196.2.164.249

As of: Nov 28, 2022 9:34am UTC | Latest

Host

Attribute Value
ip 196.2.164.249
location.continent Africa
location.country South Africa
location.country_code ZA
location.city Durban
location.postal_code 4001
location.timezone Africa/Johannesburg
location.province KwaZulu-Natal
location.coordinates.latitude -29.8556
location.coordinates.longitude 31.0449
location.registered_country South Africa
location.registered_country_code ZA
location_updated_at 2022-11-19T07:20:43.442514Z
autonomous_system.asn 10803
autonomous_system.description EAST-COAST-ACCESS
autonomous_system.bgp_prefix 196.2.160.0/19
autonomous_system.name EAST-COAST-ACCESS
autonomous_system.country_code ZA
autonomous_system_updated_at 2022-11-15T01:38:10.991742Z
operating_system.uniform_resource_identifier cpe:2.3:o:debian:debian_linux:*:*:*:*:*:*:*:*
operating_system.part o
operating_system.vendor Debian
operating_system.product Linux
operating_system.other.family Linux
dns.names dut2021.immedia.co.za
dns.names www.dut.ac.za
dns.names dut.ac.za
dns.records.dut.ac.za.record_type A
dns.records.dut.ac.za.resolved_at 2022-11-27T12:44:37.574735110Z
dns.records.www.dut.ac.za.record_type A
dns.records.www.dut.ac.za.resolved_at 2022-11-23T21:00:56.512838487Z
dns.records.dut2021.immedia.co.za.record_type A
dns.records.dut2021.immedia.co.za.resolved_at 2022-11-26T01:27:55.236802093Z
last_updated_at 2022-11-28T09:34:59.190Z

21/FTP TCP View Definition

Attribute Value
services.banner 220 ProFTPD 1.3.5e Server (Debian) [::ffff:196.2.164.249]\r\n
services.banner_hashes sha256:87a691fba81a9834df1fdd1ef919c0a9a58d57a19528d659b1b591cc1a6272ec
services.banner_hex 3232302050726f4654504420312e332e356520536572766572202844656269616e29205b3a3a666666663a3139362e322e3136342e3234395d0d0a
services.certificate 1fde47beee43e2664defae2706e48dec4e0090de4fe5f6890c3f50f426846349
services.extended_service_name FTPes
services.ftp.banner 220 ProFTPD 1.3.5e Server (Debian) [::ffff:196.2.164.249]\r\n
services.ftp.auth_tls_response 234 AUTH TLS successful\r\n
services.ftp.status_code 220
services.ftp.status_meaning Service ready for new user.
services.ftp.implicit_tls false
services.observed_at 2022-11-28T02:50:05.298364872Z
services.perspective_id PERSPECTIVE_NTT
services.port 21
services.service_name FTP
services.software.uniform_resource_identifier cpe:2.3:a:proftpd:proftpd:1.3.5e:*:*:*:*:*:*:*
services.software.part a
services.software.vendor ProFTPD Project
services.software.product ProFTPD
services.software.version 1.3.5e
services.software.other.family ProFTPD
services.software.source OSI_APPLICATION_LAYER
services.software.uniform_resource_identifier cpe:2.3:o:debian:debian_linux:*:*:*:*:*:*:*:*
services.software.part o
services.software.vendor Debian
services.software.product Linux
services.software.other.family Linux
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.248.133.46
services.tls.version_selected TLSv1_3
services.tls.cipher_selected TLS_CHACHA20_POLY1305_SHA256
services.tls.certificates.leaf_fp_sha_256 1fde47beee43e2664defae2706e48dec4e0090de4fe5f6890c3f50f426846349
services.tls.certificates.leaf_data.names dut.ac.za
services.tls.certificates.leaf_data.subject_dn C=NA, ST=NA, L=NA, O=Self-signed for dut.ac.za, CN=dut.ac.za
services.tls.certificates.leaf_data.issuer_dn C=NA, ST=NA, L=NA, O=Self-signed for dut.ac.za, CN=dut.ac.za
services.tls.certificates.leaf_data.pubkey_bit_size 2048
services.tls.certificates.leaf_data.pubkey_algorithm RSA
services.tls.certificates.leaf_data.tbs_fingerprint cfcb9c92f55917df53aa1e215faee7587c2ac9c25c269b25c92962fb2cca96ea
services.tls.certificates.leaf_data.fingerprint 1fde47beee43e2664defae2706e48dec4e0090de4fe5f6890c3f50f426846349
services.tls.certificates.leaf_data.issuer.common_name dut.ac.za
services.tls.certificates.leaf_data.issuer.locality NA
services.tls.certificates.leaf_data.issuer.organization Self-signed for dut.ac.za
services.tls.certificates.leaf_data.issuer.province NA
services.tls.certificates.leaf_data.issuer.country NA
services.tls.certificates.leaf_data.subject.common_name dut.ac.za
services.tls.certificates.leaf_data.subject.locality NA
services.tls.certificates.leaf_data.subject.organization Self-signed for dut.ac.za
services.tls.certificates.leaf_data.subject.province NA
services.tls.certificates.leaf_data.subject.country NA
services.tls.certificates.leaf_data.public_key.key_algorithm RSA
services.tls.certificates.leaf_data.public_key.rsa.modulus wBamAphB/7HjktjosC7e3wfR6uWl8Dxr1jtAVVhOlxeuVn96UV5F00bml2AD+vEE8wmrD96zZZECLbuhSBldOQCmi6XYK7x6z8wJAPfmbHWe3SsVuhYndIW/Vf0GIN0Y0U2P6Y2Lvaw0x96uXyf1Xnasz0D8supvIqw6XEWxVo2axy+AJNuyw4gO3EkDKXQeo/bPMhGpe/EpEduveh9UFseHMAscfJWs1A7IoHiXM7zDKJx1qU5oxUIHa781tSqHiT86icipkCJGTc817EBOqdefMIJ6+6+17mQP9ABarQTPWIiFLl2A843eoaSMEfrcrlnpgUNylvP0PWnjygIasw==
services.tls.certificates.leaf_data.public_key.rsa.exponent AAEAAQ==
services.tls.certificates.leaf_data.public_key.rsa.length 256
services.tls.certificates.leaf_data.public_key.fingerprint b2a2165c4993a1fb50e577bf1f7a41dc3c58f77a9a033bbdc5daf5a78600327d
services.tls.certificates.leaf_data.signature.self_signed true
services.tls.certificates.leaf_data.signature.signature_algorithm SHA256-RSA
services.tls.ja3s 475c9302dc42b2751db9edcac3b74891
services.transport_protocol TCP
services.truncated false

