89.161.136.214
As of: Oct 02, 2023 2:00am UTC |
Latest
{
"ip": "89.161.136.214",
"services": [
{
"_decoded": "ftp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220-Idea FTP Server 5.2.0 (ekonomik2.home.pl) [89.161.136.214]\r\n220 Ready\r\n",
"banner_hashes": [
"sha256:57615f50577dc7e01832b5ce2c8be54df4a19a633b83e8a99fc33a8a1849b361"
],
"banner_hex": "3232302d49646561204654502053657276657220352e322e302028656b6f6e6f6d696b322e686f6d652e706c29205b38392e3136312e3133362e3231345d0d0a3232302052656164790d0a",
"certificate": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "FTPes",
"ftp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"auth_tls_response": "DISPLAY_UTF8"
},
"banner": "220-Idea FTP Server 5.2.0 (ekonomik2.home.pl) [89.161.136.214]\r\n220 Ready\r\n",
"auth_tls_response": "234 AUTH command successful.\r\n",
"status_code": 220,
"status_meaning": "Service ready for new user.",
"implicit_tls": false
},
"labels": [
"file-sharing"
],
"observed_at": "2023-09-29T13:52:48.983742371Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 21,
"service_name": "FTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
}
],
"source_ip": "162.142.125.214",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"chain_fps_sha_256": [
"a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624"
],
"leaf_data": {
"names": [
"*.home.pl",
"home.pl"
],
"subject_dn": "CN=*.home.pl",
"issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "8c1c9f5b0af80c91202097ab93b5c6cd38e73e68ac9301b934f35e1a251f4ffb",
"fingerprint": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"issuer": {
"common_name": [
"Certyfikat SSL"
],
"organization": [
"home.pl S.A."
],
"country": [
"PL"
]
},
"subject": {
"common_name": [
"*.home.pl"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vcrofDPSYQ8zufQcUZyheEZ28MbWvlAY060H+WJiqbc/Pc2uZBDMu/J6ubQAwjQKggablqE7O1Q6w2DymSDCheHwN1qfqIX1S5qwn+CDXDlbcFp1avXl1AUjFI/NVrUnMrzUB/Uxjy6J26Fnktnu4+yZNFjN4/x/iosOvvksiG/Qg4XBvaeTKBeFb299xoaFVeIUPX0ECEuUsQ0SNHqKkQ4mkbm9RMlZrH+bO5B1mVWH7VIAtsLk7dykp4nF2pjrcc3og6g+ZsGf/euLsdlu1cEWIZhU16VZUmNTteSi1hL7smz7EY3id4SiO0GWDzSDOm9QmW1ykVDLVc6EPGOvow==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5a69c74f8d014cd11ae9bbf86b03001e7e2b137de7da9b44586627bd0f9a98a3"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
},
{
"fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
},
{
"fingerprint": "949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
},
{
"fingerprint": "d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624",
"subject_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "15af977ce25de452b96affa2addb1036"
},
"transport_fingerprint": {
"id": 262,
"os": "CentOS",
"raw": "65160,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 302\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 565\r\nConnection: keep-alive\r\nLocation: http://zse.com.pl\r\nServer: IdeaWebServer/5.2.0\r\nStatus: 302\r\n",
"banner_hashes": [
"sha256:146458a7650559eabccfbadcdbb059076fbcf12b813f28ffe7db465d9db58c8c"
],
"banner_hex": "485454502f312e31203330320d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203536350d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a4c6f636174696f6e3a20687474703a2f2f7a73652e636f6d2e706c0d0a5365727665723a20496465615765625365727665722f352e322e300d0a5374617475733a203330320d0a",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://89.161.136.214/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 302,
"headers": {
"Location": [
"http://zse.com.pl"
],
"_encoding": {
"Location": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Status": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8"
},
"Server": [
"IdeaWebServer/5.2.0"
],
"Status": [
"302"
],
"Connection": [
"keep-alive"
],
"Date": [
"<REDACTED>"
],
"Content_Length": [
"565"
],
"Content_Type": [
"text/html"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Error 302</title>",
"<meta charset=\"utf-8\">",
"<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">",
"<meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">"
],
"body_size": 565,
