GeneralInformation

Hostnames	ec2-65-0-5-98.ap-south-1.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	ap-south-1
Cloud Service	EC2
Country	India
City	Mumbai
Organization	Amazon Data Services India
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

JavaScript frameworks

JavaScript libraries

Programming languages

Java

UI frameworks

Bootstrap

Wikis

Atlassian Confluence

SecurityContact

Contact

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-4027	6.5Affected versions of Atlassian Confluence Server and Data Center allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros. The affected versions are before version 7.4.5, and from version 7.5.0 before 7.5.1.
CVE-2019-3398	9.0Confluence Server and Data Center had a path traversal vulnerability in the downloadallattachments resource. A remote attacker who has permission to add attachments to pages and / or blogs or to create a new space or a personal space or who has 'Admin' permissions for a space can exploit this path traversal vulnerability to write files to arbitrary locations which can lead to remote code execution on systems that run a vulnerable version of Confluence Server or Data Center. All versions of Confluence Server from 2.0.0 before 6.6.13 (the fixed version for 6.6.x), from 6.7.0 before 6.12.4 (the fixed version for 6.12.x), from 6.13.0 before 6.13.4 (the fixed version for 6.13.x), from 6.14.0 before 6.14.3 (the fixed version for 6.14.x), and from 6.15.0 before 6.15.2 are affected by this vulnerability.
CVE-2019-3396	10.0The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 before 6.13.3 (the fixed version for 6.13.x), and from version 6.14.0 before 6.14.2 (the fixed version for 6.14.x), allows remote attackers to achieve path traversal and remote code execution on a Confluence Server or Data Center instance via server-side template injection.
CVE-2019-3395	7.5The WebDAV endpoint in Atlassian Confluence Server and Data Center before version 6.6.7 (the fixed version for 6.6.x), from version 6.7.0 before 6.8.5 (the fixed version for 6.8.x), and from version 6.9.0 before 6.9.3 (the fixed version for 6.9.x) allows remote attackers to send arbitrary HTTP and WebDAV requests from a Confluence Server or Data Center instance via Server-Side Request Forgery.
CVE-2019-3394	4.0There was a local file disclosure vulnerability in Confluence Server and Confluence Data Center via page exporting. An attacker with permission to editing a page is able to exploit this issue to read arbitrary file on the server under <install-directory>/confluence/WEB-INF directory, which may contain configuration files used for integrating with other services, which could potentially leak credentials or other sensitive information such as LDAP credentials. The LDAP credential will be potentially leaked only if the Confluence server is configured to use LDAP as user repository. All versions of Confluence Server from 6.1.0 before 6.6.16 (the fixed version for 6.6.x), from 6.7.0 before 6.13.7 (the fixed version for 6.13.x), and from 6.14.0 before 6.15.8 (the fixed version for 6.15.x) are affected by this vulnerability.
CVE-2019-20406	4.4The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, and from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to write a DLL file in a directory in the global path environmental variable variable to inject code & escalate their privileges via a DLL hijacking vulnerability.
CVE-2019-15005	4.0The Atlassian Troubleshooting and Support Tools plugin prior to version 1.17.2 allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to a missing authorization check. The email message may contain configuration information about the application that the plugin is installed into. A vulnerable version of the plugin is included with Bitbucket Server / Data Center before 6.6.0, Confluence Server / Data Center before 7.0.1, Jira Server / Data Center before 8.3.2, Crowd / Crowd Data Center before 3.6.0, Fisheye before 4.7.2, Crucible before 4.7.2, and Bamboo before 6.10.2.
CVE-2018-13389	4.3The attachment resource in Atlassian Confluence before version 6.6.1 allows remote attackers to spoof web content in the Mozilla Firefox Browser through attachments that have a content-type of application/rdf+xml.
CVE-2017-18086	4.3Various resources in Atlassian Confluence Server before version 6.4.2 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the issuesURL parameter.
CVE-2017-18085	4.3The viewdefaultdecorator resource in Atlassian Confluence Server before version 6.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the key parameter.
CVE-2017-18084	3.5The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the description of a macro.
CVE-2017-18083	3.5The editinword resource in Atlassian Confluence Server before version 6.4.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the contents of an uploaded file.
CVE-2017-16856	4.3The RSS Feed macro in Atlassian Confluence before version 6.5.2 allows remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) vulnerabilities in various rss properties which were used as links without restriction on their scheme.
CVE-2016-6283	4.3Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.10.6 allows remote attackers to inject arbitrary web script or HTML via the newFileName parameter to pages/doeditattachment.action.
CVE-2016-4317	3.5Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page.
CVE-2015-8399	4.0Atlassian Confluence before 5.8.17 allows remote authenticated users to read configuration files via the decoratorName parameter to (1) spaces/viewdefaultdecorator.action or (2) admin/viewdefaultdecorator.action.
CVE-2015-8398	4.3Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.8.17 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to rest/prototype/1/session/check.

OpenPorts

15 53 129 195 264 443 520 548 587 666 995 1080 1099 1200 1434 2081 2222 2455 3001 3051 3054 3129 3283 4282 4321 4506 4523 5432 5435 6000 6002 6443 7776 8021 8023 8080 8081 8087 8099 8123 8333 8419 8421 8500 8787 9002 9042 9090 9682 9869 9876 10134 10554 11112 51106

-2027312840 | 2024-04-20T16:39:30.669758

15 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 16:39:30 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 16:39:30 GMT
Last-Modified: Sat, 20 Apr 2024 16:39:30 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

139855509 | 2024-04-20T05:05:47.605315

129 / udp

Access Forbidden

-1644726382 | 2024-04-21T02:35:54.949538

195 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:35:54 GMT
Server: Apache/1.1.3
X-Powered-By: Servlet/2.4
Content-Length: 437
Content-Type: text/html

-2027312840 | 2024-04-20T15:16:28.063827

264 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 15:16:27 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 15:16:27 GMT
Last-Modified: Sat, 20 Apr 2024 15:16:27 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

-1515649480 | 2024-04-20T06:42:06.506537

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 06:42:06 GMT
Server: ipos/7.0 UPnP/1.0 TL-WR740N/1.0
X-Powered-By: PHP/5.3.6-13ubuntu3.6
Content-Length: 387
Content-Type: text/html

