91.206.201.16
As of: Feb 04, 2023 5:10am UTC |
Latest
{
"ip": "91.206.201.16",
"services": [
{
"_decoded": "ftp",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "220 ::ffff:91.206.201.16 FTP server ready\r\n",
"banner_hashes": [
"sha256:4ef57f54a172b0a024aacda557d4e2f0c994d197f647ccb8e2571ec86de378d1"
],
"banner_hex": "323230203a3a666666663a39312e3230362e3230312e313620465450207365727665722072656164790d0a",
"certificate": "488b27a65cb90257a24d0db5ec2a1ab41c69d20c44d6d5dcc3396479c98cdca8",
"extended_service_name": "FTPes",
"ftp": {
"_encoding": {
"banner": "DISPLAY_UTF8",
"auth_tls_response": "DISPLAY_UTF8"
},
"banner": "220 ::ffff:91.206.201.16 FTP server ready\r\n",
"auth_tls_response": "234 AUTH TLS successful\r\n",
"status_code": 220,
"status_meaning": "Service ready for new user.",
"implicit_tls": false
},
"observed_at": "2023-02-03T21:30:02.034115400Z",
"perspective_id": "PERSPECTIVE_TELIA",
"port": 21,
"service_name": "FTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
}
],
"source_ip": "167.94.146.58",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "488b27a65cb90257a24d0db5ec2a1ab41c69d20c44d6d5dcc3396479c98cdca8",
"chain_fps_sha_256": [
"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd"
],
"leaf_data": {
"names": [
"*.ftp.tools"
],
"subject_dn": "CN=*.ftp.tools",
"issuer_dn": "C=US, O=Let's Encrypt, CN=R3",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "25bb90a690dd464ea95f8723a3deacad1043533b95063ca104b1517addbe929d",
"fingerprint": "488b27a65cb90257a24d0db5ec2a1ab41c69d20c44d6d5dcc3396479c98cdca8",
"issuer": {
"common_name": [
"R3"
],
"organization": [
"Let's Encrypt"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"*.ftp.tools"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "qLvSmB6oM60bClvZjlvz8phL633FyPFOjAwPJM/tVcdOJzqIIKt2n8HOYNgH0bYqKcL2GVJnFDLyr5SkTckRHWAiyrhrLd7QjwXyCrte17T6bE4EFVx9Bc0/Ra42np3c2qvjbqNSTrMSrkX2m1T1rE8vps/RNn+g+tcmKx5FLljUkRiNAC4gEUH6OSgBzCVoJm1LwdNwnFGLdsRsmfZMBjTM8JfXmbaRU/V2b9FY+DOfELH3sB70X1tbxrvpko4Huqz5iBI+RB8vGH1TetDg1amyFN7G9Po1hcpHlx4V/D1q1v+ShgoWcfff62jN5KW579IqSzawF+8WTeG5fnBcQQ==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "d94bdc68465ac04328c100aa565f07225f462dfd7adc5ae9a512a93034b49de1"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
"subject_dn": "C=US, O=Let's Encrypt, CN=R3",
"issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "0debd3853f330c574b05e0b6d882dc27"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"63dbee27-c09\"\r\nx-ray: wn570:0.000/\r\nContent-Encoding: gzip\r\n",
"banner_hashes": [
"sha256:8f6b14b42d28f40f7715039e94f09302358400b9354bdacec61e84fff1c36208"
],
"banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a206e67696e780d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a455461673a20572f2236336462656532372d633039220d0a782d7261793a20776e3537303a302e3030302f0d0a436f6e74656e742d456e636f64696e673a20677a69700d0a",
"extended_service_name": "HTTP",
"http": {
"request": {
"method": "GET",
"uri": "http://91.206.201.16/",
"headers": {
"Accept": [
"*/*"
],
"_encoding": {
"Accept": "DISPLAY_UTF8",
"User_Agent": "DISPLAY_UTF8"
},
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 403,