"body": "<!DOCTYPE html><html lang=\"en\"><head><meta charset=\"utf-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"><title>Error 302</title><link href=\"/idea/static/style.css\" rel=\"stylesheet\"></head><body><div class=\"error-container\"><div class=\"error-text\"><h1>Error</h1></div><div class=\"error-text-strong\"><h1>302</h1></div><div class=\"error-text\"><h1>Moved</h1></div></div><div class=\"error-descr-container\"><p>The document has moved <A HREF=\"http://zse.com.pl\">here</A>.</p></div> </body></html>",
"body_hashes": [
"sha256:09f7f857595cf463fb23e518872c8e6c6448064ba27914a1e404dba6b2cd23d6",
"sha1:0748e4ee8048d19492cb9181041a91874ba85c5b"
],
"body_hash": "sha1:0748e4ee8048d19492cb9181041a91874ba85c5b",
"html_title": "Error 302"
},
"supports_http2": false
},
"observed_at": "2023-10-01T11:47:49.848772553Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 80,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:home.pl:idea_web_server:5.2.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "home.pl",
"product": "Idea Web Server",
"version": "5.2.0",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.217",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 302\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 565\r\nConnection: keep-alive\r\nLocation: http://zse.com.pl\r\nServer: IdeaWebServer/5.2.0\r\nStatus: 302\r\n",
"banner_hashes": [
"sha256:146458a7650559eabccfbadcdbb059076fbcf12b813f28ffe7db465d9db58c8c"
],
"banner_hex": "485454502f312e31203330320d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203536350d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a4c6f636174696f6e3a20687474703a2f2f7a73652e636f6d2e706c0d0a5365727665723a20496465615765625365727665722f352e322e300d0a5374617475733a203330320d0a",
"certificate": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://89.161.136.214/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 302,
"headers": {
"Status": [
"302"
],
"_encoding": {
"Status": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"Content_Length": "DISPLAY_UTF8",
"Location": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8"
},
"Content_Type": [
"text/html"
],
"Date": [
"<REDACTED>"
],
"Content_Length": [
"565"
],
"Location": [
"http://zse.com.pl"
],
"Connection": [
"keep-alive"
],
"Server": [
"IdeaWebServer/5.2.0"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>Error 302</title>",
"<meta charset=\"utf-8\">",
"<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">",
"<meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">"
],
"body_size": 565,
"body": "<!DOCTYPE html><html lang=\"en\"><head><meta charset=\"utf-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"><title>Error 302</title><link href=\"/idea/static/style.css\" rel=\"stylesheet\"></head><body><div class=\"error-container\"><div class=\"error-text\"><h1>Error</h1></div><div class=\"error-text-strong\"><h1>302</h1></div><div class=\"error-text\"><h1>Moved</h1></div></div><div class=\"error-descr-container\"><p>The document has moved <A HREF=\"http://zse.com.pl\">here</A>.</p></div> </body></html>",
"body_hashes": [
"sha256:09f7f857595cf463fb23e518872c8e6c6448064ba27914a1e404dba6b2cd23d6",
"sha1:0748e4ee8048d19492cb9181041a91874ba85c5b"
],
"body_hash": "sha1:0748e4ee8048d19492cb9181041a91874ba85c5b",
"html_title": "Error 302"
},
"supports_http2": true
},
"observed_at": "2023-09-30T06:54:41.660970884Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 443,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:home.pl:idea_web_server:5.2.0:*:*:*:*:*:*:*",
"part": "a",
"vendor": "home.pl",
"product": "Idea Web Server",
"version": "5.2.0",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.126",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"chain_fps_sha_256": [
"a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624"
],
"leaf_data": {
"names": [
"*.home.pl",
"home.pl"
],
"subject_dn": "CN=*.home.pl",
"issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "8c1c9f5b0af80c91202097ab93b5c6cd38e73e68ac9301b934f35e1a251f4ffb",
"fingerprint": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"issuer": {
"common_name": [
"Certyfikat SSL"
],
"organization": [
"home.pl S.A."