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=devo.oilnorth.com
        Validity
            Not Before: Apr 20 06:26:15 2024 GMT
            Not After : Apr 20 06:26:15 2026 GMT
        Subject: CN=devo.oilnorth.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b5:9d:3a:5e:bd:dc:b4:2b:db:2a:78:27:56:6a:
                    a2:1e:6e:71:50:f2:73:64:c3:a3:2e:1f:10:fa:00:
                    ae:e5:08:91:82:32:c0:f9:d7:b6:ca:53:e0:d7:45:
                    98:88:c7:fe:4a:7c:85:b6:d8:dc:21:99:7e:cb:df:
                    87:52:2a:46:67:15:8f:de:39:17:01:1d:2f:53:90:
                    d3:64:0a:f3:74:93:29:d4:5d:a5:1b:49:8b:1b:97:
                    c2:9e:a6:e8:61:8c:62:ae:98:66:01:83:c4:aa:46:
                    b5:12:ec:22:26:b5:5f:8b:ca:36:28:a6:9e:3f:a0:
                    44:55:e7:ff:ac:2b:eb:24:ed:11:17:cf:c2:57:23:
                    6b:60:46:6c:46:69:96:e2:65:59:af:bb:28:ac:3a:
                    a1:40:97:5d:13:c1:02:86:08:59:dc:54:e9:5d:80:
                    68:55:8e:fd:ce:91:dd:2c:7f:f4:ae:94:38:ac:92:
                    72:93:b1:02:2e:9f:24:3b:d4:f8:53:74:40:38:fe:
                    62:8f:da:84:3f:30:f4:0a:b0:ec:b2:3c:b5:00:c9:
                    e4:1c:bc:ea:5a:ae:36:97:c3:5d:3b:3c:0b:98:a5:
                    e2:b6:9f:f7:e5:ef:f6:2e:d6:cc:e9:67:93:19:f7:
                    c4:2e:7e:41:92:2d:ef:ff:c7:1c:19:90:82:4f:30:
                    e3:65
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        80:dd:d8:83:52:10:52:92:62:5e:c2:3d:6e:65:c8:0c:15:79:
        5f:74:ce:11:34:95:04:6a:53:99:03:be:2c:52:9d:d0:87:c3:
        22:6d:4d:18:1d:fa:01:3c:26:38:c8:9f:70:df:0c:88:c9:20:
        2f:15:81:ad:8c:b6:ab:76:1a:41:1d:d1:11:30:e0:29:65:17:
        69:c6:dc:13:fa:c3:d2:b3:12:10:c4:38:73:fb:67:eb:36:7f:
        b5:c6:f3:e1:3a:11:c6:ea:6d:7f:5d:c6:40:32:54:39:dc:93:
        24:06:89:32:8e:14:1a:9b:b7:34:20:ca:1f:fa:f5:94:cb:dc:
        ac:c8:b2:a9:57:66:d1:1b:2b:67:65:7d:6a:fc:97:cf:86:6e:
        33:1b:2c:ef:f4:58:ac:be:b5:76:b8:ba:7a:09:98:73:10:cf:
        79:95:82:ad:26:ec:4d:88:14:52:2a:10:ea:2d:4d:6d:39:4a:
        df:6e:e9:3c:a6:31:7f:d5:c4:b4:7d:10:4f:5f:73:34:33:65:
        c8:84:c3:bc:2b:86:c0:d8:7d:d5:8b:96:d9:5c:3d:9f:36:55:
        2d:a0:79:18:df:53:88:87:02:f0:c7:4d:ea:84:36:78:53:bc:
        b9:27:f0:62:c0:7d:01:7f:43:87:64:9f:2a:56:7a:04:9c:40:
        88:70:eb:f7

-1702755199 | 2024-04-20T21:12:04.081605

520 / udp

Access Forbidden\r\n

-856371065 | 2024-04-20T21:37:46.889221

548 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 21:37:46 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node0cht69j61uslnd9n3czbjh9mzarhkpcj0s95z8bvw.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

982434853 | 2024-04-20T14:40:23.136945

587 / tcp

220 ip-172-16-2-70.ap-south-1.compute.internal NO UCE NO UBE NO RELAY PROBES ESMTP
250-ip-172-16-2-70.ap-south-1.compute.internal Hello 224.108.127.28, nice to meet you
250 AUTH LOGIN PLAIN

-369160404 | 2024-04-20T08:59:54.061828

666 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 20 Apr 2024 08:59:53 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Connection: close
Content-Length: 1766

-2027312840 | 2024-04-21T02:15:02.438858

995 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:15:02 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sun, 21 Apr 2024 02:15:02 GMT
Last-Modified: Sun, 21 Apr 2024 02:15:02 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

-766336104 | 2024-04-20T15:24:15.729860

1080 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 15:24:15 GMT
Content-Length: 4680
Content-Type: text/html

-1251729390 | 2024-04-20T19:02:32.797235

1099 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 19:02:32 GMT
Server: Apache
Connection: close
Content-Length: 0

-1743381957 | 2024-04-20T20:49:52.246431

1200 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 20:49:51 GMT
Server: nginx
X-Confluence-Request-Time: 1713646191
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=nm9gvs2uipt9mgj8geoduk46pf6qi3us; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Content-Length: 31645

139855509 | 2024-04-21T02:48:55.269444

1434 / udp

Access Forbidden

275691009 | 2024-04-20T09:34:11.937901

2081 / tcp

HTTP/1.1 302 Found
Date: Sat, 20 Apr 2024 09:34:11 GMT
Server: Jetty/4.2.x (VxWorks/WIND version 2.9 ppc java/1.1-rr-std-b12)
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Location: http://224.18.146.63:2081/
Content-Length: 0

-1475725920 | 2024-04-20T15:24:50.946946

2222 / tcp

SSH-2.0-NetScreen
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAAAgQCqfQg/dnOm3llszbv18aZkadXanpt4J/dJADAOkJNxtUcN
2PbYBOKPq3ooTM9Y9RMR7Ws3waldmDqUnvTFrxg+BsDrDPMIfURjkjJfbykSIdlu8kgit5rV6HTg
YO9JikripQ67P2tgiAJZz4t/21HvNB9pF6NI94Kaby4ya6A6+Q==
Fingerprint: ba:2c:d8:96:0f:01:2c:a7:c9:39:98:08:9e:33:a6:a1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes256-ctr
	aes256-cbc
	aes192-ctr
	aes192-cbc
	aes128-ctr
	aes128-cbc
	blowfish-cbc
	3des-cbc

