GeneralInformation

Hostnames	nm-ca.nestegg.net
Domains	nestegg.net
Cloud Provider	Linode
Cloud Region	us-ca
Country	United States
City	Fremont
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

WebTechnologies

Programming languages

Java

UI frameworks

Bootstrap

Web frameworks

Google Web Toolkit

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

772258679 | 2024-05-08T12:00:44.270972

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 08 May 2024 12:00:43 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://nm-ca.nestegg.net/

-312757514 | 2024-05-27T14:50:59.073651

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 27 May 2024 14:50:58 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 6287
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Cache-Control: no-store
Pragma: no-cache
Content-Security-Policy: default-src 'none' ; frame-src 'self' ; manifest-src 'self' ; media-src 'self' ; script-src 'self' 'unsafe-inline' 'unsafe-eval'; font-src 'self' https://fonts.googleapis.com  https://fonts.gstatic.com; connect-src 'self' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; base-uri 'self' ; form-action 'self' ; img-src 'self' https://tiles.opennms.org https://*.tile.openstreetmap.org https://*.tile.opentopomap.org data:
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
Permissions-Policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()
Set-Cookie: JSESSIONID=node01oyxuztjej32n1wp9sfz932nzp9750.node0; Path=/opennms; HttpOnly; SameSite=Strict
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Front-End-Https: on

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:67:08:6f:dc:cf:bf:4e:fe:15:b7:c3:2d:84:28:49:c7:c2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  6 13:59:13 2024 GMT
            Not After : Jul  5 13:59:12 2024 GMT
        Subject: CN=nm-ca.nestegg.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:69:6e:e8:f7:f3:42:a7:bd:0d:f1:32:02:37:
                    ee:bc:c1:08:1c:d7:e9:f4:bf:d2:49:91:8f:97:50:
                    d3:d6:b6:2c:0d:70:4c:5f:4f:51:e1:27:77:19:5e:
                    95:86:81:64:70:56:0f:66:41:03:eb:30:ee:c6:0a:
                    08:df:75:f2:11:35:bd:fe:fa:f4:75:da:23:11:2c:
                    1c:aa:21:9d:08:30:2c:11:f9:dc:20:95:8b:8e:b6:
                    01:88:08:e8:da:02:a8:b0:29:87:54:c3:a3:53:e0:
                    7a:f7:08:2a:2d:5c:9b:bf:7a:29:b2:f9:3a:b3:3f:
                    21:0c:7d:09:64:76:5c:4e:0e:02:1e:a6:78:d7:5f:
                    98:70:94:54:c7:09:bc:5e:0d:d7:e0:d7:fc:fb:7f:
                    fa:b0:a5:0e:be:a5:f2:18:3d:3b:3e:12:34:c4:19:
                    ea:37:7a:bf:e8:a2:df:0e:44:93:d0:c9:cd:27:06:
                    21:07:a8:07:84:a9:f2:72:73:72:98:42:1f:0d:99:
                    f2:c9:41:21:4e:12:c3:92:52:39:20:da:b3:1f:dd:
                    ef:52:ed:db:0a:9a:7a:b8:85:76:a6:ee:95:5f:ff:
                    af:15:e7:52:ea:23:4c:c3:85:b3:d9:4d:28:75:90:
                    7e:25:f6:9d:22:2a:42:cc:fe:5f:79:81:7b:f2:20:
                    43:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E1:C8:B7:33:3E:4A:75:84:6F:61:B5:64:FC:69:B1:08:B7:1F:67:51
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:nm-ca.nestegg.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  6 14:59:13.523 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:41:DD:E6:7D:7B:C4:CB:BC:C2:52:EC:85:
                                EA:EF:EA:78:E7:A8:55:A7:D1:C8:FC:BC:F6:76:DA:8A:
                                94:63:8A:CD:02:21:00:FD:CB:1E:A2:F3:4C:BC:FD:DD:
                                FE:BB:BD:82:FD:A3:84:EB:05:33:34:C8:58:4D:92:83:
                                A3:DF:70:D7:A7:D6:12
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr  6 14:59:13.530 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FA:CB:C8:44:0D:7B:C4:8A:EB:A4:47:
                                F6:83:D3:7F:DA:A5:F1:66:E2:A2:F5:60:3B:F6:CA:DB:
                                67:08:B1:2C:1E:02:20:2D:4B:C9:BA:37:C7:CA:24:00:
                                AE:49:F8:DD:5C:93:99:51:6D:D5:9A:30:57:45:03:AE:
                                11:F1:FB:3A:06:FF:58
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4e:b1:a6:4c:3e:80:50:1a:f9:7d:26:f2:72:12:15:70:21:98:
        ef:6e:65:ea:13:5f:9f:b9:6e:40:dd:e3:09:eb:58:ec:62:3e:
        c0:39:5c:d7:72:a6:a2:17:f1:ef:e2:d3:09:f6:4f:f9:be:3d:
        72:a6:3f:5a:ed:66:c4:82:51:a9:6a:d6:03:49:ef:2d:9d:0d:
        3d:35:1d:59:9f:2f:90:68:5d:53:51:0d:2a:1e:fd:52:d5:e1:
        47:6f:10:6d:f9:4e:95:25:eb:b9:98:96:c6:f7:04:2d:42:de:
        05:df:39:dc:e4:ac:1b:19:3a:2a:fa:3f:06:c0:bd:b5:38:d6:
        a7:c9:44:d3:5c:46:d9:96:bc:c0:03:25:bd:d7:20:94:a1:67:
        f0:54:46:78:1d:74:83:63:e8:00:23:9b:2d:30:cb:4d:26:9e:
        fb:6a:78:61:ad:de:5b:33:ef:ab:ef:a1:cc:ec:1b:f6:bd:9c:
        c7:1c:e5:56:5d:46:89:bc:55:27:2b:60:03:c6:ce:40:91:2e:
        f9:b9:d2:42:2e:2a:c3:f7:bb:57:b4:89:65:65:90:a9:10:51:
        80:28:07:5b:b5:a7:65:36:e9:f2:77:da:2f:e5:3f:1b:42:0b:
        93:68:e5:62:45:70:9c:21:6f:8a:bf:89:f3:0f:35:30:6a:44:
        ec:1f:ed:ff

50.116.2.222

Last Seen: 2024-05-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

772258679 | 2024-05-08T12:00:44.270972
80 / tcp

nginx1.20.1

-312757514 | 2024-05-27T14:50:59.073651
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

50.116.2.222

Last Seen: 2024-05-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

772258679 | 2024-05-08T12:00:44.270972 80 / tcp

nginx1.20.1

-312757514 | 2024-05-27T14:50:59.073651 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

772258679 | 2024-05-08T12:00:44.270972
80 / tcp

-312757514 | 2024-05-27T14:50:59.073651
443 / tcp