25/SMTP TCP View Definition

Attribute Value
services.banner 220 dut.ac.za ESMTP Postfix (Ubuntu)\r\n
services.banner_hashes sha256:34840deaed9e89cd795f7ffdf74e0c87ed0535bfa128d2503f6347671bc5fcdb
services.banner_hex 323230206475742e61632e7a612045534d545020506f737466697820285562756e7475290d0a
services.certificate 6abbee31675b7270fbc1edac57f48183c6776792d7d5de0b458bc3641d3474ed
services.extended_service_name SMTP-STARTTLS
services.observed_at 2022-11-27T18:19:38.543923631Z
services.perspective_id PERSPECTIVE_NTT
services.port 25
services.service_name SMTP
services.smtp.banner 220 dut.ac.za ESMTP Postfix (Ubuntu)\r\n
services.smtp.ehlo 250-dut.ac.za\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-VRFY\r\n250-ETRN\r\n250-STARTTLS\r\n250-AUTH PLAIN LOGIN\r\n250-AUTH=PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 SMTPUTF8\r\n
services.smtp.start_tls 220 2.0.0 Ready to start TLS\r\n
services.software.uniform_resource_identifier cpe:2.3:a:postfix:postfix:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor Postfix
services.software.product Postfix
services.software.other.family Postfix
services.software.source OSI_APPLICATION_LAYER
services.software.uniform_resource_identifier cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*
services.software.part o
services.software.vendor Ubuntu
services.software.product Linux
services.software.other.family Linux
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.248.133.46
services.tls.version_selected TLSv1_3
services.tls.cipher_selected TLS_CHACHA20_POLY1305_SHA256
services.tls.certificates.leaf_fp_sha_256 6abbee31675b7270fbc1edac57f48183c6776792d7d5de0b458bc3641d3474ed
services.tls.certificates.leaf_data.names dut
services.tls.certificates.leaf_data.subject_dn CN=dut
services.tls.certificates.leaf_data.issuer_dn CN=dut
services.tls.certificates.leaf_data.pubkey_bit_size 2048
services.tls.certificates.leaf_data.pubkey_algorithm RSA
services.tls.certificates.leaf_data.tbs_fingerprint 8a71ff5f9e3d4284433b8340046fef54804048d8d8cce0d731b46dc5bd4b1455
services.tls.certificates.leaf_data.fingerprint 6abbee31675b7270fbc1edac57f48183c6776792d7d5de0b458bc3641d3474ed
services.tls.certificates.leaf_data.issuer.common_name dut
services.tls.certificates.leaf_data.subject.common_name dut
services.tls.certificates.leaf_data.public_key.key_algorithm RSA
services.tls.certificates.leaf_data.public_key.rsa.modulus qFpLtvZuCwOnAs652TtVeEeCqcmjCagbnqPDm/Uus9x7hgsOpAFxbURbm+r9HYQb6NwDMaLQetJYbLcj0Q5Yof143c+J+vpej9bmKzhVgtpwUkJmp5VCZu2TstWttQ46POjFuuFueIJqsCSSZBflS+jsXMvH/8ylAc5lguNtsUoJThWgnh+2+hUtjB1wrExApSNdhDZ9Fk4wXaPKmsA/0UWjE7MDJsJevhpGLRdbwASzwirgJg8ZUafjgZrwYVLEDCBYN5pqyJg8H3Q+DG8aBRbm6IDqhDH/vUEe4WAisi4lJrA4x4NGBUCmVp0DTC7hHqwJ6sDiyRdrUyxNtOJ7rQ==
services.tls.certificates.leaf_data.public_key.rsa.exponent AAEAAQ==
services.tls.certificates.leaf_data.public_key.rsa.length 256
services.tls.certificates.leaf_data.public_key.fingerprint 8e9e789ac934e3028ecbc884a27cf542622eeecdaa1b13206a626160a05fe2c0
services.tls.certificates.leaf_data.signature.self_signed true
services.tls.certificates.leaf_data.signature.signature_algorithm SHA256-RSA
services.tls.ja3s 475c9302dc42b2751db9edcac3b74891
services.transport_protocol TCP
services.truncated false