MAC Algorithms:
	hmac-sha2-512
	hmac-sha2-384
	hmac-sha2-256
	hmac-sha1
	hmac-md5

Compression Algorithms:
	none
	zlib

2073015905 | 2024-04-20T17:45:01.389945

2455 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 17:45:01 GMT
Server: nginx
Content-Length: 583
Content-Type: text/html

956805313 | 2024-04-20T18:16:18.661231

3001 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 18:16:18 GMT
Content-Type: text/html
Connection: keep-alive
Pragma: private
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000;
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline';
Content-Length: 188

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=hydro.steelbright.us
        Validity
            Not Before: Apr 20 17:59:37 2024 GMT
            Not After : Apr 20 17:59:37 2026 GMT
        Subject: CN=hydro.steelbright.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d9:a9:af:d8:e6:94:a1:8b:a7:a6:6b:f6:fb:72:
                    e4:89:59:31:24:ba:4b:e1:63:b6:fc:b3:7f:ef:2d:
                    b1:06:3a:90:cf:f9:12:bd:07:0b:51:91:1a:cf:d9:
                    8d:65:08:b5:06:d2:cb:08:f3:10:d1:df:ac:f1:cf:
                    43:f9:44:a8:50:fe:6e:a6:ce:71:d1:c0:39:a8:11:
                    d2:64:35:59:58:07:41:d2:81:e6:b9:74:5d:68:91:
                    d9:ba:9c:ba:9f:aa:1f:08:8e:0c:3b:18:fe:00:69:
                    b3:4d:34:66:42:73:7c:d8:28:d1:26:39:42:44:54:
                    37:6e:9c:8c:26:4b:42:bb:58:f2:45:6d:30:cc:b1:
                    69:9a:56:2b:8e:b3:d7:f8:49:73:b8:1a:6b:4d:6a:
                    14:bd:14:0c:63:cb:30:b0:fd:d2:3e:aa:2b:b7:84:
                    e3:f4:9d:b8:b2:e8:d7:54:bf:4d:8a:a1:d7:b5:d0:
                    8e:b7:93:01:84:bc:22:a3:1c:4e:db:ba:34:af:e7:
                    35:2f:6c:0a:56:1a:c9:6c:2a:79:9f:1b:d4:e2:25:
                    19:8c:e5:81:b7:8c:cd:ca:ed:e0:3a:3b:cf:55:c9:
                    c5:c6:2e:08:5b:c4:6a:14:ca:1f:2b:7f:84:2a:6e:
                    e8:af:69:76:8b:db:ae:a7:0c:d7:68:73:42:08:71:
                    fb:4d
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1f:5d:95:f8:a1:0d:e7:5c:57:de:9a:8f:60:05:bc:03:af:4f:
        e0:f9:e0:1c:12:2b:69:38:e6:33:fd:4e:1d:b7:b6:9e:c1:e4:
        9b:dd:50:9c:26:e6:68:90:6b:85:17:3e:1e:a0:b2:d1:1f:17:
        71:60:8d:73:fb:d6:c6:bb:e6:27:35:22:3c:78:78:6c:81:39:
        6c:94:71:07:c9:03:6c:52:62:d8:e1:0c:be:09:5f:33:82:38:
        e3:79:07:72:e9:d6:86:88:d9:14:28:e3:a7:6c:db:dd:03:49:
        e8:80:52:d2:c9:3b:cf:ad:18:e5:ce:b4:bf:45:f1:7e:50:78:
        46:d2:49:9c:bf:bf:b1:ee:2e:fb:9f:0e:4a:30:81:72:b3:cc:
        d4:25:f7:58:0a:64:e5:54:9c:b6:db:e3:c8:25:76:57:8e:52:
        4c:97:87:f9:e2:82:28:eb:e9:07:3b:81:cd:eb:56:c1:65:c8:
        f4:06:60:78:d8:4b:b5:4b:11:a5:1a:e2:66:a2:ca:81:dd:15:
        13:c3:f7:74:ee:b6:c9:45:fb:4a:ef:57:3c:55:56:0b:94:ba:
        ff:1a:40:2e:54:5b:c0:dd:f0:34:e1:c7:2f:90:6a:ea:aa:70:
        46:27:96:5d:a8:e5:be:c6:d0:39:60:40:ff:1b:5b:59:62:1e:
        dd:47:a9:5b

390792554 | 2024-04-20T13:50:41.816181

3051 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 13:50:41 GMT
Server: Apache
Expires: Sat, 20 Apr 2024 13:50:41 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=xjmfn1zb7t7tlks2d64cf0ygvtpuxypb; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

956805313 | 2024-04-21T01:13:06.530293

3054 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 01:13:06 GMT
Content-Type: text/html
Connection: keep-alive
Pragma: private
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000;
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline';
Content-Length: 188

-856371065 | 2024-04-21T02:47:17.250871

3129 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:47:17 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node0jpix1m34f05c0pwfu2inevot6klp4cn5exblws04.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

-1702755199 | 2024-04-20T10:38:28.002424

3283 / udp

Access Forbidden\r\n

-2098738609 | 2024-04-21T03:49:07.821959

4282 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 03:49:07 GMT
Server: Apache
Expires: Sun, 21 Apr 2024 03:49:07 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=omnmh62ui8dmgp18g49q0ygbcsuxx3l2; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

384821124 | 2024-04-21T02:07:31.652495

4321 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:07:31 GMT
Server: nginx
X-Confluence-Request-Time: 1713665251
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=xdhwuw8022u39pfm1whpakdxupodmoae; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Content-Length: 31642

1034188527 | 2024-04-20T17:49:35.270173

4506 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 17:49:35 GMT
Server: Savant/3.1
X-Powered-By: PHP/5.5.9-1ubuntu4.21
Content-Length: 512
Content-Type: text/html

-856371065 | 2024-04-20T10:07:18.694697

4523 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 10:07:18 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node0rngn86mses8maxi1wupcgr2h18h0qzlzdv3thbkt.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

-726790289 | 2024-04-20T23:11:45.849937

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

-2093536681 | 2024-04-20T19:59:48.233922

5435 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 19:59:48 GMT
Server: Tomcat Web Server/3.2.2 (JSP 1.1; Servlet 2.2; Java 1.4.2_13; Windows 2003 5.2 x86; java.vendor=Sun Microsystems Inc.)
X-Powered-By: PHP/5.3.6-13ubuntu3.6
Content-Length: 810
Content-Type: text/html

