GeneralInformation

Hostnames	git.murred.com static.190.144.75.5.clients.your-server.de
Domains	murred.com your-server.de
Country	Germany
City	Nürnberg
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

WebTechnologies

Programming languages

Ruby

Web frameworks

Ruby on Rails

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

1945121246 | 2025-02-20T20:58:12.656165

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFJVpMDnDQMzt46ajt1+jhf6
O9Pj28sD0f3dEVeqAK92U+U/C/O5LwB76e8CBOHKIB5Gz0nv6nFcLWnoFr1G5LU=
Fingerprint: ab:c7:5c:32:97:66:15:b9:9c:b6:e3:d5:13:9d:57:c7

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-13T07:06:36.891280

Hashes

hash

1074683734

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 13 Mar 2025 07:06:36 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 29 Nov 2023 09:01:34 GMT
Connection: keep-alive
ETag: "6566fdee-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

354109475 | 2025-03-11T16:43:01.972959

Hashes

hash

-1831029143

http.dom_hash

-1825433382

http.favicon.hash

1265477436

http.html_hash

354109475

http.robots_hash

1882307728

http.server_hash

967792298

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 11 Mar 2025 16:43:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10519
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: 
Etag: W/"5e3979c5a3ded436f8684480acf7c75a"
Permissions-Policy: interest-cohort=()
Set-Cookie: preferred_language=en; path=/; Secure; SameSite=None
Set-Cookie: _gitlab_session=6b4da8a6465bba7e3eb90d957af92a73; path=/; expires=Tue, 11 Mar 2025 18:43:01 GMT; secure; HttpOnly; SameSite=None
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JP31D582JFJRZK9WH5YCMQ7G","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JP31D582JFJRZK9WH5YCMQ7G
X-Runtime: 0.112008
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e3:5d:0c:9a:06:6b:9d:d1:ef:f7:a6:98:32:b8:02:d9:f2
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Jan 22 10:11:40 2025 GMT
            Not After : Apr 22 10:11:39 2025 GMT
        Subject: CN=git.murred.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:32:f2:23:d1:e7:37:de:10:b7:0c:ea:e9:4a:9f:
                    e2:d6:ac:d4:be:0d:9a:59:ff:5e:56:51:c8:40:05:
                    0f:b0:36:1e:e0:79:32:14:77:76:95:20:e1:06:4d:
                    6f:16:a6:35:71:88:c7:e9:0c:11:d2:dd:a3:2d:39:
                    d0:7d:21:2f:c4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5E:3B:70:8D:31:C6:D7:84:EA:46:E0:E0:59:85:4A:FE:E1:31:3B:F9
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:git.murred.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 22 11:10:10.449 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AC:F9:99:24:99:9E:E6:18:4C:00:83:
                                0B:BB:9C:3F:D5:5B:97:30:6B:19:7D:8A:DD:50:0A:F2:
                                AF:61:20:93:69:02:21:00:BE:D9:6A:5B:25:DA:08:19:
                                74:8E:03:C1:1C:D0:0D:35:92:21:45:21:F6:6B:20:E1:
                                19:AB:4A:81:13:79:57:B1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Jan 22 11:10:10.491 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E8:2B:3B:3B:66:8E:D7:50:66:DE:AB:
                                93:5C:35:78:D8:33:25:36:28:1A:0E:2F:37:39:E1:DB:
                                92:FC:C0:C2:5A:02:20:6C:A0:4B:C7:3D:A5:B3:22:41:
                                59:34:93:8F:BF:06:9E:3F:AB:D9:7D:FB:B2:46:23:AA:
                                59:25:5C:E9:8B:F2:E2
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:1a:d1:23:49:0b:35:cc:46:db:ca:e0:24:74:fa:
        19:6a:50:d5:f8:ba:ab:4f:29:06:c8:f7:3f:23:8c:e7:14:31:
        f0:87:cf:9c:99:1e:da:39:f9:2f:cf:98:c0:43:a9:d4:02:31:
        00:f3:df:d8:dc:73:f4:a5:e4:09:48:bc:c8:8b:38:53:cc:da:
        30:b6:44:4e:97:d8:cd:2b:e9:e2:10:d9:f2:5a:ea:32:da:d5:
        3b:91:cf:03:10:d5:41:08:25:c4:c9:d4:c1

Vulnerabilities

5.75.144.190

Last Seen: 2025-03-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

1945121246 | 2025-02-20T20:58:12.656165

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp

1651973090 | 2025-03-13T07:06:36.891280

Hashes

nginx1.18.0

443 / tcp

354109475 | 2025-03-11T16:43:01.972959

Hashes

GitLab Self-Managed

Products

Pricing

Contact Us

5.75.144.190

Last Seen: 2025-03-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1945121246 | 2025-02-20T20:58:12.656165

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp 1651973090 | 2025-03-13T07:06:36.891280

Hashes

nginx1.18.0

443 / tcp 354109475 | 2025-03-11T16:43:01.972959

Hashes

GitLab Self-Managed

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1945121246 | 2025-02-20T20:58:12.656165

80 / tcp

1651973090 | 2025-03-13T07:06:36.891280

443 / tcp

354109475 | 2025-03-11T16:43:01.972959