GeneralInformation

Hostnames	northerndistributors.centralus.cloudapp.azure.com
Domains	azure.com
Cloud Provider	Azure
Cloud Region	centralus
Cloud Service	AzureCloud
Country	United States
City	Des Moines
Organization	Microsoft Corporation
ISP	Microsoft Corporation
ASN	AS8075
Operating System	Windows

WebTechnologies

CDN

Editors

Font scripts

JavaScript libraries

Miscellaneous

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 3389

-1587241416 | 2024-10-03T13:17:15.434740

80 / tcp

Document

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=abudlul5sr4ghjwwcvppkn1u; path=/; HttpOnly; SameSite=Lax
Set-Cookie: 9nmasdu7632kfgy7=AdvancedWebPage.aspx; path=/
Set-Cookie: 9ndf834hl9fasd3d=AdvancedWebPage.aspx; path=/
Set-Cookie: ClientGroup=0; path=/
X-Frame-Options: SAMEORIGIN
p3p: CP="Potato"
Date: Thu, 03 Oct 2024 13:17:15 GMT
Content-Length: 38417

CVE-2020-11023 CVE-2020-11022 CVE-2019-11358

318451961 | 2024-09-26T09:38:55.634312

443 / tcp

Document

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=xuxmfl0vy2j2jfvu35w1ise2; path=/; HttpOnly; SameSite=Lax
Set-Cookie: 9nmasdu7632kfgy7=AdvancedWebPage.aspx; path=/
Set-Cookie: 9ndf834hl9fasd3d=AdvancedWebPage.aspx; path=/
Set-Cookie: ClientGroup=0; path=/
X-Frame-Options: SAMEORIGIN
p3p: CP="Potato"
Date: Thu, 26 Sep 2024 09:38:55 GMT
Content-Length: 38327

