Host 8.209.255.57
Japan
Alibaba US Technology Co., Ltd.
3.10.0-1160.11.1.el7.x86_64
Software information

Kibana Kibana

tcp/5601

Record summary
Total records
5
Percentage displayed
100.00%
  • Fingerprint: 831cb76b7b05c15729afe1a9f2ea22aa142fbfae752abe91dca88f1289de8ec1

    Found on 2021-08-28 08:36
    IP: 8.209.255.57
    URL: http://8.209.255.57:5601

    Port: 5601

    Through Kibana endpoint
    NoAuth
    Cluster info:
    {
      "_nodes" : {
        "total" : 1,
        "successful" : 1,
        "failed" : 0
      },
      "cluster_name" : "docker-cluster",
      "nodes" : {
        "3U0vHS09TYi3tM5bzKV60A" : {
          "name" : "3U0vHS0",
          "transport_address" : "172.17.0.5:9300",
          "host" : "172.17.0.5",
          "ip" : "172.17.0.5",
          "version" : "6.5.4",
          "build_flavor" : "default",
          "build_type" : "tar",
          "build_hash" : "d2ef93d",
          "total_indexing_buffer" : 103795916,
          "roles" : [
            "master",
            "data",
            "ingest"
          ],
          "attributes" : {
            "ml.machine_memory" : "16655888384",
            "xpack.installed" : "true",
            "ml.max_open_jobs" : "20",
            "ml.enabled" : "true"
          },
          "settings" : {
            "cluster" : {
              "name" : "docker-cluster"
            },
            "node" : {
              "attr" : {
                "xpack" : {
                  "installed" : "true"
                },
                "ml" : {
                  "machine_memory" : "16655888384",
                  "max_open_jobs" : "20",
                  "enabled" : "true"
                }
              },
              "name" : "3U0vHS0"
            },
            "path" : {
              "logs" : "/usr/share/elasticsearch/logs",
              "home" : "/usr/share/elasticsearch"
            },
            "discovery" : {
              "zen" : {
                "minimum_master_nodes" : "1"
              }
            },
            "client" : {
              "type" : "node"
            },
            "http" : {
              "type" : "security4",
              "type.default" : "netty4"
            },
            "transport" : {
              "type" : "security4",
              "features" : {
                "x-pack" : "true"
              },
              "type.default" : "netty4"
            },
            "network" : {
              "host" : "0.0.0.0"
            }
          },
          "os" : {
            "refresh_interval_in_millis" : 1000,
            "name" : "Linux",
            "arch" : "amd64",
            "version" : "3.10.0-1160.11.1.el7.x86_64",
            "available_processors" : 8,
            "allocated_processors" : 8
          },
          "process" : {
            "refresh_interval_in_millis" : 1000,
            "id" : 1,
            "mlockall" : false
          },
          "jvm" : {
            "pid" : 1,
            "version" : "11.0.1",
            "vm_name" : "OpenJDK 64-Bit Server VM",
            "vm_version" : "11.0.1+13",
            "vm_vendor" : "Oracle Corporation",
            "start_time_in_millis" : 1626922068869,
            "mem" : {
              "heap_init_in_bytes" : 1073741824,
              "heap_max_in_bytes" : 1037959168,
              "non_heap_init_in_bytes" : 7667712,
              "non_heap_max_in_bytes" : 0,
              "direct_max_in_bytes" : 0
            },
            "gc_collectors" : [
              "ParNew",
              "ConcurrentMarkSweep"
            ],
            "memory_pools" : [
              "CodeHeap 'non-nmethods'",
              "Metaspace",
              "CodeHeap 'profiled nmethods'",
              "Compressed Class Space",
              "Par Eden Space",
              "Par Survivor Space",
              "CodeHeap 'non-profiled nmethods'",
              "CMS Old Gen"
            ],
            "using_compressed_ordinary_object_pointers" : "true",
            "input_arguments" : [
              "-Xms1g",
              "-Xmx1g",
              "-XX:+UseConcMarkSweepGC",
              "-XX:CMSInitiatingOccupancyFraction=75",
              "-XX:+UseCMSInitiatingOccupancyOnly",
              "-XX:+AlwaysPreTouch",
              "-Xss1m",
              "-Djava.awt.headless=true",
              "-Dfile.encoding=UTF-8",
              "-Djna.nosys=true",
              "-XX:-OmitStackTraceInFastThrow",
              "-Dio.netty.noUnsafe=true",
              "-Dio.netty.noKeySetOptimization=true",
              "-Dio.netty.recycler.maxCapacityPerThread=0",
              "-Dlog4j.shutdownHookEnabled=false",
              "-Dlog4j2.disable.jmx=true",
              "-Djava.io.tmpdir=/tmp/elasticsearch.aO224PIx",
              "-XX:+HeapDumpOnOutOfMemoryError",
              "-XX:HeapDumpPath=data",
              "-XX:ErrorFile=logs/hs_err_pid%p.log",
              "-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m",
              "-Djava.locale.providers=COMPAT",
              "-XX:UseAVX=2",
              "-Des.cgroups.hierarchy.override=/",
              "-Des.path.home=/usr/share/elasticsearch",
              "-Des.path.conf=/usr/share/elasticsearch/config",
              "-Des.distribution.flavor=default",
              "-Des.distribution.type=tar"
            ]
          },
          "thread_pool" : {
            "watcher" : {
              "type" : "fixed",
              "min" : 40,
              "max" : 40,
              "queue_size" : 1000
            },
            "force_merge" : {
              "type" : "fixed",
              "min" : 1,
              "max" : 1,
              "queue_size" : -1
            },
            "security-token-key" : {
              "type" : "fixed",
              "min" : 1,
              "max" : 1,
              "queue_size" : 1000
            },
            "ml_datafeed" : {
              "type" : "fixed",
              "min" : 20,
              "max" : 20,
              "queue_size" : 200
            },
            "fetch_shard_started" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 16,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "listener" : {
              "type" : "fixed",
              "min" : 4,
              "max" : 4,
              "queue_size" : -1
            },
            "ml_autodetect" : {
              "type" : "fixed",
              "min" : 80,
              "max" : 80,
              "queue_size" : 80
            },
            "index" : {
              "type" : "fixed",
              "min" : 8,
              "max" : 8,
              "queue_size" : 200
            },
