Host 173.236.233.38
United States
Software information
nginx
tcp/443
-
SSH is potenitally vulnerable
WARNING: This plugin will generate false positive and is purely informative:
regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)
First seen 2025-12-09 17:21
Last seen 2026-02-01 16:38
Open for 53 days-
Severity: info
Fingerprint: 3f43e0ebb5dce37ab8b59eb53ea6237e8f56bf578f56bf578f56bf578f56bf57Found potentially vulnerable SSH version: SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.13 WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
Found on 2026-02-01 16:38
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2021-11-06 04:11-
Severity: high
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522514b74da[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] fetch = +refs/heads/*:refs/remotes/origin/* url = https://ethanjames@bitbucket.org/ethanjames/thestorystudio.org.git [branch "master"] remote = origin merge = refs/heads/master
Found on 2021-11-06 04:11291 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.IP: 173.236.233.38
Domain: www.thestorystudio.org
Port: 443
URL: https://www.thestorystudio.org/.git/configFirst seen 2021-07-29 12:54
Last seen 2021-11-06 04:11
Open for 99 days-
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522514b74da
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] fetch = +refs/heads/*:refs/remotes/origin/* url = https://ethanjames@bitbucket.org/ethanjames/thestorystudio.org.git [branch "master"] remote = origin merge = refs/heads/master
Found on 2021-07-29 12:54291 Bytes
-
-
Open service 173.236.233.38:443 ยท www.baystrength.com
2026-01-31 23:32
HTTP/1.1 200 OK Server: nginx Date: Sat, 31 Jan 2026 23:32:34 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Pingback: https://www.baystrength.com/xmlrpc.php Permissions-Policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") Link: <https://www.baystrength.com/wp-json/>; rel="https://api.w.org/" Link: <https://www.baystrength.com/wp-json/wp/v2/pages/116>; rel="alternate"; title="JSON"; type="application/json" Link: <https://www.baystrength.com/>; rel=shortlink Expires: Sat, 31 Jan 2026 23:32:34 GMT Cache-Control: max-age=0 X-Cache-Status: HIT X-Rocket-Nginx-Serving-Static: MISS Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Referrer-Policy: no-referrer-when-downgrade Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:;
Found 2026-01-31 by HttpPluginCreate report
-
Open service 173.236.233.38:22
2026-01-22 16:36
Found 2026-01-22 by SSHOpenPluginCreate report
-
Open service 173.236.233.38:22
2026-01-08 16:59
Found 2026-01-08 by SSHOpenPluginCreate report
-
Open service 173.236.233.38:22
2026-01-01 16:43
Found 2026-01-01 by SSHOpenPluginCreate report
-
Open service 173.236.233.38:22
2025-12-23 22:20
Found 2025-12-23 by SSHOpenPluginCreate report