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:c4:88:1d:53:08:5a:db:55:85:ec:20:35:63:fa:a2:f1:2a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Sep 24 09:16:24 2024 GMT
            Not After : Dec 23 09:16:23 2024 GMT
        Subject: CN=northerndistributors.centralus.cloudapp.azure.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:90:08:bb:ab:09:f0:75:24:48:98:42:c1:96:6b:
                    8b:df:f0:c0:1b:db:c7:56:f7:ba:30:23:b5:07:46:
                    fe:24:3e:1b:9d:8b:92:c6:88:5e:fb:73:7e:1e:46:
                    a8:bc:65:76:76:b1:c0:58:36:ab:d4:67:ea:94:b2:
                    15:b5:ae:f1:a8:c0:57:f6:3d:b4:55:1d:23:03:76:
                    e5:83:98:b4:69:1d:ff:01:d5:16:da:a1:92:e4:a1:
                    80:1f:1f:f2:1e:36:12:68:84:d6:c3:55:16:c6:3f:
                    49:6a:f7:cb:b3:ca:68:2a:4e:6b:d2:28:43:37:23:
                    26:5a:39:ff:b4:a2:3a:3d:eb:3f:13:12:3a:5f:53:
                    42:8c:1c:a8:42:e5:65:69:b4:f6:6f:98:1f:a9:39:
                    d1:7c:65:d0:ab:0c:24:a5:d1:2a:52:e6:9f:12:ed:
                    a3:ad:82:23:37:15:60:2e:33:fd:ac:e6:21:52:9c:
                    f1:b9:97:ff:b1:ee:44:d6:98:89:95:e7:a1:c3:f9:
                    9b:f6:ae:f2:2f:cc:08:6e:db:6f:49:57:09:a1:ce:
                    a8:1e:03:26:c6:f4:dc:0c:81:cf:39:b5:09:82:94:
                    55:5d:09:21:f8:2e:ea:99:2c:d8:a2:be:08:f4:46:
                    ae:65:2d:ad:88:b3:b4:f0:a9:bb:23:e3:85:d2:e6:
                    a3:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AF:5D:97:B3:22:A9:84:B0:0E:6A:76:45:BB:6F:D4:77:31:D2:32:95
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:northerndistributors.centralus.cloudapp.azure.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Sep 24 10:14:54.760 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:73:93:C2:22:4B:68:B6:E1:BD:D2:AA:E7:
                                70:D2:62:2C:4B:EA:37:FB:06:AB:18:07:20:D9:07:62:
                                76:72:32:25:02:20:52:B9:81:8B:52:9D:12:86:38:3C:
                                BF:8A:86:FC:EC:27:1B:94:14:F1:B0:14:76:14:85:8E:
                                B0:52:DD:21:EE:36
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 24 10:14:54.871 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A6:EA:62:3F:4B:5C:94:CF:4E:BB:AD:
                                19:1C:E5:BF:9B:5A:0D:48:64:8A:B5:EC:14:23:33:10:
                                55:CA:B8:10:18:02:20:47:A1:EC:82:2D:34:50:AF:E6:
                                30:70:D5:88:94:8A:F5:A1:6A:3B:24:E7:4F:54:41:71:
                                C6:B6:B2:D6:58:C1:0C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:09:17:b9:a7:79:1a:b9:64:ec:1b:1b:dd:77:b7:e4:47:72:
        17:e0:4c:24:6f:34:e9:8f:6c:f8:e0:e0:be:bd:ed:77:c0:7c:
        fd:74:3c:36:3c:51:e8:a7:0e:f0:bb:b1:fb:80:ae:b6:eb:05:
        19:86:55:25:79:cf:8a:7a:26:04:bd:64:0d:89:3f:d0:99:9b:
        94:7c:db:85:ad:1e:c9:94:e7:12:de:3a:d2:96:06:ca:a5:54:
        c2:6b:99:ea:03:2c:59:5f:46:71:a9:f2:26:c3:8e:19:28:0f:
        d2:8c:65:82:13:63:42:7a:d0:32:a5:7f:67:f7:22:18:6a:2c:
        f4:8e:7e:dd:1c:c7:a4:86:78:3b:99:de:7e:f6:5b:0f:22:55:
        84:9e:6e:29:e2:2c:18:31:94:fe:35:78:6b:2b:cf:52:87:e5:
        07:c4:bb:f7:3b:58:19:56:5a:69:25:23:e1:27:cf:19:d4:70:
        64:5a:6f:e0:07:d9:c6:1a:d0:a8:14:71:5e:cf:c7:44:24:6e:
        90:e3:52:bf:e7:20:e3:33:f2:2e:3f:f9:37:11:4a:10:b1:c7:
        38:70:8b:a3:df:90:30:e6:d5:bf:7f:e1:58:e4:f0:6f:1e:06:
        d7:77:1a:34:44:25:f1:1a:5d:94:45:38:db:26:5d:ad:08:db:
        58:63:a1:c5

CVE-2020-11023 CVE-2020-11022 CVE-2019-11358

1802476057 | 2024-09-24T18:36:02.593747

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
  OS Build: 10.0.14393
  Target Name: Demo
  NetBIOS Domain Name: Demo
  NetBIOS Computer Name: Demo
  DNS Domain Name: Demo
  FQDN: Demo