"status_reason": "Forbidden",
"headers": {
"Etag": [
"W/\"63dbee27-c09\""
],
"_encoding": {
"Etag": "DISPLAY_UTF8",
"X_Ray": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Server": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8"
},
"X_Ray": [
"wn570:0.000/"
],
"Connection": [
"keep-alive"
],
"Content_Type": [
"text/html"
],
"Server": [
"nginx"
],
"Date": [
"<REDACTED>"
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>403 Forbidden - nginx</title>",
"<meta charset=\"UTF-8\">",
"<meta name=\"viewport\" content=\"width=device-width\">"
],
"body_size": 3081,
"body": "<!doctype html>\n<html>\n<head>\n <title>403 Forbidden - nginx</title>\n <meta charset=\"UTF-8\">\n <meta name=\"viewport\" content=\"width=device-width\">\n <link href='https://fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic' rel='stylesheet' type='text/css'>\n <style>\n body {\n background-color: #f1f4f5;\n color: #37474f;\n line-height: 1.4;\n font-family: 'Open Sans', sans-serif;\n margin: 0;\n padding: 0;\n }\n .error_code {\n display: block;\n font-size: 92px;\n font-weight: 700;\n margin-top: -25px;\n }\n .error_brief {\n display: block;\n font-size: 18px;\n font-weight: 700;\n margin-bottom: 15px;\n }\n .help_button, .fix_button {\n background-color: #399bff;\n color: #fff;\n margin-top: 15px;\n font-size: 14px;\n padding: 7px 20px 7px 20px;\n border: none;\n border-radius: 3px;\n vertical-align: middle;\n cursor: pointer;\n }\n .fix_button {\n background-color: #38ad41;\n }\n #fix_details {\n margin-top: 40px;\n visibility: hidden;\n opacity: 0;\n transition: visibility 0.3s, opacity 0.3s linear;\n }\n </style>\n \n <script language=\"JavaScript\">\n function toggleHelp() {\n var e = document.getElementById(\"fix_details\");\n if (e.style.visibility == 'visible') {\n e.style.visibility = 'hidden';\n e.style.opacity = 0;\n } else {\n e.style.visibility = 'visible';\n e.style.opacity = 1;\n }\n }\n </script>\n</head>\n<body>\n\n<div style=\"display: table; position: absolute; height: 100%; width: 100%;\">\n <div style=\"display: table-cell; vertical-align: middle; padding: 0 40px;\">\n <div style=\"margin-left: auto; margin-right: auto; width: 520px;\">\n <div style=\"float:left; width:200px; text-align: center; padding-right: 20px;\">\n <span class=\"error_code\">403</span>\n <span class=\"error_description\">Forbidden</span>\n </div>\n <div style=\"float:left; width:300px;\">\n <span class=\"error_brief\">Access denied</span>\n <span class=\"error_detail\">The index file may not be loaded or the permissions for it are incorrectly specified.</span>\n <br>\n <input type=\"button\" value=\"How to fix it?\" class=\"help_button\" onclick=\"toggleHelp()\">\n </div>\n <div style=\"clear:both\"></div>\n <div id=\"fix_details\">\n If you are a site administrator, this article will help to correct this error\n <a href=\"https://www.ukraine.com.ua/faq/oshibka-403-forbidden.html\">Error 403 Forbidden</a> in our faq.\n </div>\n </div>\n </div>\n</div>\n\n</body>\n</html>",
"body_hashes": [
"sha256:d4b364a2f0355d9b5c87809b05b63f005adad30f0e910bb1fa6c6ea70ede404f",
"sha1:39e2b084ba632215a9650f6fe9b151d1fe1341d3"
],