],
"country": [
"PL"
]
},
"subject": {
"common_name": [
"*.home.pl"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vcrofDPSYQ8zufQcUZyheEZ28MbWvlAY060H+WJiqbc/Pc2uZBDMu/J6ubQAwjQKggablqE7O1Q6w2DymSDCheHwN1qfqIX1S5qwn+CDXDlbcFp1avXl1AUjFI/NVrUnMrzUB/Uxjy6J26Fnktnu4+yZNFjN4/x/iosOvvksiG/Qg4XBvaeTKBeFb299xoaFVeIUPX0ECEuUsQ0SNHqKkQ4mkbm9RMlZrH+bO5B1mVWH7VIAtsLk7dykp4nF2pjrcc3og6g+ZsGf/euLsdlu1cEWIZhU16VZUmNTteSi1hL7smz7EY3id4SiO0GWDzSDOm9QmW1ykVDLVc6EPGOvow==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5a69c74f8d014cd11ae9bbf86b03001e7e2b137de7da9b44586627bd0f9a98a3"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
},
{
"fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
},
{
"fingerprint": "949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
},
{
"fingerprint": "d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624",
"subject_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "d75f9129bb5d05492a65ff78e081bcb2"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "smtp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220 home.pl ESMTP Mailsystem\r\n",
"banner_hashes": [
"sha256:4ca45cf40b21da1adb9783c9180366cc2568f241cde91964313075ccc0714e16"
],
"banner_hex": "32323020686f6d652e706c2045534d5450204d61696c73797374656d0d0a",
"certificate": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"discovery_method": "PREDICTIVE_METHOD_7",
"extended_service_name": "SMTP-STARTTLS",
"labels": [
"email"
],
"observed_at": "2023-09-30T17:10:27.995276018Z",
"perspective_id": "PERSPECTIVE_NTT",
"port": 587,
"service_name": "SMTP",
"smtp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"ehlo": "DISPLAY_UTF8",
"start_tls": "DISPLAY_UTF8"
},
"banner": "220 home.pl ESMTP Mailsystem\r\n",
"ehlo": "250-v088.home.net.pl\r\n250-PIPELINING\r\n250-SIZE 157286400\r\n250-ETRN\r\n250-STARTTLS\r\n250-AUTH PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 CHUNKING\r\n",
"start_tls": "220 2.0.0 Ready to start TLS\r\n"
},
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
}
],
"source_ip": "167.248.133.191",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"chain_fps_sha_256": [
"a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624"
],
"leaf_data": {
"names": [
"*.home.pl",
"home.pl"
],
"subject_dn": "CN=*.home.pl",
"issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "8c1c9f5b0af80c91202097ab93b5c6cd38e73e68ac9301b934f35e1a251f4ffb",
"fingerprint": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"issuer": {
"common_name": [
"Certyfikat SSL"
],
"organization": [
"home.pl S.A."