80/HTTP TCP View Definition

Attribute Value
services.banner HTTP/1.1 301 Moved Permanently\r\nDate: <REDACTED>\nServer: Apache\r\nExpires: Mon, 28 Nov 2022 03:43:44 GMT\r\nCache-Control: max-age=3600\r\nX-Redirect-By: WordPress\r\nVary: Accept-Encoding\r\nLocation: https://www.dut.ac.za/\r\nContent-Length: 0\r\nContent-Type: text/html; charset=UTF-8\r\n
services.banner_hashes sha256:6ad62774ffbc8a3183ec01adc279b2ec3245697059e5c7d872dabaded2334dc0
services.banner_hex 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
services.extended_service_name HTTP
services.http.request.method GET
services.http.request.uri http://196.2.164.249/
services.http.request.headers.Accept */*
services.http.request.headers.User_Agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
services.http.response.protocol HTTP/1.1
services.http.response.status_code 301
services.http.response.status_reason Moved Permanently
services.http.response.headers.Content_Length 0
services.http.response.headers.Expires Mon, 28 Nov 2022 03:43:44 GMT
services.http.response.headers.Vary Accept-Encoding
services.http.response.headers.Cache_Control max-age=3600
services.http.response.headers.Content_Type text/html; charset=UTF-8
services.http.response.headers.X_Redirect_By WordPress
services.http.response.headers.Server Apache
services.http.response.headers.Date <REDACTED>
services.http.response.headers.Location https://www.dut.ac.za/
services.http.response.body_size 0
services.http.supports_http2 false
services.observed_at 2022-11-28T02:43:43.849387384Z
services.perspective_id PERSPECTIVE_NTT
services.port 80
services.service_name HTTP
services.software.uniform_resource_identifier cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor Apache
services.software.product HTTPD
services.software.other.family Apache
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.248.133.118
services.transport_protocol TCP
services.truncated false