"body_hash": "sha1:39e2b084ba632215a9650f6fe9b151d1fe1341d3",
"html_title": "403 Forbidden - nginx"
},
"supports_http2": false
},
"observed_at": "2023-02-03T05:46:48.471983633Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 80,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "nginx",
"product": "nginx",
"other": {
"family": "nginx"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "167.94.138.120",
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "http",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: <REDACTED>\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"63dbee27-c09\"\r\nx-ray: wn570:0.000/\r\nContent-Encoding: gzip\r\n",
"banner_hashes": [
"sha256:8f6b14b42d28f40f7715039e94f09302358400b9354bdacec61e84fff1c36208"
],
"banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a206e67696e780d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a455461673a20572f2236336462656532372d633039220d0a782d7261793a20776e3537303a302e3030302f0d0a436f6e74656e742d456e636f64696e673a20677a69700d0a",
"certificate": "6f435ddd9049d8cfecadf1a524c5ae97bb484ff9d73cfcee1c5100b3f8b1470c",
"extended_service_name": "HTTPS",
"http": {
"request": {
"method": "GET",
"uri": "https://91.206.201.16/",
"headers": {
"User_Agent": [
"Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
],
"_encoding": {
"User_Agent": "DISPLAY_UTF8",
"Accept": "DISPLAY_UTF8"
},
"Accept": [
"*/*"
]
}
},
"response": {
"protocol": "HTTP/1.1",
"status_code": 403,
"status_reason": "Forbidden",
"headers": {
"Server": [
"nginx"
],
"_encoding": {
"Server": "DISPLAY_UTF8",
"Content_Type": "DISPLAY_UTF8",
"Connection": "DISPLAY_UTF8",
"Date": "DISPLAY_UTF8",
"X_Ray": "DISPLAY_UTF8",
"Etag": "DISPLAY_UTF8"
},
"Content_Type": [
"text/html"
],
"Connection": [
"keep-alive"
],
"Date": [
"<REDACTED>"
],
"X_Ray": [
"wn570:0.000/"
],
"Etag": [
"W/\"63dbee27-c09\""
]
},
"_encoding": {
"html_tags": "DISPLAY_UTF8",
"body": "DISPLAY_UTF8",
"body_hash": "DISPLAY_UTF8",
"html_title": "DISPLAY_UTF8"
},
"html_tags": [
"<title>403 Forbidden - nginx</title>",
"<meta charset=\"UTF-8\">",
"<meta name=\"viewport\" content=\"width=device-width\">"
],
"body_size": 3081,
"body": "<!doctype html>\n<html>\n<head>\n <title>403 Forbidden - nginx</title>\n <meta charset=\"UTF-8\">\n <meta name=\"viewport\" content=\"width=device-width\">\n <link href='https://fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic' rel='stylesheet' type='text/css'>\n <style>\n body {\n background-color: #f1f4f5;\n color: #37474f;\n line-height: 1.4;\n font-family: 'Open Sans', sans-serif;\n margin: 0;\n padding: 0;\n }\n .error_code {\n display: block;\n font-size: 92px;\n font-weight: 700;\n margin-top: -25px;\n }\n .error_brief {\n display: block;\n font-size: 18px;\n font-weight: 700;\n margin-bottom: 15px;\n }\n .help_button, .fix_button {\n background-color: #399bff;\n color: #fff;\n margin-top: 15px;\n font-size: 14px;\n padding: 7px 20px 7px 20px;\n border: none;\n border-radius: 3px;\n vertical-align: middle;\n cursor: pointer;\n }\n .fix_button {\n background-color: #38ad41;\n }\n #fix_details {\n margin-top: 40px;\n visibility: hidden;\n opacity: 0;\n transition: visibility 0.3s, opacity 