],
"country": [
"PL"
]
},
"subject": {
"common_name": [
"*.home.pl"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vcrofDPSYQ8zufQcUZyheEZ28MbWvlAY060H+WJiqbc/Pc2uZBDMu/J6ubQAwjQKggablqE7O1Q6w2DymSDCheHwN1qfqIX1S5qwn+CDXDlbcFp1avXl1AUjFI/NVrUnMrzUB/Uxjy6J26Fnktnu4+yZNFjN4/x/iosOvvksiG/Qg4XBvaeTKBeFb299xoaFVeIUPX0ECEuUsQ0SNHqKkQ4mkbm9RMlZrH+bO5B1mVWH7VIAtsLk7dykp4nF2pjrcc3og6g+ZsGf/euLsdlu1cEWIZhU16VZUmNTteSi1hL7smz7EY3id4SiO0GWDzSDOm9QmW1ykVDLVc6EPGOvow==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5a69c74f8d014cd11ae9bbf86b03001e7e2b137de7da9b44586627bd0f9a98a3"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
},
{
"fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
},
{
"fingerprint": "949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
},
{
"fingerprint": "d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624",
"subject_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_fingerprint": {
"id": 262,
"os": "CentOS",
"raw": "65160,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "ftp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220-Idea FTP Server 5.2.0 (ekonomik2.home.pl) [89.161.136.214]\r\n220 Ready\r\n",
"banner_hashes": [
"sha256:57615f50577dc7e01832b5ce2c8be54df4a19a633b83e8a99fc33a8a1849b361"
],
"banner_hex": "3232302d49646561204654502053657276657220352e322e302028656b6f6e6f6d696b322e686f6d652e706c29205b38392e3136312e3133362e3231345d0d0a3232302052656164790d0a",
"certificate": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "FTPS",
"ftp": {
"_encoding": {
"banner": "DISPLAY_UTF8"
},
"banner": "220-Idea FTP Server 5.2.0 (ekonomik2.home.pl) [89.161.136.214]\r\n220 Ready\r\n",
"implicit_tls": true,
"status_code": 220,
"status_meaning": "Service ready for new user."
},
"labels": [
"file-sharing"
],
"observed_at": "2023-09-29T14:51:21.753642317Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 990,
"service_name": "FTP",
"source_ip": "162.142.125.214",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"chain_fps_sha_256": [
"a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624"
],
"leaf_data": {
"names": [
"*.home.pl",
"home.pl"
],
"subject_dn": "CN=*.home.pl",
"issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "8c1c9f5b0af80c91202097ab93b5c6cd38e73e68ac9301b934f35e1a251f4ffb",
"fingerprint": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"issuer": {
"common_name": [
"Certyfikat SSL"
],
"organization": [
"home.pl S.A."
],
"country": [
"PL"
]
},
"subject": {
"common_name": [
"*.home.pl"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vcrofDPSYQ8zufQcUZyheEZ28MbWvlAY060H+WJiqbc/Pc2uZBDMu/J6ubQAwjQKggablqE7O1Q6w2DymSDCheHwN1qfqIX1S5qwn+CDXDlbcFp1avXl1AUjFI/NVrUnMrzUB/Uxjy6J26Fnktnu4+yZNFjN4/x/iosOvvksiG/Qg4XBvaeTKBeFb299xoaFVeIUPX0ECEuUsQ0SNHqKkQ4mkbm9RMlZrH+bO5B1mVWH7VIAtsLk7dykp4nF2pjrcc3og6g+ZsGf/euLsdlu1cEWIZhU16VZUmNTteSi1hL7smz7EY3id4SiO0GWDzSDOm9QmW1ykVDLVc6EPGOvow==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5a69c74f8d014cd11ae9bbf86b03001e7e2b137de7da9b44586627bd0f9a98a3"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
},
{
"fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
},
{
"fingerprint": "949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
},
{
"fingerprint": "d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624",
"subject_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "15af977ce25de452b96affa2addb1036"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "imap",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n",
"banner_hashes": [
"sha256:9fa634d81d68ef4e1e3b5f551a9e29411262794be17b6dff29abacd32d69acd2"
],
"banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45204c49544552414c2b20415554483d504c41494e20415554483d4c4f47494e5d20446f7665636f742072656164792e0d0a",
"certificate": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"discovery_method": "IPV4_WALK_FULL_PRIORITY_1",
"extended_service_name": "IMAPS",
"imap": {
"_encoding": {
"banner": "DISPLAY_UTF8"
},
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"labels": [
"email"
],
"observed_at": "2023-09-29T19:42:16.751458535Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 993,
"service_name": "IMAP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Dovecot",
"product": "Dovecot",
"other": {
"family": "Dovecot"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.124",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"chain_fps_sha_256": [
"a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624"
],
"leaf_data": {
"names": [
"*.home.pl",
"home.pl"
],
"subject_dn": "CN=*.home.pl",
"issuer_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "8c1c9f5b0af80c91202097ab93b5c6cd38e73e68ac9301b934f35e1a251f4ffb",
"fingerprint": "9966c35b74925619163b21078b6d98d0e362804ea2ac1a71864f81cb569783a3",
"issuer": {
"common_name": [
"Certyfikat SSL"
],
"organization": [
"home.pl S.A."
