GeneralInformation

Hostnames

jenkins.metastack.gg
static.136.148.75.5.clients.your-server.de

Domains

metastack.gg your-server.de

Country

Germany

City

Nürnberg

Organization

Hetzner Online GmbH

ISP

Hetzner Online GmbH

ASN

AS24940

Operating System

Linux

OpenPorts

22 80 443

22 / tcp

859140183 | 2025-04-16T02:43:46.753935

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPRUQ5MhP6RdlA4ATe5xryR9
CAs3s2cYYm31zzVN2VeOOOviinVagX6nG6NWeEP7mRpDYBBtisLsRr1VFRId0RQ=
Fingerprint: 6f:b1:64:c3:8f:a9:6d:c5:38:1f:11:00:9f:af:9e:ff

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-04-08T12:46:27.744257

Hashes

hash

-258412374

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 08 Apr 2025 12:46:27 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 29 Nov 2023 23:22:09 GMT
Connection: keep-alive
ETag: "6567c7a1-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

1950403721 | 2025-04-09T10:40:37.665100

Hashes

hash

1300062086

http.dom_hash

1844292774

http.favicon.hash

81586312

http.html_hash

1950403721

http.robots_hash

-466733785

http.server_hash

967792298

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 09 Apr 2025 10:40:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID.7e19cf8a=node0kut6ikfmvrnc1x0v9esryg1g514634.node0; Path=/; Secure; HttpOnly
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Hudson: 1.395
X-Jenkins: 2.492.1
X-Jenkins-Session: 8466aa37

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:ea:8e:4e:f9:40:18:37:c3:b1:75:84:09:e9:a5:b6:ce:ee
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Mar 26 09:07:42 2025 GMT
            Not After : Jun 24 09:07:41 2025 GMT
        Subject: CN=jenkins.metastack.gg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:98:0e:b3:9d:99:45:c7:dc:ac:43:b9:3b:fe:a3:
                    19:ba:f1:b4:7e:7f:af:b1:f6:b4:43:65:f6:57:b3:
                    75:fc:01:d5:a7:09:64:ca:50:f5:65:0f:f3:8b:cc:
                    8e:6f:55:7e:4d:05:71:94:91:95:a3:a7:49:02:9a:
                    97:56:82:fb:59:6a:e7:fd:ff:66:b1:fa:4e:e5:08:
                    bd:57:d2:fe:bb:11:74:2f:8b:14:59:9f:9b:12:e5:
                    9e:c4:c3:00:3b:65:c7:c0:85:ff:7d:c7:1c:5a:cb:
                    2b:53:09:15:d7:8e:7e:41:f4:3c:04:e0:60:e7:10:
                    8a:b1:21:32:46:82:42:80:28:50:c0:00:8e:bc:d6:
                    f1:4b:93:2c:4a:5e:03:8c:26:8f:85:b2:bb:6c:a0:
                    c1:d5:d7:9e:f2:27:ff:df:08:7a:7e:1a:0b:27:99:
                    e5:6d:6f:a3:2c:29:bd:b1:18:f3:c0:4b:85:fb:ff:
                    00:49:57:39:91:99:20:d0:41:8d:42:39:4e:b2:d5:
                    24:6b:65:99:32:66:b0:98:60:be:33:0c:41:17:39:
                    b9:6f:d1:8f:f2:74:94:ac:2d:2d:59:8b:0d:25:d0:
                    f1:f4:e3:77:cb:59:2e:b7:79:f4:b5:ad:48:34:c0:
                    ff:ae:d7:90:60:c5:8a:43:d8:80:ea:29:70:15:e0:
                    c1:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                61:D2:BD:E1:DE:B3:D6:21:96:CF:5F:7B:CF:B7:DA:97:BD:F5:35:54
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:jenkins.metastack.gg
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://r10.c.lencr.org/111.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
                                47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
                    Timestamp : Mar 26 10:06:12.634 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1A:65:28:64:6A:0C:50:DA:C3:D6:72:8C:
                                D1:86:16:42:33:6F:F0:56:3C:B8:80:19:2F:1A:C1:B5:
                                5C:98:46:89:02:21:00:E9:EE:1F:DE:9B:A4:E9:ED:CC:
                                17:B9:5A:69:1F:CB:25:D4:30:6B:8F:6A:93:02:CD:A6:
                                26:32:6D:BE:39:CB:AE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar 26 10:06:12.695 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C8:76:BC:B3:C6:F1:15:E8:EF:37:64:
                                9E:14:F8:EF:3B:47:F1:6F:AF:6C:39:80:97:B4:73:04:
                                EA:84:C3:B5:2D:02:21:00:EB:F5:A9:D7:A9:7F:F6:63:
                                71:52:9D:FB:A7:44:18:5B:C9:25:72:E1:9B:30:BC:65:
                                96:D1:F1:C1:B8:BD:BE:27
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        65:02:45:01:0a:f6:d4:4d:3e:7d:79:91:7a:c8:db:d9:43:f3:
        b6:05:6a:6c:3a:2e:53:ac:02:02:48:41:4b:56:20:e5:fd:08:
        33:eb:be:49:82:9d:af:8f:b0:a3:97:7d:53:1e:4f:86:7e:fd:
        36:aa:96:c0:54:94:f1:fd:ac:30:17:c9:75:7c:d4:33:73:86:
        81:22:5e:3c:c9:66:7c:d7:e9:83:84:52:16:bf:cf:8c:32:b2:
        aa:36:82:e4:90:cf:d4:86:95:00:4c:6c:25:29:7f:cb:85:65:
        32:1e:e8:0a:27:85:4d:d8:ce:dd:de:f0:1d:a1:4c:a3:bb:9b:
        c8:f0:28:61:00:6d:b4:2c:2c:5e:bb:0f:ba:e0:4e:d8:e6:0d:
        fe:81:3c:be:33:09:e9:ba:1b:5c:66:ad:a4:76:d7:c0:95:b5:
        a8:ac:03:eb:14:4d:04:db:31:3d:ee:8c:90:18:90:cd:ab:e7:
        a5:d9:3c:40:dc:96:5b:44:b3:45:c0:53:ea:60:70:bb:4d:bc:
        64:66:47:50:a9:f6:51:01:0d:90:72:3f:a2:b3:5f:17:91:a6:
        41:be:c7:4b:f3:3a:5a:01:18:4d:1d:53:6f:89:d2:87:ee:ec:
        e2:81:05:00:83:e4:be:5b:30:58:6b:e8:47:38:0a:85:62:80:
        a3:47:dc:39

Vulnerabilities

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

5.75.148.136

Last Seen: 2025-04-16

Tags:

GeneralInformation

OpenPorts

22 / tcp

859140183 | 2025-04-16T02:43:46.753935

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-04-08T12:46:27.744257

Hashes

nginx1.18.0

443 / tcp

1950403721 | 2025-04-09T10:40:37.665100

Hashes

Jenkins2.492.1

Vulnerabilities

Products

Pricing

Contact Us

5.75.148.136

Last Seen: 2025-04-16

Tags:

GeneralInformation

OpenPorts

22 / tcp 859140183 | 2025-04-16T02:43:46.753935

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-04-08T12:46:27.744257

Hashes

nginx1.18.0

443 / tcp 1950403721 | 2025-04-09T10:40:37.665100

Hashes

Jenkins2.492.1

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

Products

Pricing

Contact Us

22 / tcp

859140183 | 2025-04-16T02:43:46.753935

80 / tcp

1651973090 | 2025-04-08T12:46:27.744257

443 / tcp

1950403721 | 2025-04-09T10:40:37.665100

Vulnerabilities