-1564954684 | 2024-04-20T16:49:35.094396

6000 / tcp

(none) login:

-2109705848 | 2024-04-20T22:27:39.368575

6002 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 22:27:39 GMT
Server: Apache/1.3.27
X-Powered-By: ASP.NET
Content-Length: 495
Content-Type: text/html

-2027312840 | 2024-04-20T18:52:55.951483

6443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 18:52:55 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 18:52:55 GMT
Last-Modified: Sat, 20 Apr 2024 18:52:55 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=research.gas-novel.gov
        Validity
            Not Before: Apr 20 18:25:13 2024 GMT
            Not After : Apr 20 18:25:13 2026 GMT
        Subject: CN=research.gas-novel.gov
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d6:c4:44:3c:b9:dc:e4:f8:02:da:79:36:6e:66:
                    2b:d3:73:c6:23:74:6d:0c:74:2e:f6:13:7f:ee:8d:
                    4a:6f:e5:ae:b2:62:74:75:1c:1d:bf:39:d5:55:f7:
                    89:20:41:45:7d:51:61:38:a5:b6:14:79:38:74:7d:
                    a2:c2:1a:0f:a8:51:2d:6e:72:c1:39:35:87:0a:bc:
                    31:0d:1c:ed:ac:38:6a:46:4e:11:90:ca:77:a1:5a:
                    1d:91:eb:76:33:fb:2b:99:d3:19:a1:11:3b:46:ed:
                    cf:89:8f:fe:ef:a8:23:71:1e:7c:be:53:fc:1d:7b:
                    d4:74:54:f8:56:d4:17:be:09:9c:e8:c1:a9:7e:b5:
                    25:67:f1:85:9c:82:7f:6b:e6:11:f2:9c:2b:bb:f9:
                    78:18:43:07:a4:f9:b5:b0:1c:18:da:44:7a:59:8b:
                    7d:7e:e8:32:97:ab:2e:02:6d:d4:f5:24:79:c5:aa:
                    b7:63:f9:a5:f7:58:21:3a:3d:e3:67:6f:fd:fa:7e:
                    02:cf:ad:b9:12:80:a2:f8:fe:82:d5:04:e9:c6:56:
                    4c:64:98:45:11:9e:f2:7a:97:43:52:bb:12:68:df:
                    60:04:94:61:93:1e:eb:12:27:38:65:e2:27:2c:d5:
                    ea:f6:9b:cb:a1:fd:a3:9c:0a:27:26:be:89:20:f6:
                    de:85
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        21:fb:ac:37:ea:b4:76:4a:e0:b2:a0:bd:f8:0e:a5:05:bd:64:
        36:10:da:87:8b:16:cd:0f:98:4d:ce:48:eb:78:5f:fb:d6:33:
        8b:d1:0f:63:a5:82:70:f4:f6:07:bc:67:3e:09:9a:70:81:c7:
        b6:51:04:64:81:89:9d:47:53:d8:0e:f0:36:a3:d2:7d:be:a3:
        11:73:e8:71:95:e0:3b:2e:e7:96:d9:43:de:83:78:be:a9:3a:
        02:bb:76:0b:7c:d7:21:b5:ac:62:7c:dd:f7:49:12:da:1f:7d:
        00:ac:0e:f9:c0:d7:74:20:7c:38:eb:0f:38:d8:b1:af:cc:69:
        64:1a:4c:c4:86:e7:c8:a1:1b:2c:d4:cd:f1:84:c8:3a:9c:77:
        f6:3b:69:f3:2c:fe:ba:89:8d:39:b5:99:97:50:0b:07:48:cd:
        87:c7:d0:d1:1e:fc:1e:2a:12:60:fd:20:6d:ac:36:4c:77:e2:
        94:67:e1:34:1e:2a:16:14:2d:d6:29:03:e3:c2:5b:80:00:de:
        8c:1f:f5:93:e7:5c:47:e8:42:a2:d9:7a:af:7b:4d:fc:a2:bb:
        44:c0:94:34:ac:8f:18:87:fe:44:dd:1d:e8:f7:f5:04:b9:fe:
        9d:e9:f1:4b:b9:0c:a6:3d:47:ff:81:0d:39:5c:4f:b4:16:7c:
        5e:c6:dc:a4

-766336104 | 2024-04-20T22:15:32.510163

7776 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 22:15:32 GMT
Content-Length: 4680
Content-Type: text/html

-766336104 | 2024-04-21T02:39:18.990104

8021 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:39:18 GMT
Content-Length: 4680
Content-Type: text/html

-2027312840 | 2024-04-20T20:20:16.111042

8023 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 20:20:16 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 20:20:16 GMT
Last-Modified: Sat, 20 Apr 2024 20:20:16 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

2073015905 | 2024-04-20T10:46:18.237218

8080 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 10:46:18 GMT
Server: nginx
Content-Length: 583
Content-Type: text/html

-369160404 | 2024-04-20T20:41:01.043534

8081 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 20 Apr 2024 20:41:00 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Connection: close
Content-Length: 1766