],
"country": [
"PL"
]
},
"subject": {
"common_name": [
"*.home.pl"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "vcrofDPSYQ8zufQcUZyheEZ28MbWvlAY060H+WJiqbc/Pc2uZBDMu/J6ubQAwjQKggablqE7O1Q6w2DymSDCheHwN1qfqIX1S5qwn+CDXDlbcFp1avXl1AUjFI/NVrUnMrzUB/Uxjy6J26Fnktnu4+yZNFjN4/x/iosOvvksiG/Qg4XBvaeTKBeFb299xoaFVeIUPX0ECEuUsQ0SNHqKkQ4mkbm9RMlZrH+bO5B1mVWH7VIAtsLk7dykp4nF2pjrcc3og6g+ZsGf/euLsdlu1cEWIZhU16VZUmNTteSi1hL7smz7EY3id4SiO0GWDzSDOm9QmW1ykVDLVc6EPGOvow==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "5a69c74f8d014cd11ae9bbf86b03001e7e2b137de7da9b44586627bd0f9a98a3"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "a95f23b52af10895886fb65323d29a9876ea7d396f805e4ca280d561c26e3dad",
"subject_dn": "C=PL, O=home.pl S.A., CN=Certyfikat SSL",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2"
},
{
"fingerprint": "9e852c59dfc6fd6abd4e17ea80b5f4e56fc04192d107258d54da8a92528670d6",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Global Services CA SHA2",
"issuer_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA"
},
{
"fingerprint": "949424dc2ccaab5e9e80d66e0e3f7deeb3201c607d4315ef4c6f2d93a917279d",
"subject_dn": "C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
},
{
"fingerprint": "d8e0febc1db2e38d00940f37d27d41344d993e734b99d5656d9778d4d8143624",
"subject_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA",
"issuer_dn": "C=PL, O=Unizeto Sp. z o.o., CN=Certum CA"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "475c9302dc42b2751db9edcac3b74891"
},
"transport_fingerprint": {
"id": 262,
"os": "CentOS",
"raw": "65160,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "postgres",
"discovery_method": "PREDICTIVE_METHOD_12",
"extended_service_name": "POSTGRES",
"labels": [
"database"
],
"observed_at": "2023-10-01T14:15:14.543950302Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 5432,
"postgres": {
"supported_versions": "FATAL: unsupported frontend protocol 0.0: server supports 2.0 to 3.0",
"protocol_error": {
"message": "unsupported frontend protocol 255.255: server supports 2.0 to 3.0",
"routine": "ProcessStartupPacket",
"file": "postmaster.c",
"severity_v": "FATAL",
"severity": "FATAL",
"line": "2127",
"code": "0A000"
},
"startup_error": {
"code": "28000",
"line": "2277",
"message": "no PostgreSQL user name specified in startup packet",
"routine": "ProcessStartupPacket",
"severity": "FATAL",
"file": "postmaster.c",
"severity_v": "FATAL"
}
},
"service_name": "POSTGRES",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Postgresql",
"product": "Postgresql",
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.217",
"transport_fingerprint": {
"id": 262,
"os": "CentOS",
"raw": "65160,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "ssh",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "SSH-2.0-HomeSSH-v1.2",
"banner_hashes": [
"sha256:aa9021c894a782228f0df246f2c6b0b1632a2dcbdee94ec6eb073f28609e56ae"
],
"banner_hex": "5353482d322e302d486f6d655353482d76312e32",
"discovery_method": "PREDICTIVE_METHOD_20",