            "refresh" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 4,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "generic" : {
              "type" : "scaling",
              "min" : 4,
              "max" : 128,
              "keep_alive" : "30s",
              "queue_size" : -1
            },
            "rollup_indexing" : {
              "type" : "fixed",
              "min" : 4,
              "max" : 4,
              "queue_size" : 4
            },
            "warmer" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 4,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "search" : {
              "type" : "fixed_auto_queue_size",
              "min" : 13,
              "max" : 13,
              "queue_size" : 1000
            },
            "ccr" : {
              "type" : "fixed",
              "min" : 32,
              "max" : 32,
              "queue_size" : 100
            },
            "flush" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 4,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "fetch_shard_store" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 16,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "management" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 5,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "ml_utility" : {
              "type" : "fixed",
              "min" : 80,
              "max" : 80,
              "queue_size" : 500
            },
            "get" : {
              "type" : "fixed",
              "min" : 8,
              "max" : 8,
              "queue_size" : 1000
            },
            "analyze" : {
              "type" : "fixed",
              "min" : 1,
              "max" : 1,
              "queue_size" : 16
            },
            "write" : {
              "type" : "fixed",
              "min" : 8,
              "max" : 8,
              "queue_size" : 200
            },
            "snapshot" : {
              "type" : "scaling",
              "min" : 1,
              "max" : 4,
              "keep_alive" : "5m",
              "queue_size" : -1
            },
            "search_throttled" : {
              "type" : "fixed_auto_queue_size",
              "min" : 1,
              "max" : 1,
              "queue_size" : 100
            }
          },
          "transport" : {
            "bound_address" : [
              "0.0.0.0:9300"
            ],
            "publish_address" : "172.17.0.5:9300",
            "profiles" : { }
          },
          "http" : {
            "bound_address" : [
              "0.0.0.0:9200"
            ],
            "publish_address" : "172.17.0.5:9200",
            "max_content_length_in_bytes" : 104857600
          },
          "plugins" : [
            {
              "name" : "analysis-ik",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "IK Analyzer for Elasticsearch",
              "classname" : "org.elasticsearch.plugin.analysis.ik.AnalysisIkPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "ingest-geoip",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Ingest processor that uses looksup geo data based on ip adresses using the Maxmind geo database",
              "classname" : "org.elasticsearch.ingest.geoip.IngestGeoIpPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "ingest-user-agent",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Ingest processor that extracts information from a user agent",
              "classname" : "org.elasticsearch.ingest.useragent.IngestUserAgentPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            }
          ],
          "modules" : [
            {
              "name" : "aggs-matrix-stats",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Adds aggregations whose input are a list of numeric fields and output includes a matrix.",
              "classname" : "org.elasticsearch.search.aggregations.matrix.MatrixAggregationPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "analysis-common",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Adds \"built in\" analyzers to Elasticsearch.",
              "classname" : "org.elasticsearch.analysis.common.CommonAnalysisPlugin",
              "extended_plugins" : [
                "lang-painless"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "ingest-common",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Module for ingest processors that do not require additional security permissions or have large dependencies and resources",
              "classname" : "org.elasticsearch.ingest.common.IngestCommonPlugin",
              "extended_plugins" : [
                "lang-painless"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "lang-expression",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Lucene expressions integration for Elasticsearch",
              "classname" : "org.elasticsearch.script.expression.ExpressionPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "lang-mustache",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Mustache scripting integration for Elasticsearch",
              "classname" : "org.elasticsearch.script.mustache.MustachePlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "lang-painless",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "An easy, safe and fast scripting language for Elasticsearch",
              "classname" : "org.elasticsearch.painless.PainlessPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "mapper-extras",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Adds advanced field mappers",
              "classname" : "org.elasticsearch.index.mapper.MapperExtrasPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "parent-join",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "This module adds the support parent-child queries and aggregations",
              "classname" : "org.elasticsearch.join.ParentJoinPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "percolator",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Percolator module adds capability to index queries and query these queries by specifying documents",
              "classname" : "org.elasticsearch.percolator.PercolatorPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "rank-eval",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "The Rank Eval module adds APIs to evaluate ranking quality.",
              "classname" : "org.elasticsearch.index.rankeval.RankEvalPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "reindex",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "The Reindex module adds APIs to reindex from one index to another or update documents in place.",