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=heating.internal-nextfinance.us
        Validity
            Not Before: Apr 20 20:33:07 2024 GMT
            Not After : Apr 20 20:33:07 2026 GMT
        Subject: CN=heating.internal-nextfinance.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a1:e4:61:7a:5f:be:d8:2b:c8:7e:e5:42:f3:fc:
                    02:00:cf:ca:75:a0:6c:28:e7:c0:84:58:72:96:71:
                    89:95:c9:dd:f9:86:da:a1:85:41:10:e7:28:4f:05:
                    b5:eb:55:41:71:a6:81:62:d0:6c:e7:60:c6:eb:65:
                    61:3f:df:b6:83:7f:3c:b2:80:3d:90:ae:59:f6:4b:
                    3b:c3:76:96:0f:19:0d:b6:70:4d:46:55:25:f1:e2:
                    c9:30:c2:d8:74:27:7b:ec:5b:0b:46:16:99:12:4e:
                    44:6e:6d:ae:18:64:df:c7:5d:b6:50:b9:5d:67:06:
                    50:4f:d9:6b:12:24:6e:43:22:f3:82:0a:43:cd:49:
                    3f:42:f3:5f:d6:51:44:53:d4:24:79:c5:0c:6d:67:
                    67:9a:e8:d3:c4:5a:df:17:40:85:0f:98:02:23:62:
                    f1:ea:ae:9e:9e:7b:2d:6f:02:c6:50:42:86:79:58:
                    d5:3e:e9:84:c9:7e:e9:3b:28:11:75:a8:12:03:84:
                    73:6c:99:bb:7f:7f:4b:dc:c6:da:a5:87:cf:a9:6c:
                    28:a2:4c:9d:8c:f6:e3:5b:21:31:30:77:06:f5:a2:
                    9f:0f:bd:65:03:fd:cb:9c:5f:6e:c5:40:96:52:7f:
                    fd:fd:e4:55:80:9f:6a:1d:9a:32:98:3b:52:a6:bd:
                    63:25
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        95:30:91:2f:a5:13:c2:95:3b:1b:b7:d6:7f:cf:2c:49:a2:9a:
        d7:8a:18:0f:d6:85:cd:c2:22:af:81:d0:fb:81:ae:5a:b2:5a:
        ea:a3:b1:e0:56:53:b8:de:f1:ac:1f:73:6e:fe:7f:4c:02:a1:
        45:31:bc:4f:dc:74:98:ad:6d:c8:f8:00:ac:75:1f:16:9e:1a:
        0a:1e:8b:53:33:3f:8d:f1:4f:ea:e4:77:a2:2f:3d:5f:19:84:
        70:a6:a5:e8:be:90:9c:dd:9a:fa:2f:dc:ed:7c:09:3b:df:18:
        72:c5:af:05:82:b2:31:39:36:f9:38:37:2a:d0:28:af:47:35:
        80:8f:ca:39:9e:0e:c5:b2:98:29:79:b4:03:5f:6d:9d:df:f0:
        64:7e:d9:9a:35:7f:77:7c:83:25:6d:f3:e8:8e:4b:51:f6:ff:
        fe:79:e4:b0:d0:7c:41:70:68:76:2f:5b:38:c6:97:5d:42:58:
        22:26:4e:74:aa:31:10:e0:11:7a:94:cc:ef:ce:21:1f:86:69:
        cb:56:27:d5:33:e1:42:88:92:73:36:d8:47:a3:c1:c6:af:a2:
        99:07:bd:1d:eb:79:c2:46:65:fd:63:5e:a0:91:15:4a:c2:e4:
        02:78:25:3f:f7:2d:9b:b1:c4:d1:f1:7d:47:72:9f:0a:3e:a9:
        e7:ac:6c:ed

-1989897184 | 2024-04-20T05:28:27.127167

8087 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:28:26 GMT
Server: nginx
X-Confluence-Request-Time: 1713590906
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=paw0zh47itcbnsjon09ci6ql1ctioq58; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Content-Length: 31642

-856371065 | 2024-04-20T11:33:34.290211

8099 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 11:33:34 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node09s3doqcysf60nfcmsar6nlpkqn3bsb1r3nznticl.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

-2027312840 | 2024-04-20T11:44:00.727746

8123 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 11:44:00 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 11:44:00 GMT
Last-Modified: Sat, 20 Apr 2024 11:44:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

384821124 | 2024-04-20T17:02:35.766550

8333 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 17:02:35 GMT
Server: nginx
X-Confluence-Request-Time: 1713632555
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=piiv7zkse13z423rt13qy5c3m2hudezr; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Content-Length: 31642

-369160404 | 2024-04-21T01:16:23.679541

8419 / tcp

HTTP/1.1 404 Not Found
Date: Sun, 21 Apr 2024 01:16:23 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Connection: close
Content-Length: 1766

-766336104 | 2024-04-20T14:28:03.790861

8421 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 14:28:03 GMT
Content-Length: 4680
Content-Type: text/html

1986097200 | 2024-04-21T02:52:40.687224

8500 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 02:52:40 GMT
Server: Apache
Expires: Sun, 21 Apr 2024 02:52:40 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=omnmh62ui8dmgp18g49q0ygbcsuxx3l2; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

<!DOCTYPE html>
<html data-template="welcome" data-page-type="welcome" data-area="user" lang="en" ><head>
        <script id="fr-fek">try{(function (k){localStorage.FEK=k;t=document.getElementById('fr-fek');t.parentNode.removeChild(t);})('mIBEVFBOHC1d2UNYVM==')}catch(e){}</script>
        <meta http-equiv="X-UA-Compatible" content="IE=9; IE=EDGE" /><meta http-equiv="content-type" content="text/html; charset=utf-8" /><meta name="robots" content="noindex"><title>KACE Systems Management Appliance Service Center</title><link rel="shortcut icon" href="/favicon.ico"><link type="text/css" rel="stylesheet" href="/common/css/minified/vendor/select2.css?build=10.1.99" /><link type="text/css" rel="stylesheet" media="print" href="/common/css/minified/print.css?build=10.1.99" /><link type="text/css" rel="stylesheet" href="/common/css/minified/vendor/froala_style.css?build=10.1.99" /><!--[if lte IE 9]><link rel="stylesheet" type="text/css" href="/common/css/minified/kace-theme-ie.css?build=10.1.99" /><![endif]--><link type="text/css" rel="stylesheet" href="/common/css/minified/kace-theme-light.css?build=10.1.99" /><!--[if IE]><script type="text/javascript" src="/common/js/minified/vendor/html5.js?build=10.1.99"></script><![endif]--><script type="text/javascript" src="/common/js/minified/kpolyfills.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/jquery.fixes.js?build=10.1.99"></script><script type="text/javascript">jQuery.noConflict();</script><script type="text/javascript" src="/common/js/minified/vendor/jquery.cookie.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery-ui.custom.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.json.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/bootstrap.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/select2.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.form.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/jquery.wheelmouse.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/bootbox.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/vendor/google.html-sanitizer.js?build=10.1.99"></script><script type="text/javascript" src="/common/js/lang.php?locale=en&build=10.1.99"></script><script type="text/javascript" src="/common/js/scw.php?locale=en&build=10.1.99"></script><script type="text/javascript" src="/common/js/minified/functions.js?build=10.1.99"></script></head><body id="welcome" ><div class="k-main k-main-collapsed">
<div class="k-page-message-box-container" style="visibility:collapse; display:none;">

    
        <div class="k-page-message-box k-error" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-warning" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-success" style="display:none;" >
                </div>
    