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1d:b6:d2:99:e0:9b:7c:a5:44:88:2d:a8:0d:7a:a6:b0
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=Demo
        Validity
            Not Before: Jun  2 14:59:47 2024 GMT
            Not After : Dec  2 14:59:47 2024 GMT
        Subject: CN=Demo
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:ec:84:29:10:d3:2c:1e:61:24:57:e0:70:57:
                    df:73:9e:38:e5:1b:c2:67:d4:d3:96:58:e3:c4:4f:
                    10:3a:9c:fb:cd:8c:e2:ad:01:9e:88:d0:01:d4:8e:
                    4c:ad:28:ec:36:45:3e:28:64:45:98:bc:76:bf:91:
                    35:0c:4d:ee:c5:81:b9:7a:15:ce:70:d2:c8:ab:82:
                    27:c4:83:c7:be:45:3e:96:3c:8a:1b:86:6b:7f:ea:
                    c4:39:34:c9:77:10:b5:31:e2:07:e5:c6:9b:5b:ba:
                    ef:65:fa:fd:96:27:7b:89:ec:21:9d:12:48:7c:73:
                    e4:dd:55:0e:67:0e:70:dc:a3:16:37:83:f7:1e:b8:
                    31:8f:94:91:cd:1f:96:2b:c4:86:c6:80:fb:53:84:
                    c9:50:cc:df:d0:43:4c:ec:be:e7:80:a1:5d:55:f4:
                    79:b7:da:a2:bc:de:fe:71:79:58:33:39:ff:00:57:
                    f9:86:28:f2:d5:7f:9f:b9:76:61:98:8f:5a:e2:fa:
                    d4:7b:78:6b:bf:3e:f8:31:e0:01:5d:45:5e:dd:59:
                    29:5a:99:c9:3e:75:52:3b:4a:24:4b:3e:c1:c9:3d:
                    f2:e7:b0:a8:d0:b9:1e:90:14:6f:a3:55:c8:8a:00:
                    79:3a:80:f8:6f:8f:bc:00:3f:a8:95:21:44:d0:1a:
                    68:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8d:56:bb:91:11:c2:2b:e2:6e:3c:ac:6f:5f:cd:64:08:54:f6:
        c1:14:8f:4f:62:98:16:d5:54:09:5a:db:97:fc:3a:48:28:66:
        c1:a3:98:2e:c3:78:ab:3a:6b:f6:a9:89:7c:34:d2:53:2e:a4:
        83:a9:17:da:a2:6b:b5:0a:e3:89:c3:05:01:11:ab:26:51:7c:
        c7:f3:83:57:1b:7e:e1:22:bc:89:4c:8a:3e:74:54:11:ba:55:
        5d:20:5c:d1:2e:8e:22:fd:e8:79:59:30:57:ed:8c:fb:4d:45:
        76:95:72:e7:f4:6b:1e:bc:d9:b4:76:c9:ab:f4:7d:e6:87:e7:
        b4:6d:89:fb:a4:18:31:a3:f9:5a:cb:fd:62:7c:8a:cf:8c:c8:
        d0:c7:f1:fb:ba:d8:a5:5a:90:36:26:c9:a9:80:9c:15:a4:a0:
        c0:de:86:e6:d7:ea:0b:ff:9c:81:ce:5d:80:eb:93:09:a6:d5:
        8e:d1:73:04:58:41:1b:38:4a:fd:78:db:a5:1c:bb:40:34:d2:
        2f:fa:02:94:04:df:6a:31:b3:b0:22:68:b1:a8:46:12:47:b9:
        cb:fe:15:b5:73:b8:50:69:08:1c:fe:fa:e7:40:69:df:b8:20:
        0c:d7:aa:a0:2d:29:07:94:ba:f2:16:bc:7a:23:d9:05:ba:a4:
        bb:c4:5b:85

52.165.231.127

Last Seen: 2024-10-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1587241416 | 2024-10-03T13:17:15.434740
80 / tcp

Microsoft IIS httpd10.0

318451961 | 2024-09-26T09:38:55.634312
443 / tcp

Microsoft IIS httpd10.0

1802476057 | 2024-09-24T18:36:02.593747
3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

52.165.231.127

Last Seen: 2024-10-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

-1587241416 | 2024-10-03T13:17:15.434740 80 / tcp

Microsoft IIS httpd10.0

318451961 | 2024-09-26T09:38:55.634312 443 / tcp

Microsoft IIS httpd10.0

1802476057 | 2024-09-24T18:36:02.593747 3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

Vulnerabilities

-1587241416 | 2024-10-03T13:17:15.434740
80 / tcp

318451961 | 2024-09-26T09:38:55.634312
443 / tcp

1802476057 | 2024-09-24T18:36:02.593747
3389 / tcp