443/HTTP TCP View Definition

Attribute Value
services.banner HTTP/1.1 301 Moved Permanently\r\nDate: <REDACTED>\nServer: Apache\r\nExpires: Sat, 26 Nov 2022 21:53:55 GMT\r\nCache-Control: max-age=3600\r\nX-Redirect-By: WordPress\r\nVary: Accept-Encoding\r\nLocation: https://www.dut.ac.za/\r\nContent-Length: 0\r\nContent-Type: text/html; charset=UTF-8\r\n
services.banner_hashes sha256:a38a83bf5ffe25177fd5baa08d849a5a6845578b2da7055c8c37ca9e1c1181fa
services.banner_hex 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
services.certificate 0d79b559d0ae4be118dd0e24cfa90ec10fcba31f3c6d2082f3258106ba769905
services.extended_service_name HTTPS
services.http.request.method GET
services.http.request.uri https://196.2.164.249/
services.http.request.headers.User_Agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
services.http.request.headers.Accept */*
services.http.response.protocol HTTP/1.1
services.http.response.status_code 301
services.http.response.status_reason Moved Permanently
services.http.response.headers.Content_Length 0
services.http.response.headers.Expires Sat, 26 Nov 2022 21:53:55 GMT
services.http.response.headers.X_Redirect_By WordPress
services.http.response.headers.Content_Type text/html; charset=UTF-8
services.http.response.headers.Server Apache
services.http.response.headers.Cache_Control max-age=3600
services.http.response.headers.Date <REDACTED>
services.http.response.headers.Location https://www.dut.ac.za/
services.http.response.headers.Vary Accept-Encoding
services.http.response.body_size 0
services.http.supports_http2 false
services.jarm.fingerprint 3fd3fd15d3fd3fd21c42d42d0000006f254909a73bf62f6b28507e9fb451b5
services.jarm.cipher_and_version_fingerprint 3fd3fd15d3fd3fd21c42d42d000000
services.jarm.tls_extensions_sha256 6f254909a73bf62f6b28507e9fb451b5
services.jarm.observed_at 2022-11-19T15:01:09.634004631Z
services.observed_at 2022-11-26T20:53:54.265862541Z
services.perspective_id PERSPECTIVE_TATA
services.port 443
services.service_name HTTP
services.software.uniform_resource_identifier cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor Apache
services.software.product HTTPD
services.software.other.family Apache
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.94.138.119
services.tls.version_selected TLSv1_3
services.tls.cipher_selected TLS_AES_256_GCM_SHA384
services.tls.certificates.leaf_fp_sha_256 0d79b559d0ae4be118dd0e24cfa90ec10fcba31f3c6d2082f3258106ba769905
services.tls.certificates.chain_fps_sha_256 67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd
services.tls.certificates.chain_fps_sha_256 6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f
services.tls.certificates.leaf_data.names dut.ac.za
services.tls.certificates.leaf_data.names www.dut.ac.za
services.tls.certificates.leaf_data.subject_dn CN=dut.ac.za
services.tls.certificates.leaf_data.issuer_dn C=US, O=Let's Encrypt, CN=R3
services.tls.certificates.leaf_data.pubkey_bit_size 2048
services.tls.certificates.leaf_data.pubkey_algorithm RSA
services.tls.certificates.leaf_data.tbs_fingerprint 023b174947f535b291dd2f5b2ede33bbbf91e8341b0d4f905797b6a42d611242
services.tls.certificates.leaf_data.fingerprint 0d79b559d0ae4be118dd0e24cfa90ec10fcba31f3c6d2082f3258106ba769905
services.tls.certificates.leaf_data.issuer.common_name R3
services.tls.certificates.leaf_data.issuer.organization Let's Encrypt
services.tls.certificates.leaf_data.issuer.country US
services.tls.certificates.leaf_data.subject.common_name dut.ac.za
services.tls.certificates.leaf_data.public_key.key_algorithm RSA
services.tls.certificates.leaf_data.public_key.rsa.modulus u655Nuu7NTHh8it1bWQEs9PDFf+zvPCLvKt/G8MwUpabygYI3hRq5uQ/8gqqL3uTjo69maM8CSTryi5S2Jfv2hLDc4pokCz+2xtyCOcDCV12cgx0h3ZOx9x3VsPwL1irR6vy01k4+wjlKiqlumc/MIYoloIUf1xoEDVqG3hbsV8l5vJB0SnuOKmjKMlvi1CdyluzDcVLlSqvKBp2qtSEXHZINUaPvrIpnXeYu5NrVGfWYKu/W2kJ9lQdic53TNMdymyeqI3vgYI6D3QNHd5OJQX3dQfe1idftEOEB3v2Z4Dk6OrtziMqPfi1pMVDlye+OkE+BzpwZPriALoWAp7Ckw==
services.tls.certificates.leaf_data.public_key.rsa.exponent AAEAAQ==
services.tls.certificates.leaf_data.public_key.rsa.length 256
services.tls.certificates.leaf_data.public_key.fingerprint fb1381a5112a7fe005899d7d5c63a4cdfc8280226fda4ca458bd33bb9d173a67
services.tls.certificates.leaf_data.signature.signature_algorithm SHA256-RSA
services.tls.certificates.leaf_data.signature.self_signed false
services.tls.certificates.chain.fingerprint 67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd
services.tls.certificates.chain.subject_dn C=US, O=Let's Encrypt, CN=R3
services.tls.certificates.chain.issuer_dn C=US, O=Internet Security Research Group, CN=ISRG Root X1
services.tls.certificates.chain.fingerprint 6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f
services.tls.certificates.chain.subject_dn C=US, O=Internet Security Research Group, CN=ISRG Root X1
services.tls.certificates.chain.issuer_dn O=Digital Signature Trust Co., CN=DST Root CA X3
services.tls.ja3s 15af977ce25de452b96affa2addb1036
services.transport_protocol TCP
services.truncated false