    
        <div class="k-page-message-box k-info" style="display:none;" >
                </div>
    </div>
        <form id="LoginForm" name="LoginForm" method="post" action="/userui/check_login.php" target="_self">
        <input type="hidden" name="CSRF_TOKEN" value="2s6kpn8k3qvf1mjcr2xylii5fliwanwstutu2m4tdjxh3tgs5wi7q8jqh24z3fyumknd8mknknpefb7eu3l2conaepiudkg8lkmmt3vjj7w8wnr2x1qpb4xiux3aqkhc" />
        <img class="k-logo k-user-logo" id="welcomeLogo" alt="K1000 Logo" src="/packages/partnerlogos/userportal_logo" data-interface="user" />
        <h1>Welcome and Login...</h1>
        <div class="wysiwyg fr-view"><p>Welcome to the User Console. The &quot;Downloads&quot; tab contains software available for you to download and install. You can search on software by title, vendor, or label. Please only download and install software that you require.</p><p><br></p><p>You must login in to the User Console to browse software. Please enter your organization&#39;s common user name and password below to login.&nbsp;</p></div>
                <div class="button_login">
            <div class="k-login">
                <d

-1989897184 | 2024-04-20T05:42:09.945001

8787 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:42:09 GMT
Server: nginx
X-Confluence-Request-Time: 1713591729
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=paw0zh47itcbnsjon09ci6ql1ctioq58; Path=/; Secure; HttpOnly
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Strict-Transport-Security: max-age=63072000
Content-Length: 31642

-856371065 | 2024-04-21T03:39:54.148103

9002 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 03:39:54 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node0jpix1m34f05c0pwfu2inevot6klp4cn5exblws04.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bigip.mainsteel.ca
        Validity
            Not Before: Apr 21 03:39:53 2024 GMT
            Not After : Apr 21 03:39:53 2026 GMT
        Subject: CN=bigip.mainsteel.ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d0:dc:16:29:01:79:20:39:9d:42:56:69:08:60:
                    a8:44:f3:c8:21:8c:ad:ca:bf:ec:5b:c8:4e:2c:ce:
                    c5:c9:00:b2:58:ac:cd:9e:19:cc:05:b7:54:51:86:
                    4e:56:dc:cd:60:45:da:26:05:1e:16:4d:52:fe:e2:
                    85:53:d1:14:8e:d0:6e:d4:4b:e9:01:a3:9c:e1:e8:
                    e8:fb:22:45:f9:33:8a:2f:ce:d5:ec:9a:59:73:6a:
                    78:89:9e:ca:59:6e:c9:4e:09:5f:18:32:87:75:a0:
                    d3:96:17:d9:99:47:24:24:3c:d6:1a:18:6d:6b:77:
                    93:06:19:13:9d:78:b7:7d:88:70:b8:77:2e:0f:c6:
                    ba:e7:82:28:16:be:23:45:17:f0:ad:27:d2:5a:da:
                    0e:f0:82:c9:f5:08:5c:78:af:f6:ae:65:b4:95:40:
                    12:72:1b:ae:5e:08:29:5a:5e:af:f7:57:45:e6:27:
                    92:8a:b5:84:0c:33:28:53:f4:3d:27:cb:7a:51:d4:
                    1f:38:9e:2f:3f:56:59:a9:8e:e8:e3:e1:42:59:d1:
                    7d:12:6d:ad:08:90:5c:21:3c:52:4a:4d:a1:14:0d:
                    16:7e:b9:f0:7b:67:bf:e2:55:9b:25:85:e1:36:58:
                    a6:67:cd:73:c7:f6:79:94:ee:e4:a9:76:12:72:82:
                    c3:f3
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5b:b5:a2:a5:55:4c:1d:3d:97:96:82:b9:32:fb:0b:c7:e4:12:
        8b:8d:5c:20:43:11:2a:68:88:b1:23:85:7b:c0:56:a0:24:be:
        84:03:94:ce:e7:77:61:ba:e6:12:d4:62:43:9b:ec:95:7c:b1:
        91:37:a9:e0:af:f4:1b:45:f7:c8:f5:30:28:b3:01:40:d1:a9:
        c9:f3:1e:b3:eb:10:a8:9d:94:d6:d3:a1:28:fc:b9:3f:d9:3b:
        bb:25:4d:9b:1a:08:20:d5:be:52:7d:87:d3:fb:39:65:7c:3b:
        c4:5e:06:4e:24:82:8c:95:37:ef:23:a6:98:70:49:65:09:db:
        23:32:ca:e9:8d:41:e3:82:e4:a3:71:6d:f4:25:20:1e:c1:87:
        da:78:92:4e:89:4e:20:38:45:9d:ba:67:e7:fc:27:01:ee:93:
        9e:7d:44:c9:89:25:a0:6b:1d:f1:92:50:af:7e:a0:96:80:62:
        ce:4a:7f:71:82:3e:d0:d0:c4:73:bd:6c:78:19:0a:7f:6e:4c:
        30:03:04:47:fc:74:ca:31:23:b4:5c:54:fe:b7:a4:b0:13:0a:
        df:1e:e6:b2:77:f0:66:a7:7b:4d:17:5b:07:3d:54:44:3e:83:
        84:72:a9:7b:f6:4e:b7:34:72:6f:d0:13:5c:a4:62:0f:78:34:
        96:62:08:b9

42589795 | 2024-04-20T10:26:36.692997

9042 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 10:26:36 GMT
Server: Apache
Connection: close
Content-Length: 0

-856371065 | 2024-04-20T16:08:38.444782

9090 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 16:08:38 GMT
Server: nginx
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Cache-Control: no-cache
Set-Cookie: JSESSIONID=node01za45kbeikf3zpisd6gbt934sk7fu9syj9bbx080.node0; Path=/; Secure; HttpOnly
Content-Length: 13222

1190220700 | 2024-04-20T12:06:26.149500

9682 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 12:06:25 GMT
Server: Apache
Expires: Sat, 20 Apr 2024 12:06:25 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=elfat1htkjm50102u4uc7o0eggbe185c; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

-369160404 | 2024-04-20T18:59:11.472263

9869 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 20 Apr 2024 18:59:11 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Connection: close
Content-Length: 1766

-878923528 | 2024-04-20T18:29:39.279202

9876 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 18:29:39 GMT
Server: Windows_7-x86-6.1, UPnP/1.0, PMS/1.70.1
X-Powered-By: PHP/5.6.20-0+deb8u1
Content-Length: 506
Content-Type: text/html