"extended_service_name": "SSH",
"labels": [
"remote-access"
],
"observed_at": "2023-09-30T10:05:40.020316789Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 22222,
"service_name": "SSH",
"source_ip": "162.142.125.11",
"ssh": {
"endpoint_id": {
"_encoding": {
"raw": "DISPLAY_UTF8"
},
"raw": "SSH-2.0-HomeSSH-v1.2",
"protocol_version": "2.0",
"software_version": "HomeSSH-v1.2"
},
"kex_init_message": {
"kex_algorithms": [
"ecdh-sha2-nistp256",
"diffie-hellman-group14-sha1"
],
"host_key_algorithms": [
"ecdsa-sha2-nistp256",
"rsa-sha2-512",
"rsa-sha2-256",
"ssh-rsa",
"ssh-dss"
],
"client_to_server_ciphers": [
"[email protected]",
"[email protected]",
"aes256-ctr",
"aes192-ctr",
"aes128-ctr",
"aes256-cbc",
"aes192-cbc",
"aes128-cbc",
"3des-cbc"
],
"server_to_client_ciphers": [
"aes256-ctr",
"aes192-ctr",
"aes128-ctr"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"client_to_server_compression": [
"none"
],
"server_to_client_compression": [
"none"
],
"first_kex_follows": false
},
"algorithm_selection": {
"kex_algorithm": "ecdh-sha2-nistp256",
"host_key_algorithm": "ecdsa-sha2-nistp256",
"client_to_server_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
},
"server_to_client_alg_group": {
"cipher": "aes128-ctr",
"mac": "hmac-sha2-256",
"compression": "none"
}
},
"server_host_key": {
"fingerprint_sha256": "f9b28551cacfd129cca9106bed5d7e2ada1eb61330af29349c51e17fb664819f",
"ecdsa_public_key": {
"_encoding": {
"b": "DISPLAY_BASE64",
"gx": "DISPLAY_BASE64",
"gy": "DISPLAY_BASE64",
"n": "DISPLAY_BASE64",
"p": "DISPLAY_BASE64",
"x": "DISPLAY_BASE64",
"y": "DISPLAY_BASE64"
},
"b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
"curve": "P-256",
"gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
"gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
"length": 256,
"n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
"p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
"x": "KIT5AWL4NZwBtclOy0V0e0xdqVSiKJ4RFuzgY8ZDirk=",
"y": "qAlN3/ib96TILQKdazmuyGpDkPs1B3ngGCkuWpK2Qs8="
}
},
"hassh_fingerprint": "f0c354503999219c5dc8e5c1a3ca032f"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Poland",
"country_code": "PL",
"city": "Warsaw",
"postal_code": "00-002",
"timezone": "Europe/Warsaw",
"province": "Mazovia",
"coordinates": {
"latitude": 52.22977,
"longitude": 21.01178
}
},
"location_updated_at": "2023-09-20T17:35:22.824344Z",
"autonomous_system": {
"asn": 12824,
"description": "HOMEPL-AS",
"bgp_prefix": "89.161.128.0/17",
"name": "HOMEPL-AS",
"country_code": "PL"
},
"autonomous_system_updated_at": "2023-09-20T17:35:22.824359Z",
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
"dns": {
"names": [
"cloudserver022566.home.pl"
],
"records": {
"cloudserver022566.home.pl": {
"record_type": "A",
"resolved_at": "2023-09-20T21:22:21.593803838Z"
}
},
"reverse_dns": {
"names": [
"cloudserver022566.home.pl"
],
"resolved_at": "2023-09-30T04:28:41.549912607Z"
}
},
"last_updated_at": "2023-10-02T02:00:42.201Z",
"labels": [
"database",
"email",
"file-sharing",
"remote-access"
]
}