2222/SSH TCP View Definition

Attribute Value
services.banner SSH-2.0-mod_sftp/0.9.9
services.banner_hashes sha256:58050e68b715814ac7e847b213cb1db07b0968e0fc46a35fe38839c2c62c916f
services.banner_hex 5353482d322e302d6d6f645f736674702f302e392e39
services.extended_service_name SSH
services.observed_at 2022-11-28T02:50:28.371445829Z
services.perspective_id PERSPECTIVE_NTT
services.port 2222
services.service_name SSH
services.source_ip 167.248.133.62
services.ssh.endpoint_id.raw SSH-2.0-mod_sftp/0.9.9
services.ssh.endpoint_id.protocol_version 2.0
services.ssh.endpoint_id.software_version mod_sftp/0.9.9
services.ssh.kex_init_message.kex_algorithms ecdh-sha2-nistp256
services.ssh.kex_init_message.kex_algorithms ecdh-sha2-nistp384
services.ssh.kex_init_message.kex_algorithms ecdh-sha2-nistp521
services.ssh.kex_init_message.kex_algorithms diffie-hellman-group-exchange-sha256
services.ssh.kex_init_message.kex_algorithms diffie-hellman-group-exchange-sha1
services.ssh.kex_init_message.kex_algorithms diffie-hellman-group14-sha1
services.ssh.kex_init_message.kex_algorithms diffie-hellman-group1-sha1
services.ssh.kex_init_message.kex_algorithms rsa1024-sha1
services.ssh.kex_init_message.host_key_algorithms ecdsa-sha2-nistp256
services.ssh.kex_init_message.host_key_algorithms ssh-rsa
services.ssh.kex_init_message.client_to_server_ciphers aes256-ctr
services.ssh.kex_init_message.client_to_server_ciphers aes192-ctr
services.ssh.kex_init_message.client_to_server_ciphers aes128-ctr
services.ssh.kex_init_message.client_to_server_ciphers aes256-cbc
services.ssh.kex_init_message.client_to_server_ciphers aes192-cbc
services.ssh.kex_init_message.client_to_server_ciphers aes128-cbc
services.ssh.kex_init_message.client_to_server_ciphers blowfish-ctr
services.ssh.kex_init_message.client_to_server_ciphers blowfish-cbc
services.ssh.kex_init_message.client_to_server_ciphers cast128-cbc
services.ssh.kex_init_message.client_to_server_ciphers arcfour256
services.ssh.kex_init_message.client_to_server_ciphers arcfour128
services.ssh.kex_init_message.client_to_server_ciphers 3des-ctr
services.ssh.kex_init_message.client_to_server_ciphers 3des-cbc
services.ssh.kex_init_message.server_to_client_ciphers aes256-ctr
services.ssh.kex_init_message.server_to_client_ciphers aes192-ctr
services.ssh.kex_init_message.server_to_client_ciphers aes128-ctr
services.ssh.kex_init_message.server_to_client_ciphers aes256-cbc
services.ssh.kex_init_message.server_to_client_ciphers aes192-cbc
services.ssh.kex_init_message.server_to_client_ciphers aes128-cbc
services.ssh.kex_init_message.server_to_client_ciphers blowfish-ctr
services.ssh.kex_init_message.server_to_client_ciphers blowfish-cbc
services.ssh.kex_init_message.server_to_client_ciphers cast128-cbc
services.ssh.kex_init_message.server_to_client_ciphers arcfour256
services.ssh.kex_init_message.server_to_client_ciphers arcfour128
services.ssh.kex_init_message.server_to_client_ciphers 3des-ctr
services.ssh.kex_init_message.server_to_client_ciphers 3des-cbc
services.ssh.kex_init_message.client_to_server_macs hmac-sha2-256
services.ssh.kex_init_message.client_to_server_macs hmac-sha2-512
services.ssh.kex_init_message.client_to_server_macs hmac-sha1
services.ssh.kex_init_message.client_to_server_macs hmac-sha1-96
services.ssh.kex_init_message.client_to_server_macs hmac-md5
services.ssh.kex_init_message.client_to_server_macs hmac-md5-96
services.ssh.kex_init_message.client_to_server_macs hmac-ripemd160
services.ssh.kex_init_message.client_to_server_macs [email protected]
services.ssh.kex_init_message.server_to_client_macs hmac-sha2-256
services.ssh.kex_init_message.server_to_client_macs hmac-sha2-512
services.ssh.kex_init_message.server_to_client_macs hmac-sha1
services.ssh.kex_init_message.server_to_client_macs hmac-sha1-96
services.ssh.kex_init_message.server_to_client_macs hmac-md5
services.ssh.kex_init_message.server_to_client_macs hmac-md5-96
services.ssh.kex_init_message.server_to_client_macs hmac-ripemd160
services.ssh.kex_init_message.server_to_client_macs [email protected]
services.ssh.kex_init_message.client_to_server_compression [email protected]
services.ssh.kex_init_message.client_to_server_compression zlib
services.ssh.kex_init_message.client_to_server_compression none
services.ssh.kex_init_message.server_to_client_compression [email protected]
services.ssh.kex_init_message.server_to_client_compression zlib
services.ssh.kex_init_message.server_to_client_compression none
services.ssh.kex_init_message.first_kex_follows false
services.ssh.algorithm_selection.kex_algorithm ecdh-sha2-nistp256
services.ssh.algorithm_selection.host_key_algorithm ecdsa-sha2-nistp256
services.ssh.algorithm_selection.client_to_server_alg_group.cipher aes128-ctr
services.ssh.algorithm_selection.client_to_server_alg_group.mac hmac-sha2-256
services.ssh.algorithm_selection.client_to_server_alg_group.compression none
services.ssh.algorithm_selection.server_to_client_alg_group.cipher aes128-ctr
services.ssh.algorithm_selection.server_to_client_alg_group.mac hmac-sha2-256
services.ssh.algorithm_selection.server_to_client_alg_group.compression none
services.ssh.hassh_fingerprint 696e7f84ac571fdf8fa5073e64ee2dc8
services.transport_protocol TCP
services.truncated false