-306018029 | 2024-04-21T01:46:53.208007

10134 / tcp

\x16\x03\x01\x00=\x02\x00\x009\x03\x01\x97\x1c\xb8\x9a_\xb0\xe9}\x8e\x9a\xeb70\xc9O\x06p\xae]\xa0\x06\xafF\x1bDOWNGRD\x00\x00\xc0\x14\x00\x00\x11\xff\x01\x00\x01\x00\x00\x0b\x00\x04\x03\x00\x01\x02\x00\x17\x00\x00\x16\x03\x01\x02\xb2\x0b\x00\x02\xae\x00\x02\xab\x00\x02\xa80\x82\x02\xa40\x82\x01\x8c\x02\x01\x000\r\x06\t*\x86H\x86\xf7\r\x01\x01\x0b\x05\x000\x181\x160\x14\x06\x03U\x04\x03\x0c\rABC-U6U673WEF0\x1e\x17\r240421014653Z\x17\r260421014653Z0\x181\x160\x14\x06\x03U\x04\x03\x0c\rABC-U6U673WEF0\x82\x01"0\r\x06\t*\x86H\x86\xf7\r\x01\x01\x01\x05\x00\x03\x82\x01\x0f\x000\x82\x01\n\x02\x82\x01\x01\x00\xafvy\xd4U\xab)\xff\xadmSM\xaa\txWh\xbe{\xed\xf7\xfa\x03L-\xa3\x15\x9b\x0b\x84\xbfzS\t^\xaf\xbe!`\xd8\xf5\x94\xe2\xc0\xab\x1e\x9aD\xc2\x14<6\xb4\x05\xf6\x83\xe2l\xd6B\x8a8\x990\xf2\x93\x0e!p\xaf\x9by\xa4\xf2\xe3\xb0\x88\x8a\xbf\x9a\xae\x16\x84\xbc\x05j\x15w\xd6<\x0e9\x9bA\x84\xcc\xf3\\n\xaa\x0ebrj-\x8f|\xc1\xef\xb0\x17\xfe\xa7\xa7\x9d\xd4\x06\x88O=-\xd1)\xe2\xa1zx\x8c4 uG\xed^o\xef\x8d\xcb\x98C\xf6UQ\xf4\xf8\xdbJ\xd2p\xb1g,P)\xc0J\x84+\x11\xe6\xe1\xdc\xd7n\x9d\xb3\xea\xb6M\x9c\xc3\xaf\x97H\xdc\xf3\x1a\x1a\x88\xfe@NM\xef\xd6G\xb9\x99\x93*\xe1\xea\xac\x02\x06\xa1AF\x08\xb9\xa9A\xed\x04\x96\x88\xce(\xf6\x8ec\xc7K=\xadO^\x99\xdfnk\xca\xd1\x9fmB\x87[K\xe6D8\xd4]p-BO\xb3+o\xcbzK\x04\x8aX\x9c\x15\xbaC\x95\x05hza\x02\x03\x01\x00\x010\r\x06\t*\x86H\x86\xf7\r\x01\x01\x0b\x05\x00\x03\x82\x01\x01\x00 1\x1c\xc1A\xfe\xe3

-369160404 | 2024-04-20T22:11:05.169531

10554 / tcp

HTTP/1.1 404 Not Found
Date: Sat, 20 Apr 2024 22:11:05 GMT
Server: WebLogic Server 10.3.6.0.0
Content-Type: text/html
Connection: close
Content-Length: 1766

-1904188141 | 2024-04-20T08:33:40.049001

11112 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 08:33:39 GMT
Server: Apache
Expires: Sat, 20 Apr 2024 08:33:39 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: kboxid=p8bk8ttezipjdtydgsl9xfajewhw4zae; path=/; secure; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Access-Control-Allow-Headers: x-kace-auth-timestamp, x-kace-auth-key, x-kace-auth-signature, accept, origin, content-type
Access-Control-Allow-Methods: PUT, DELETE, POST, GET, OPTIONS
X-Kace-Appliance: K1000
X-Ua-Compatible: IE=9,EDGE
Content-Length: 8986
Content-Type: text/html

-2027312840 | 2024-04-20T21:38:53.694958

51106 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 21:38:53 GMT
Server: openresty
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Expires: Sat, 20 Apr 2024 21:38:53 GMT
Last-Modified: Sat, 20 Apr 2024 21:38:53 GMT
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=7884000
Content-Length: 84

65.0.5.98

Last Seen: 2024-04-21

Tags:

