GeneralInformation

Hostnames	api.stockmanager.xyz
Domains	stockmanager.xyz
Cloud Provider	DigitalOcean
Cloud Region	gb-slg
Country	United Kingdom
City	London
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

833453856 | 2025-02-09T14:54:57.776900

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJ63/VzhR/+yDw5vED1mP2Qi
kGVtJOeEjiMglNm/V/OO/1/U46sfZPOC4KeH0KzSptYDYRjyhtJrmdMpPVHUi9o=
Fingerprint: 0b:e6:36:2d:a4:44:6c:db:e8:bd:a3:39:13:2e:98:7c

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

677579724 | 2025-03-10T02:46:01.541920

Hashes

hash

-713731490

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 10 Mar 2025 02:46:01 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

Vulnerabilities

443 / tcp

677579724 | 2025-03-05T04:15:04.234601

Hashes

hash

-1307508928

http.dom_hash

1239617585

http.html_hash

677579724

http.server_hash

967792298

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 05 Mar 2025 04:14:56 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:58:b0:79:f7:e0:10:60:fc:00:96:1d:f0:2e:21:e8:6e:26
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb  5 12:13:43 2025 GMT
            Not After : May  6 12:13:42 2025 GMT
        Subject: CN=api.stockmanager.xyz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:91:1b:6c:d3:e5:e6:1d:4f:be:5b:a7:6a:54:1e:
                    7d:56:e0:a9:b7:70:df:28:77:08:9d:d9:17:78:2f:
                    58:b5:a9:85:52:c8:2b:90:d7:db:91:17:d1:b1:d1:
                    ac:b5:49:e8:3c:b9:68:19:47:c8:80:55:26:ca:0c:
                    14:04:72:47:a7:31:72:86:e6:c4:6a:6f:3d:da:8c:
                    ba:7a:42:ce:01:fe:10:e2:ae:2f:77:f4:ed:47:9a:
                    00:5c:70:21:4f:50:09:97:c2:83:b5:02:1d:d4:e6:
                    89:2b:dc:26:6b:9c:99:84:63:6f:ef:24:45:c7:c4:
                    3d:0e:9e:47:68:fe:c6:8c:7c:4e:2b:69:30:49:ff:
                    f7:af:20:65:ae:1c:5f:8f:28:fe:1d:0a:91:f6:53:
                    fd:53:d0:ea:40:44:70:24:91:7d:ff:49:15:b8:1a:
                    8c:70:76:12:45:5b:7f:79:a7:03:25:a9:75:be:60:
                    0e:74:38:f7:6d:6c:4d:e1:d2:cd:c4:05:0b:e5:7c:
                    a1:2b:82:d4:0a:83:07:d2:73:6d:2f:08:2d:47:04:
                    4c:f8:7e:41:df:a9:9a:25:90:c5:5f:5f:8e:1e:12:
                    6d:20:be:e4:4a:76:03:0d:2e:94:6e:3a:d6:68:48:
                    43:3a:3a:a0:5d:8a:f5:06:b2:c5:3d:d6:ce:05:14:
                    af:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E5:31:78:0E:F0:9F:1F:0A:6A:B1:91:BA:56:91:0D:68:24:71:8A:C1
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.stockmanager.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb  5 13:12:14.092 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7D:F9:0E:B3:05:6A:39:C3:DD:AE:A1:F2:
                                CF:4A:C0:EC:9F:72:DC:77:7D:E3:E5:68:BA:B7:61:81:
                                CB:C4:A6:2E:02:21:00:F7:22:3C:10:47:0B:B7:9E:82:
                                90:97:63:0C:AE:3D:95:B5:54:70:E3:C8:01:59:44:5B:
                                44:0E:2F:03:38:13:28
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb  5 13:12:14.090 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:78:9B:62:C5:13:0F:75:94:E1:AF:0A:5F:
                                01:DE:89:67:EF:E1:CB:66:1E:85:4C:2E:09:6C:59:EF:
                                19:EB:3D:E5:02:20:06:FE:AC:3B:4C:B1:4F:7C:8B:1A:
                                6C:0B:54:72:2F:94:44:CE:65:57:20:32:A8:D6:CC:55:
                                4B:4E:26:46:ED:AC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        13:a6:f2:a5:e1:cd:b8:9c:34:04:bc:b7:e0:54:d1:06:0f:a4:
        7e:f7:64:30:1c:ac:46:ff:11:63:b7:45:81:85:6e:85:b5:cd:
        89:06:5c:e6:81:5a:27:20:44:83:89:ca:f8:ec:65:16:54:15:
        84:0b:99:b1:6e:9d:21:c2:52:f9:60:e5:db:22:de:35:0f:8e:
        93:c0:37:07:df:84:2a:d9:7a:ff:30:ee:e3:c2:cb:27:15:29:
        14:df:c0:20:fe:35:f6:e9:ed:d8:aa:05:a3:65:ad:c3:e2:54:
        3d:5c:33:4a:a9:71:91:c1:70:b1:64:4e:7c:eb:c9:9a:fc:16:
        d9:d4:f9:ed:13:19:0f:a6:31:eb:a5:45:d1:12:a0:b1:76:f9:
        fb:a4:88:c8:b4:f0:65:66:0a:a0:ee:9a:99:77:01:a6:45:c2:
        b9:0a:e0:2e:de:63:10:37:d0:45:bf:b3:32:60:56:9f:59:49:
        77:88:7f:cf:b9:7e:e4:7f:4d:0b:fd:f1:b5:61:dd:37:d2:1a:
        fc:c6:90:68:ce:8a:13:c8:db:ab:bb:4b:86:a8:ef:7d:f3:2a:
        d8:8a:3a:27:c8:f0:8a:db:b1:44:f4:12:00:24:d2:2b:72:20:
        e0:f7:6d:c5:35:70:ae:36:cc:a4:d6:61:6e:4f:4f:39:36:37:
        64:ac:53:ab

Vulnerabilities

46.101.73.135

Last Seen: 2025-03-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

833453856 | 2025-02-09T14:54:57.776900

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp

677579724 | 2025-03-10T02:46:01.541920

Hashes

nginx1.18.0

443 / tcp

677579724 | 2025-03-05T04:15:04.234601

Hashes

nginx1.18.0

Products

Pricing

Contact Us

46.101.73.135

Last Seen: 2025-03-10

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 833453856 | 2025-02-09T14:54:57.776900

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp 677579724 | 2025-03-10T02:46:01.541920

Hashes

nginx1.18.0

443 / tcp 677579724 | 2025-03-05T04:15:04.234601

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

833453856 | 2025-02-09T14:54:57.776900

80 / tcp

677579724 | 2025-03-10T02:46:01.541920

443 / tcp

677579724 | 2025-03-05T04:15:04.234601