8008/HTTP TCP View Definition

Attribute Value
services.banner HTTP/1.1 302 Found\r\nLocation: https://196.2.164.249:8015/\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nContent-Security-Policy: frame-ancestors 'self'\r\n
services.banner_hashes sha256:c3f1ecac051774da2cd3662a9900652ecd6dbce252d8c866a9b71b0c698c1738
services.banner_hex 485454502f312e312033303220466f756e640d0a4c6f636174696f6e3a2068747470733a2f2f3139362e322e3136342e3234393a383031352f0d0a436f6e6e656374696f6e3a20636c6f73650d0a582d4672616d652d4f7074696f6e733a2053414d454f524947494e0d0a582d5853532d50726f74656374696f6e3a20313b206d6f64653d626c6f636b0d0a582d436f6e74656e742d547970652d4f7074696f6e733a206e6f736e6966660d0a436f6e74656e742d53656375726974792d506f6c6963793a206672616d652d616e636573746f7273202773656c66270d0a
services.extended_service_name HTTP
services.http.request.method GET
services.http.request.uri http://196.2.164.249:8008/
services.http.request.headers.User_Agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
services.http.request.headers.Accept */*
services.http.response.protocol HTTP/1.1
services.http.response.status_code 302
services.http.response.status_reason Found
services.http.response.headers.X_Xss_Protection 1; mode=block
services.http.response.headers.Location https://196.2.164.249:8015/
services.http.response.headers.Connection close
services.http.response.headers.X_Frame_Options SAMEORIGIN
services.http.response.headers.X_Content_Type_Options nosniff
services.http.response.headers.Content_Security_Policy frame-ancestors 'self'
services.http.response.body_size 0
services.http.supports_http2 false
services.observed_at 2022-11-28T09:34:58.005769614Z
services.perspective_id PERSPECTIVE_TATA
services.port 8008
services.service_name HTTP
services.source_ip 167.94.138.61
services.transport_protocol TCP
services.truncated false