0.3s linear;\n }\n </style>\n \n <script language=\"JavaScript\">\n function toggleHelp() {\n var e = document.getElementById(\"fix_details\");\n if (e.style.visibility == 'visible') {\n e.style.visibility = 'hidden';\n e.style.opacity = 0;\n } else {\n e.style.visibility = 'visible';\n e.style.opacity = 1;\n }\n }\n </script>\n</head>\n<body>\n\n<div style=\"display: table; position: absolute; height: 100%; width: 100%;\">\n <div style=\"display: table-cell; vertical-align: middle; padding: 0 40px;\">\n <div style=\"margin-left: auto; margin-right: auto; width: 520px;\">\n <div style=\"float:left; width:200px; text-align: center; padding-right: 20px;\">\n <span class=\"error_code\">403</span>\n <span class=\"error_description\">Forbidden</span>\n </div>\n <div style=\"float:left; width:300px;\">\n <span class=\"error_brief\">Access denied</span>\n <span class=\"error_detail\">The index file may not be loaded or the permissions for it are incorrectly specified.</span>\n <br>\n <input type=\"button\" value=\"How to fix it?\" class=\"help_button\" onclick=\"toggleHelp()\">\n </div>\n <div style=\"clear:both\"></div>\n <div id=\"fix_details\">\n If you are a site administrator, this article will help to correct this error\n <a href=\"https://www.ukraine.com.ua/faq/oshibka-403-forbidden.html\">Error 403 Forbidden</a> in our faq.\n </div>\n </div>\n </div>\n</div>\n\n</body>\n</html>",
"body_hashes": [
"sha256:d4b364a2f0355d9b5c87809b05b63f005adad30f0e910bb1fa6c6ea70ede404f",
"sha1:39e2b084ba632215a9650f6fe9b151d1fe1341d3"
],
"body_hash": "sha1:39e2b084ba632215a9650f6fe9b151d1fe1341d3",
"html_title": "403 Forbidden - nginx"
},
"supports_http2": true
},
"jarm": {
"_encoding": {
"fingerprint": "DISPLAY_HEX",
"cipher_and_version_fingerprint": "DISPLAY_HEX",
"tls_extensions_sha256": "DISPLAY_HEX"
},
"fingerprint": "29d29d00029d29d21c42d42d000000bdfc58c9a46434368cf60aa440385763",
"cipher_and_version_fingerprint": "29d29d00029d29d21c42d42d000000",
"tls_extensions_sha256": "bdfc58c9a46434368cf60aa440385763",
"observed_at": "2023-01-22T15:26:49.565017733Z"
},
"observed_at": "2023-02-03T10:38:08.752209320Z",
"perspective_id": "PERSPECTIVE_HE",
"port": 443,
"service_name": "HTTP",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:*",
"part": "a",
"vendor": "nginx",
"product": "nginx",
"other": {
"family": "nginx"
},
"source": "OSI_APPLICATION_LAYER"
}
],
"source_ip": "162.142.125.213",
"tls": {
"version_selected": "TLSv1_3",
"cipher_selected": "TLS_AES_256_GCM_SHA384",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "6f435ddd9049d8cfecadf1a524c5ae97bb484ff9d73cfcee1c5100b3f8b1470c",
"chain_fps_sha_256": [
"67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
"6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"
],
"leaf_data": {
"names": [
"default-ssl.default-host.net"
],
"subject_dn": "CN=default-ssl.default-host.net",
"issuer_dn": "C=US, O=Let's Encrypt, CN=R3",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "6616c06b8be05c5070c346a296d67bd276bf60a43b7478899b99a40dc4c2f8bd",
"fingerprint": "6f435ddd9049d8cfecadf1a524c5ae97bb484ff9d73cfcee1c5100b3f8b1470c",
"issuer": {
"common_name": [
"R3"
],