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

-2027312840 | 2024-04-20T16:39:30.669758 15 / tcp

139855509 | 2024-04-20T05:05:47.605315 129 / udp

-1644726382 | 2024-04-21T02:35:54.949538 195 / tcp

-2027312840 | 2024-04-20T15:16:28.063827 264 / tcp

-1515649480 | 2024-04-20T06:42:06.506537 443 / tcp

-1702755199 | 2024-04-20T21:12:04.081605 520 / udp

-856371065 | 2024-04-20T21:37:46.889221 548 / tcp

982434853 | 2024-04-20T14:40:23.136945 587 / tcp

-369160404 | 2024-04-20T08:59:54.061828 666 / tcp

-2027312840 | 2024-04-21T02:15:02.438858 995 / tcp

-766336104 | 2024-04-20T15:24:15.729860 1080 / tcp

-1251729390 | 2024-04-20T19:02:32.797235 1099 / tcp

-1743381957 | 2024-04-20T20:49:52.246431 1200 / tcp

139855509 | 2024-04-21T02:48:55.269444 1434 / udp

275691009 | 2024-04-20T09:34:11.937901 2081 / tcp

-1475725920 | 2024-04-20T15:24:50.946946 2222 / tcp

2073015905 | 2024-04-20T17:45:01.389945 2455 / tcp

956805313 | 2024-04-20T18:16:18.661231 3001 / tcp

390792554 | 2024-04-20T13:50:41.816181 3051 / tcp

956805313 | 2024-04-21T01:13:06.530293 3054 / tcp

-856371065 | 2024-04-21T02:47:17.250871 3129 / tcp

-1702755199 | 2024-04-20T10:38:28.002424 3283 / udp

-2098738609 | 2024-04-21T03:49:07.821959 4282 / tcp

384821124 | 2024-04-21T02:07:31.652495 4321 / tcp

1034188527 | 2024-04-20T17:49:35.270173 4506 / tcp

-856371065 | 2024-04-20T10:07:18.694697 4523 / tcp

-726790289 | 2024-04-20T23:11:45.849937 5432 / tcp

-2093536681 | 2024-04-20T19:59:48.233922 5435 / tcp

-1564954684 | 2024-04-20T16:49:35.094396 6000 / tcp

-2109705848 | 2024-04-20T22:27:39.368575 6002 / tcp

-2027312840 | 2024-04-20T18:52:55.951483 6443 / tcp

-766336104 | 2024-04-20T22:15:32.510163 7776 / tcp

-766336104 | 2024-04-21T02:39:18.990104 8021 / tcp

-2027312840 | 2024-04-20T20:20:16.111042 8023 / tcp

2073015905 | 2024-04-20T10:46:18.237218 8080 / tcp

-369160404 | 2024-04-20T20:41:01.043534 8081 / tcp

-1989897184 | 2024-04-20T05:28:27.127167 8087 / tcp

-856371065 | 2024-04-20T11:33:34.290211 8099 / tcp

-2027312840 | 2024-04-20T11:44:00.727746 8123 / tcp

384821124 | 2024-04-20T17:02:35.766550 8333 / tcp

-369160404 | 2024-04-21T01:16:23.679541 8419 / tcp

-766336104 | 2024-04-20T14:28:03.790861 8421 / tcp

1986097200 | 2024-04-21T02:52:40.687224 8500 / tcp

-1989897184 | 2024-04-20T05:42:09.945001 8787 / tcp

-856371065 | 2024-04-21T03:39:54.148103 9002 / tcp

42589795 | 2024-04-20T10:26:36.692997 9042 / tcp

-856371065 | 2024-04-20T16:08:38.444782 9090 / tcp

1190220700 | 2024-04-20T12:06:26.149500 9682 / tcp

-369160404 | 2024-04-20T18:59:11.472263 9869 / tcp

-878923528 | 2024-04-20T18:29:39.279202 9876 / tcp

-306018029 | 2024-04-21T01:46:53.208007 10134 / tcp

-369160404 | 2024-04-20T22:11:05.169531 10554 / tcp

-1904188141 | 2024-04-20T08:33:40.049001 11112 / tcp

-2027312840 | 2024-04-20T21:38:53.694958 51106 / tcp

Products

Pricing

Contact Us

-2027312840 | 2024-04-20T16:39:30.669758
15 / tcp

139855509 | 2024-04-20T05:05:47.605315
129 / udp

-1644726382 | 2024-04-21T02:35:54.949538
195 / tcp

-2027312840 | 2024-04-20T15:16:28.063827
264 / tcp

-1515649480 | 2024-04-20T06:42:06.506537
443 / tcp

-1702755199 | 2024-04-20T21:12:04.081605
520 / udp

-856371065 | 2024-04-20T21:37:46.889221
548 / tcp

982434853 | 2024-04-20T14:40:23.136945
587 / tcp

-369160404 | 2024-04-20T08:59:54.061828
666 / tcp

-2027312840 | 2024-04-21T02:15:02.438858
995 / tcp

-766336104 | 2024-04-20T15:24:15.729860
1080 / tcp

-1251729390 | 2024-04-20T19:02:32.797235
1099 / tcp

-1743381957 | 2024-04-20T20:49:52.246431
1200 / tcp

139855509 | 2024-04-21T02:48:55.269444
1434 / udp

275691009 | 2024-04-20T09:34:11.937901
2081 / tcp

-1475725920 | 2024-04-20T15:24:50.946946
2222 / tcp

2073015905 | 2024-04-20T17:45:01.389945
2455 / tcp

956805313 | 2024-04-20T18:16:18.661231
3001 / tcp

390792554 | 2024-04-20T13:50:41.816181
3051 / tcp

956805313 | 2024-04-21T01:13:06.530293
3054 / tcp

-856371065 | 2024-04-21T02:47:17.250871
3129 / tcp

-1702755199 | 2024-04-20T10:38:28.002424
3283 / udp

-2098738609 | 2024-04-21T03:49:07.821959
4282 / tcp

384821124 | 2024-04-21T02:07:31.652495
4321 / tcp

1034188527 | 2024-04-20T17:49:35.270173
4506 / tcp

-856371065 | 2024-04-20T10:07:18.694697
4523 / tcp

-726790289 | 2024-04-20T23:11:45.849937
5432 / tcp

-2093536681 | 2024-04-20T19:59:48.233922
5435 / tcp

-1564954684 | 2024-04-20T16:49:35.094396
6000 / tcp

-2109705848 | 2024-04-20T22:27:39.368575
6002 / tcp

-2027312840 | 2024-04-20T18:52:55.951483
6443 / tcp

-766336104 | 2024-04-20T22:15:32.510163
7776 / tcp

-766336104 | 2024-04-21T02:39:18.990104
8021 / tcp

-2027312840 | 2024-04-20T20:20:16.111042
8023 / tcp

2073015905 | 2024-04-20T10:46:18.237218
8080 / tcp

-369160404 | 2024-04-20T20:41:01.043534
8081 / tcp

-1989897184 | 2024-04-20T05:28:27.127167
8087 / tcp

-856371065 | 2024-04-20T11:33:34.290211
8099 / tcp

-2027312840 | 2024-04-20T11:44:00.727746
8123 / tcp

384821124 | 2024-04-20T17:02:35.766550
8333 / tcp

-369160404 | 2024-04-21T01:16:23.679541
8419 / tcp

-766336104 | 2024-04-20T14:28:03.790861
8421 / tcp

1986097200 | 2024-04-21T02:52:40.687224
8500 / tcp

-1989897184 | 2024-04-20T05:42:09.945001
8787 / tcp

-856371065 | 2024-04-21T03:39:54.148103
9002 / tcp

42589795 | 2024-04-20T10:26:36.692997
9042 / tcp

-856371065 | 2024-04-20T16:08:38.444782
9090 / tcp

1190220700 | 2024-04-20T12:06:26.149500
9682 / tcp

-369160404 | 2024-04-20T18:59:11.472263
9869 / tcp

-878923528 | 2024-04-20T18:29:39.279202
9876 / tcp

-306018029 | 2024-04-21T01:46:53.208007
10134 / tcp

-369160404 | 2024-04-20T22:11:05.169531
10554 / tcp

-1904188141 | 2024-04-20T08:33:40.049001
11112 / tcp

-2027312840 | 2024-04-20T21:38:53.694958
51106 / tcp