20000/HTTP TCP View Definition

Attribute Value
services.banner HTTP/1.0 200 Document follows\r\nDate: <REDACTED>\nServer: MiniServ/1.840\r\nConnection: close\r\nAuth-type: auth-required=1\r\nSet-Cookie: redirect=1; path=/; secure; httpOnly\r\nSet-Cookie: testing=1; path=/; secure; httpOnly\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self'; child-src 'self'\r\nX-Content-Type-Options: nosniff\r\nX-no-links: 1\r\nContent-type: text/html; Charset=UTF-8\r\n
services.banner_hashes sha256:014a501d44518afd31380b1949f3271a8a880080c2b9bb9c8538bca2ef501b50
services.banner_hex 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
services.certificate 13fc847a58ecd4af4aafc181f0f27080c5e1f8f2a4075295f152708038ff57f2
services.extended_service_name HTTPS
services.http.request.method GET
services.http.request.uri https://196.2.164.249:20000/
services.http.request.headers.User_Agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
services.http.request.headers.Accept */*
services.http.response.protocol HTTP/1.0
services.http.response.status_code 200
services.http.response.status_reason Document follows
services.http.response.headers.X_Content_Type_Options nosniff
services.http.response.headers.Date <REDACTED>
services.http.response.headers.Set_Cookie redirect=1; path=/; secure; httpOnly
services.http.response.headers.Set_Cookie testing=1; path=/; secure; httpOnly
services.http.response.headers.X_Frame_Options SAMEORIGIN
services.http.response.headers.Content_Type text/html; Charset=UTF-8
services.http.response.headers.X_No_Links 1
services.http.response.headers.Server MiniServ/1.840
services.http.response.headers.Content_Security_Policy script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self'; child-src 'self'
services.http.response.headers.Auth_Type auth-required=1
services.http.response.headers.Connection close
services.http.response.html_tags <title>Login to Usermin</title>
services.http.response.html_tags <meta name="color-scheme" content="only light">
services.http.response.html_tags <meta charset="utf-8">
services.http.response.html_tags <meta data-link-ref name="msapplication-TileImage" content="/images/favicons/usermin/mstile-150x150.png">
services.http.response.html_tags <meta name="msapplication-TileColor" content="#0d5ab7">
services.http.response.html_tags <meta name="theme-color" content="#0d5ab7">
services.http.response.html_tags <meta name="viewport" content="width=device-width, initial-scale=1.0">
services.http.response.body_size 4901
services.http.response.body <!DOCTYPE HTML>\n<html data-bgs="gainsboro" class="session_login">\n<head>\n <meta name="color-scheme" content="only light">\n <noscript> <style> html[data-bgs="gainsboro"] { background-color: #d6d6d6; } html[data-bgs="nightRider"] { background-color: #1a1c20; } html[data-bgs="nightRider"] div[data-noscript] { color: #979ba080; } html[data-slider-fixed='1'] { margin-right: 0 !important; } body > div[data-noscript] ~ * { display: none !important; } div[data-noscript] { visibility: hidden; animation: 2s noscript-fadein; animation-delay: 1s; text-align: center; animation-fill-mode: forwards; } @keyframes noscript-fadein { 0% { opacity: 0; } 100% { visibility: visible; opacity: 1; } } </style> <div data-noscript> <div class="fa fa-3x fa-exclamation-triangle margined-top-20 text-danger"></div> <h2>JavaScript is disabled</h2> <p>Please enable javascript and refresh the page</p> </div> </noscript>\n<meta charset="utf-8">\n <link data-link-ref rel="apple-touch-icon" sizes="180x180" href="/images/favicons/usermin/apple-touch-icon.png">\n <link data-link-ref rel="icon" type="image/png" sizes="32x32" href="/images/favicons/usermin/favicon-32x32.png">\n <link data-link-ref rel="icon" type="image/png" sizes="192x192" href="/images/favicons/usermin/android-chrome-192x192.png">\n <link data-link-ref rel="icon" type="image/png" sizes="16x16" href="/images/favicons/usermin/favicon-16x16.png">\n <link data-link-ref rel="mask-icon" href="/images/favicons/usermin/safari-pinned-tab.svg" color="#0d5ab7">\n <meta data-link-ref name="msapplication-TileImage" content="/images/favicons/usermin/mstile-150x150.png">\n <meta name="msapplication-TileColor" content="#0d5ab7">\n <meta name="theme-color" content="#0d5ab7">\n<title>Login to Usermin</title>\n<meta name="viewport" content="width=device-width, initial-scale=1.0">\n<link href="/unauthenticated/css/bundle.min.css?1985019999999999901" rel="stylesheet">\n<script>document.addEventListener("DOMContentLoaded", function(event) {var a=document.querySelectorAll('input[type="password"]');i=0;\nfor(length=a.length;i<length;i++){var b=document.createElement("span"),d=30<a[i].offsetHeight?1:0;b.classList.add("input_warning_caps");b.setAttribute("title","Caps Lock");d&&b.classList.add("large");a[i].classList.add("use_input_warning_caps");a[i].parentNode.insertBefore(b,a[i].nextSibling);a[i].addEventListener("blur",function(){this.nextSibling.classList.remove("visible")});a[i].addEventListener("keydown",function(c){"function"===typeof c.getModifierState&&((state=20===c.keyCode?!c.getModifierState("CapsLock"):\nc.getModifierState("CapsLock"))?this.nextSibling.classList.add("visible"):this.nextSibling.classList.remove("visible"))})};});function spinner() {var x = document.querySelector('button i.fa-sign-in:not(.invisible)') || document.querySelector('button i.fa-qrcode:not(.invisible)'),s = '<span class="cspinner_container"><span class="cspinner"><span class="cspinner-icon white small"></span></span></span>';if(x){x.classList.add("invisible"); x.insertAdjacentHTML('afterend', s);x.parentNode.classList.add("disabled");x.parentNode.disabled=true}}setTimeout(function(){if(navigator&&navigator.oscpu){var t=navigator.oscpu,i=document.querySelector("html"),e="data-platform";t.indexOf("Linux")>-1?i.setAttribute(e,"linux"):t.indexOf("Windows")>-1&&i.setAttribute(e,"windows")}});</script> <link