
                                47:6A:BA:22:D8:EF:F4
            X509v3 Subject Alternative Name: 
                DNS:3pacademy.vn, DNS:www.3pacademy.vn
    Signature Algorithm: sha384WithRSAEncryption
    Signature Value:
        40:ea:b1:72:fd:82:05:1f:bd:08:1a:7f:70:72:6d:d6:e3:51:
        69:25:8d:d5:09:63:45:d4:39:2b:51:f2:6a:9a:92:2d:2f:39:
        e3:85:f9:2a:5c:b0:47:b5:ed:63:79:22:ff:c9:45:a5:9b:4f:
        29:ad:f1:7c:00:ff:3e:ea:58:49:d2:6e:da:57:08:da:46:fd:
        f5:99:3a:58:ab:d0:3e:1f:17:f8:ec:9d:a3:f7:57:9a:8d:f6:
        1b:de:b9:80:9d:8b:d3:fc:1f:08:2d:8c:7e:65:d0:18:2c:02:
        0f:c2:ec:07:e5:2f:f5:59:b2:75:be:e4:c0:89:bc:63:e3:57:
        ca:af:6f:c5:98:15:ad:b0:01:99:dd:d6:7f:4c:32:b4:2d:6e:
        48:e4:f9:78:31:ff:21:f1:0a:fd:44:fa:25:01:93:b7:82:9d:
        da:b1:ae:a8:71:39:6f:a8:2c:2c:86:5e:0f:4d:5e:71:d5:d7:
        61:20:be:4b:ac:db:86:c3:e7:66:83:f2:5a:2e:71:57:7d:d2:
        e4:8a:b8:9c:cd:fa:62:bd:ea:de:c4:bd:71:7a:05:93:0a:fc:
        7d:61:1b:c8:20:cb:28:ef:7e:85:67:aa:54:c4:4e:fb:1e:c5:
        a3:9d:41:35:74:bd:3b:05:b8:27:f6:a6:08:b2:fc:65:39:a2:
        6f:0e:82:bd:2e:c9:98:f8:4d:48:10:0b:54:63:5f:d0:b2:c0:
        76:cd:14:7c:7a:2e:b7:6f:a2:90:04:cb:95:a5:53:b2:79:26:
        fc:e8:ec:21:21:3b:c4:31:66:5d:0d:01:68:48:59:18:70:ee:
        15:28:46:7f:9e:b4:9c:02:b6:16:43:e8:d3:31:56:30:47:30:
        f7:d9:b3:c9:55:dc:14:cb:64:6d:d7:87:1e:b7:cd:37:27:22:
        20:3e:ce:06:90:a9:1d:48:cf:1e:bb:d0:f5:5d:d6:3f:e6:01:
        07:2a:ba:6f:1b:fd:56:6f:99:1c:fd:fe:ab:74:b1:94:a6:89:
        f6:3e:89:22:fe:a6:13:e3:ba:53:11:45:a3:23:8e:14:36:e8:
        2d:00:34:4a:93:dc:17:0f:93:0b:5b:a6:33:09:c6:6d:3c:5e:
        da:94:4f:3d:ae:05:20:9d:c5:d4:49:ba:f5:bf:a8:48:26:ec:
        f0:67:a3:32:69:5f:11:71:f5:bd:9f:14:22:91:c1:86:eb:7b:
        9d:c4:1f:2c:44:a6:e4:f7:f6:dd:e8:ff:c4:76:cf:c6:42:04:
        47:94:e6:fb:b8:9a:74:46:6f:a1:fa:5b:b8:b6:66:b1:6e:87:
        4d:9c:68:75:9e:6d:b4:a7:bf:d1:93:b4:99:82:83:31:9b:88:
        02:30:99:b6:8b:8a:4b:0b

Vulnerabilities

3001 / tcp

-1410222230 | 2025-03-11T02:50:39.847271

HTTP/1.1 200 OK
Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-nextjs-cache: HIT
X-Powered-By: Next.js
Cache-Control: s-maxage=31536000, stale-while-revalidate
ETag: "hd0re5mgzb2byx"
Content-Type: text/html; charset=utf-8
Content-Length: 112094
Date: Tue, 11 Mar 2025 02:50:39 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html><html lang="en"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/a34f9d1faa5f3315-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/e048a900e8deb480.css" data-precedence="next"/><link rel="stylesheet" href="/_next/static/css/18d6fbb5feadf412.css" data-precedence="next"/><link rel="stylesheet" href="/_next/static/css/495be3d254388977.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-7f9ebf914579f6e6.js"/><script src="/_next/static/chunks/fd9d1056-2e5c50ee2db91161.js" async=""></script><script src="/_next/static/chunks/23-d9f7becd73dede6c.js" async=""></script><script src="/_next/static/chunks/main-app-6de3c3100b91a0a9.js" async=""></script><script src="/_next/static/chunks/648-2fc4701022262830.js" async=""></script><script src="/_next/static/chunks/565-764cf509eeb9798b.js" async=""></script><script src="/_next/static/chunks/app/layout-22b7b85

4080 / tcp

579144647 | 2025-03-04T17:18:38.355365

Hashes

hash

1077524049

http.dom_hash

1087203621

http.html_hash

579144647

HTTP/1.1 404 
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Content-Type: text/html;charset=UTF-8
Content-Language: en
Content-Length: 275
Date: Tue, 04 Mar 2025 17:18:38 GMT

9080 / tcp

0 | 2025-03-05T23:09:37.907807

Hashes

hash

-1542234646

http.dom_hash

http.html_hash

HTTP/1.1 401 
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Content-Length: 0
Date: Wed, 05 Mar 2025 23:09:37 GMT

45.124.94.131

Last Seen: 2025-03-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

1614004137 | 2025-03-06T15:45:30.361445

OpenSSH8.9p1 Ubuntu 3ubuntu0.3

80 / tcp

1651973090 | 2025-03-04T06:48:30.635461

Hashes

nginx1.18.0

443 / tcp

589765266 | 2025-03-05T15:18:42.984634

Hashes

nginx1.18.0

3001 / tcp

-1410222230 | 2025-03-11T02:50:39.847271

4080 / tcp

579144647 | 2025-03-04T17:18:38.355365

Hashes

9080 / tcp

0 | 2025-03-05T23:09:37.907807

Hashes

Products

Pricing

Contact Us

45.124.94.131

Last Seen: 2025-03-11

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1614004137 | 2025-03-06T15:45:30.361445

OpenSSH8.9p1 Ubuntu 3ubuntu0.3

80 / tcp 1651973090 | 2025-03-04T06:48:30.635461

Hashes

nginx1.18.0

443 / tcp 589765266 | 2025-03-05T15:18:42.984634

Hashes

nginx1.18.0

3001 / tcp -1410222230 | 2025-03-11T02:50:39.847271

4080 / tcp 579144647 | 2025-03-04T17:18:38.355365

Hashes

9080 / tcp 0 | 2025-03-05T23:09:37.907807

Hashes

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1614004137 | 2025-03-06T15:45:30.361445

80 / tcp

1651973090 | 2025-03-04T06:48:30.635461

443 / tcp

589765266 | 2025-03-05T15:18:42.984634

3001 / tcp

-1410222230 | 2025-03-11T02:50:39.847271

4080 / tcp

579144647 | 2025-03-04T17:18:38.355365

9080 / tcp

0 | 2025-03-05T23:09:37.907807