"organization": [
"Let's Encrypt"
],
"country": [
"US"
]
},
"subject": {
"common_name": [
"default-ssl.default-host.net"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "rv5MvJvIaxGnC/d7Ynmx934k8meEy/gSi8415Ed4861pVY7zSUc+p16rcgd9PkZH6q+ny5A3QSHSLED+8EBRU9n7qRfegA5pvqhQ478VgWuL6urXJZQloUKBkv0IJTk7wnd2uW+4yCQIqieOMML8hnNG5rJtDHOoYQDM0syFD77U54UhJqIjXv/148h8DnWlnROk6j1wJ04KYRva0YxxoCJrqy58NAiwoc6UJvF8zrt9kDrvMOpsVSx4yntaQhxE1QvVKioN5a/A9XbGm8LaiyvMXvJi5YSlEGaZtYgflJ4LiZg3iZriwxe0r1W5L1NuhIfKBDfP4H7Ot3B5CN7hiw==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "f7829f2e1e1e4010619f6fffa93c89ba2a2e5015b4e5916ba7f8ba6ad113a156"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
"subject_dn": "C=US, O=Let's Encrypt, CN=R3",
"issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
},
{
"fingerprint": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
"subject_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1",
"issuer_dn": "O=Digital Signature Trust Co., CN=DST Root CA X3"
}
]
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "15af977ce25de452b96affa2addb1036"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
},
{
"_decoded": "mysql",
"_encoding": {
"banner": "DISPLAY_UTF8",
"certificate": "DISPLAY_HEX",
"banner_hex": "DISPLAY_HEX"
},
"banner": "5.7.33-36-log",
"banner_hashes": [
"sha256:d1ada35075cd65af998103219aea442f65791d4b58a4cc7f107da60182ea6229"
],
"banner_hex": "352e372e33332d33362d6c6f67",
"certificate": "0dde54a7976c4fea20936e7338da8c0a58022014f43e640583ca4b982d7bb056",
"extended_service_name": "MYSQL",
"mysql": {
"protocol_version": 10,
"server_version": "5.7.33-36-log",
"connection_id": 686196007,
"_encoding": {
"auth_plugin_data": "DISPLAY_HEX"
},
"auth_plugin_data": "25046b62567e7b0c033b464c0f7c574e33615a2500",
"character_set": 23,
"status_flags": {
"SERVER_STATUS_AUTOCOMMIT": true
},
"capability_flags": {
"CLIENT_NO_SCHEMA": true,
"CLIENT_CAN_HANDLE_EXPIRED_PASSWORDS": true,
"CLIENT_PS_MULTI_RESULTS": true,
"CLIENT_CONNECT_WITH_DB": true,
"CLIENT_SESSION_TRACK": true,
"CLIENT_IGNORE_SPACE": true,
"CLIENT_ODBC": true,
"CLIENT_DEPRECATED_EOF": true,
"CLIENT_LONG_PASSWORD": true,
"CLIENT_RESERVED": true,
"CLIENT_INTERACTIVE": true,
"CLIENT_CONNECT_ATTRS": true,
"CLIENT_SSL": true,
"CLIENT_COMPRESS": true,
"CLIENT_PLUGIN_AUTH_LEN_ENC_CLIENT_DATA": true,
"CLIENT_PLUGIN_AUTH": true,
"CLIENT_FOUND_ROWS": true,
"CLIENT_LOCAL_FILES": true,
"CLIENT_LONG_FLAG": true,
"CLIENT_TRANSACTIONS": true,
"CLIENT_IGNORE_SIGPIPE": true,
"CLIENT_SECURE_CONNECTION": true,
"CLIENT_MULTI_STATEMENTS": true,
"CLIENT_PROTOCOL_41": true,
"CLIENT_MULTI_RESULTS": true
},
"auth_plugin_name": "mysql_native_password",
"error_code": 0
},
"observed_at": "2023-02-03T13:11:46.824413724Z",
"perspective_id": "PERSPECTIVE_TATA",
"port": 3306,
"service_name": "MYSQL",
"software": [
{
"uniform_resource_identifier": "cpe:2.3:a:oracle:mysql:5.7.33\\-36:*:*:*:*:*:*:*",
"part": "a",
"vendor": "Oracle",
"product": "MySQL",
"version": "5.7.33-36",
"other": {
"family": "MySQL"
},
"source": "OSI_APPLICATION_LAYER"
},
{
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
}
],
"source_ip": "167.94.138.47",
"tls": {
"version_selected": "TLSv1_2",
"cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"certificates": {
"_encoding": {
"leaf_fp_sha_256": "DISPLAY_HEX",
"chain_fps_sha_256": "DISPLAY_HEX"
},
"leaf_fp_sha_256": "0dde54a7976c4fea20936e7338da8c0a58022014f43e640583ca4b982d7bb056",
"chain_fps_sha_256": [
"02a1dec7a4c59c56d5c062e48f15ef9051d784f9e9eb8df38b7370813f9bcdbc"
],
"leaf_data": {
"subject_dn": "CN=MySQL_Server_5.7.16-10_Auto_Generated_Server_Certificate",
"issuer_dn": "CN=MySQL_Server_5.7.16-10_Auto_Generated_CA_Certificate",
"pubkey_bit_size": 2048,
"pubkey_algorithm": "RSA",
"tbs_fingerprint": "6e14c2446f6cc379448dac5bc7a9ac203d0dc53932092b4ba2f48d5a0e406d2c",
"fingerprint": "0dde54a7976c4fea20936e7338da8c0a58022014f43e640583ca4b982d7bb056",
"issuer": {
"common_name": [
"MySQL_Server_5.7.16-10_Auto_Generated_CA_Certificate"
]
},
"subject": {
"common_name": [
"MySQL_Server_5.7.16-10_Auto_Generated_Server_Certificate"
]
},
"public_key": {
"key_algorithm": "RSA",
"rsa": {
"_encoding": {
"modulus": "DISPLAY_BASE64",
"exponent": "DISPLAY_BASE64"
},
"modulus": "oEb9VW7Q5Z2CMaK/j+ju88EWBxdKarvt2Tqa3INoBlX9Psb8mXzbWMo8jgweJ7g4myDZ/jmFpCLXEENATbRB7E6MID7pIFiJBigrddOSakW40LwCYGCVjyP041HVpq9BPJrGfWj8zuks4m0MLGz/sCADeX/L42udVUzWDEpnJqZ3J6Re26iYPJwrgpmPioZUbNhMDDsKUSCzEsQatPwqvs4YhS6vL8I16KIaj8OF/BanVDdPz4zT76cyDC47eCNSAM5Wrxi+xyz+qIZ6uH1K9F4Lg8cm/lrBPg/2hqExRHcD6+ZgJIsFdMQfJq6V5SEqQ7ShjfUpxjDkZHoFsol45w==",
"exponent": "AAEAAQ==",
"length": 256
},
"fingerprint": "b1aeb1f6f1dad21492a6a1edbeab6e97ebe5f5ff70eaeb78a9f2ec16dcf1bcd2"
},
"signature": {
"signature_algorithm": "SHA256-RSA",
"self_signed": false
}
},
"chain": [
{
"fingerprint": "02a1dec7a4c59c56d5c062e48f15ef9051d784f9e9eb8df38b7370813f9bcdbc",
"subject_dn": "CN=MySQL_Server_5.7.16-10_Auto_Generated_CA_Certificate",
"issuer_dn": "CN=MySQL_Server_5.7.16-10_Auto_Generated_CA_Certificate"
}
]
},
"server_key_exchange": {
"ec_params": {
"named_curve": 23
}
},
"_encoding": {
"ja3s": "DISPLAY_HEX"
},
"ja3s": "303951d4c50efb2e991652225a6f02b1"
},
"transport_fingerprint": {
"id": 72,
"os": "Ubuntu / Debian / CentOS",
"raw": "28960,64,true,MSTNW,1460,false,false"
},
"transport_protocol": "TCP",
"truncated": false
}
],
"location": {
"continent": "Europe",
"country": "Ukraine",
"country_code": "UA",
"postal_code": "",
"timezone": "Europe/Kyiv",
"coordinates": {
"latitude": 50.4522,
"longitude": 30.5287
},
"registered_country": "Ukraine",
"registered_country_code": "UA"
},
"location_updated_at": "2023-01-23T21:37:42.828728Z",
"autonomous_system": {
"asn": 200000,
"description": "UKRAINE-AS",
"bgp_prefix": "91.206.200.0/23",
"name": "UKRAINE-AS",
"country_code": "UA"
},
"autonomous_system_updated_at": "2023-02-03T17:25:58.970829Z",
"operating_system": {
"uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
"part": "o",
"product": "linux",
"source": "OSI_TRANSPORT_LAYER"
},
"dns": {
"names": [
"web142.default-host.net"
],
"records": {
"web142.default-host.net": {
"record_type": "A",
"resolved_at": "2023-01-22T15:46:24.827372901Z"
}
},
"reverse_dns": {
"names": [
"web142.default-host.net"
],
"resolved_at": "2023-01-13T14:46:05.434932759Z"
}
},
"last_updated_at": "2023-02-04T05:10:55.599Z"
}