href="/unauthenticated/css/fonts-roboto.min.css?1985019999999999901" rel="stylesheet">\n</head>\n<body class="session_login" >\n<div class="container session_login" data-dcontainer="1">\n\n<form class="form-signin session_login clearfix" action="/session_login.cgi" method="post" role="form" onsubmit="spinner()">\n<i class="wbm-webmin"></i><h2 class="form-signin-heading"><span> Usermin</span></h2>\n<p class="form-signin-paragraph">You must enter a username and password to login to the server on<strong> 196.2.164.249</strong></p>\n<div class="input-group form-group">\n<span class="input-group-addon"><i class="fa fa-fw fa-user"></i></span>\n<input type="text" name="user" class="form-control session_login" autofocus=" autofocus" autocapitalize="none" placeholder="Username" autocorrect="off" autocomplete="off">\n</div>\n<div class="input-group form-group">\n<span class="input-group-addon"><i class="fa fa-fw fa-lock"></i></span>\n<input type="password" class="form-control session_login" name="pass" autocomplete="off" autocorrect="off" placeholder="Password">\n</div>\n<div class="input-group form-group">\n <div class="wh-100p flex-wrapper flex-centered flex-start">\n <span class="awcheckbox awobject solid primary"><input class="iawobject" name="save" value="1" id="save" type="checkbox"> <label class="lawobject" for="save"><span>Remember me</span></label></span>\n </div></div>\n<div class="form-group form-signin-group"><button class="btn btn-primary" type="submit"><i class="fa fa-sign-in"></i>&nbsp;&nbsp;Sign in</button>\n</div></form>\n
services.http.response.favicons.size 6469
services.http.response.favicons.name https://196.2.164.249:20000/images/favicons/usermin/apple-touch-icon.png
services.http.response.favicons.md5_hash b2617c265300869237e8d9823a79d2cb
services.http.response.favicons.size 1863
services.http.response.favicons.name https://196.2.164.249:20000/images/favicons/usermin/favicon-32x32.png
services.http.response.favicons.md5_hash 4b5b7ce79a13c1aa6830579c04e47083
services.http.response.favicons.size 13198
services.http.response.favicons.name https://196.2.164.249:20000/images/favicons/usermin/android-chrome-192x192.png
services.http.response.favicons.md5_hash 93a8758d33bf1d13b50e08ad00161690
services.http.response.favicons.size 1154
services.http.response.favicons.name https://196.2.164.249:20000/images/favicons/usermin/favicon-16x16.png
services.http.response.favicons.md5_hash ba355cd6695de32aa71419a8beac7e41
services.http.response.body_hashes sha256:b77762b0985800b831a24da6eb6e1de4afcc9517456d3d1427c0684e4520fb22
services.http.response.body_hashes sha1:d1ecd5b4aaf99aa0db667322462fb7cabda90f3d
services.http.response.body_hash sha1:d1ecd5b4aaf99aa0db667322462fb7cabda90f3d
services.http.response.html_title Login to Usermin
services.http.supports_http2 false
services.jarm.fingerprint 21d19d00021d21d21c42d43d000000f12324a990d0089dda7fb89ecd393b87
services.jarm.cipher_and_version_fingerprint 21d19d00021d21d21c42d43d000000
services.jarm.tls_extensions_sha256 f12324a990d0089dda7fb89ecd393b87
services.jarm.observed_at 2022-11-16T15:51:54.479075365Z
services.observed_at 2022-11-28T05:28:36.393085006Z
services.perspective_id PERSPECTIVE_TELIA
services.port 20000
services.service_name HTTP
services.software.uniform_resource_identifier cpe:2.3:a:*:http:1.840:*:*:*:*:*:*:*
services.software.part a
services.software.product HTTP
services.software.version 1.840
services.software.other.family WebServer
services.software.source OSI_APPLICATION_LAYER
services.software.uniform_resource_identifier cpe:2.3:a:webmin:usermin:*:*:*:*:*:*:*:*
services.software.part a
services.software.vendor Webmin
services.software.product Usermin
services.software.source OSI_APPLICATION_LAYER
services.source_ip 167.94.146.58
services.tls.version_selected TLSv1_3
services.tls.cipher_selected TLS_CHACHA20_POLY1305_SHA256
services.tls.certificates.leaf_fp_sha_256 13fc847a58ecd4af4aafc181f0f27080c5e1f8f2a4075295f152708038ff57f2
services.tls.certificates.leaf_data.subject_dn [email protected], O=Usermin Webserver on dut.ac.za, CN=*, [email protected]
services.tls.certificates.leaf_data.issuer_dn [email protected], O=Usermin Webserver on dut.ac.za, CN=*, [email protected]
services.tls.certificates.leaf_data.pubkey_bit_size 2048
services.tls.certificates.leaf_data.pubkey_algorithm RSA
services.tls.certificates.leaf_data.tbs_fingerprint c322a265f7bd9bf7c2d21387c07cc27ce967bb432d11cd2fe65a9eced922be97
services.tls.certificates.leaf_data.fingerprint 13fc847a58ecd4af4aafc181f0f27080c5e1f8f2a4075295f152708038ff57f2
services.tls.certificates.leaf_data.issuer.common_name *
services.tls.certificates.leaf_data.issuer.organization Usermin Webserver on dut.ac.za
services.tls.certificates.leaf_data.issuer.email_address [email protected]
services.tls.certificates.leaf_data.subject.common_name *
services.tls.certificates.leaf_data.subject.organization Usermin Webserver on dut.ac.za
services.tls.certificates.leaf_data.subject.email_address [email protected]
services.tls.certificates.leaf_data.public_key.key_algorithm RSA
services.tls.certificates.leaf_data.public_key.rsa.modulus up+gYb3HRoV1ChsbziySkw19eqCduVyjeZt9LgCbGgXuxKXF+o2ux9dMUd/YjlXiRKE04dD1VE6HrxmoSRYAPph59OX42SQhWNAEGOlm827Oo79BhQqAE0hO0Pe/WL0GTxR8qDqriW7ev66IWgceyf6GrO/3ufDoqJG/Ame4kDlSl13G0wzxEe6oieFHnbTaogEAw7EqVeAAT0xBGDqYdhEtjdrOqEeiOYemQUL81w7VeG/gDqYuQzrpDa7qUAAtcIgAj7S4WXJh0kTJIMJtnkfl5YpxiplEyByX5cSUUfPNtNBo3k+AOqJKYBhaqSj6yqZ/WeUi8aeJ1h8UGfTuIQ==
services.tls.certificates.leaf_data.public_key.rsa.exponent AAEAAQ==
services.tls.certificates.leaf_data.public_key.rsa.length 256
services.tls.certificates.leaf_data.public_key.fingerprint 8fc26c1621261afc7b98ab3ba86ecb3970b4be7adb83cc307446bc4f1d25b9b3
services.tls.certificates.leaf_data.signature.self_signed true
services.tls.certificates.leaf_data.signature.signature_algorithm SHA256-RSA
services.tls.ja3s 475c9302dc42b2751db9edcac3b74891
services.transport_protocol TCP
services.truncated false