              "classname" : "org.elasticsearch.index.reindex.ReindexPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "repository-url",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Module for URL repository",
              "classname" : "org.elasticsearch.plugin.repository.url.URLRepositoryPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "transport-netty4",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Netty 4 based transport implementation",
              "classname" : "org.elasticsearch.transport.Netty4Plugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "tribe",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Tribe module",
              "classname" : "org.elasticsearch.tribe.TribePlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-ccr",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - CCR",
              "classname" : "org.elasticsearch.xpack.ccr.Ccr",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-core",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Core",
              "classname" : "org.elasticsearch.xpack.core.XPackPlugin",
              "extended_plugins" : [ ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-deprecation",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Deprecation",
              "classname" : "org.elasticsearch.xpack.deprecation.Deprecation",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-graph",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Graph",
              "classname" : "org.elasticsearch.xpack.graph.Graph",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-logstash",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Logstash",
              "classname" : "org.elasticsearch.xpack.logstash.Logstash",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-ml",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Machine Learning",
              "classname" : "org.elasticsearch.xpack.ml.MachineLearning",
              "extended_plugins" : [
                "x-pack-core",
                "lang-painless"
              ],
              "has_native_controller" : true
            },
            {
              "name" : "x-pack-monitoring",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Monitoring",
              "classname" : "org.elasticsearch.xpack.monitoring.Monitoring",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-rollup",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Rollup",
              "classname" : "org.elasticsearch.xpack.rollup.Rollup",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-security",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Security",
              "classname" : "org.elasticsearch.xpack.security.Security",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-sql",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "The Elasticsearch plugin that powers SQL for Elasticsearch",
              "classname" : "org.elasticsearch.xpack.sql.plugin.SqlPlugin",
              "extended_plugins" : [
                "x-pack-core",
                "lang-painless"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-upgrade",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Upgrade",
              "classname" : "org.elasticsearch.xpack.upgrade.Upgrade",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            },
            {
              "name" : "x-pack-watcher",
              "version" : "6.5.4",
              "elasticsearch_version" : "6.5.4",
              "java_version" : "1.8",
              "description" : "Elasticsearch Expanded Pack Plugin - Watcher",
              "classname" : "org.elasticsearch.xpack.watcher.Watcher",
              "extended_plugins" : [
                "x-pack-core"
              ],
              "has_native_controller" : false
            }
          ],
          "ingest" : {
            "processors" : [
              {
                "type" : "append"
              },
              {
                "type" : "bytes"
              },
              {
                "type" : "convert"
              },
              {
                "type" : "date"
              },
              {
                "type" : "date_index_name"
              },
              {
                "type" : "dissect"
              },
              {
                "type" : "dot_expander"
              },
              {
                "type" : "drop"
              },
              {
                "type" : "fail"
              },
              {
                "type" : "foreach"
              },
              {
                "type" : "geoip"
              },
              {
                "type" : "grok"
              },
              {
                "type" : "gsub"
              },
              {
                "type" : "join"
              },
              {
                "type" : "json"
              },
              {
                "type" : "kv"
              },
              {
                "type" : "lowercase"
              },
              {
                "type" : "pipeline"
              },
              {
                "type" : "remove"
              },
              {
                "type" : "rename"
              },
              {
                "type" : "script"
              },
              {
                "type" : "set"
              },
              {
                "type" : "set_security_user"
              },
              {
                "type" : "sort"
              },
              {
                "type" : "split"
              },
              {
                "type" : "trim"
              },
              {
                "type" : "uppercase"
              },
              {
                "type" : "urldecode"
              },
              {
                "type" : "user_agent"
              }
            ]
          }
        }
      }
    }
    
    2021-08-28 by ElasticSearchOpenPlugin
    Create report
  • Fingerprint: 0cff49da269b884b91e9f3ae4b618e2e04706e608cbfd0fd8cbfd0fd83315005

    Found on 2021-08-28 08:36
    IP: 8.209.255.57
    URL: http://8.209.255.57:5601

    Port: 5601
    Severity: high
    Leak size: 29.3 MB
    Rows: 42994 rows

    Indices: 2, document count: 42994, size: 29.3 MB
    Through Kibana endpoint
    Found index .kibana_1 with 3 documents (15.9 kB)
    Found index goods with 42991 documents (29.3 MB)
    
    2021-08-28 by ElasticSearchExplorePlugin
    Create report
  • Open service 8.209.255.57:22

    2021-09-07 14:10

    SSH-2.0-OpenSSH_7.4
    
    Found 2021-09-07 by l9explore
    Create report
  • Open service 8.209.255.57:22

    2021-09-03 12:32

    SSH-2.0-OpenSSH_7.4
    
    Found 2021-09-03 by l9explore
    Create report
  • Open service 8.209.255.57:5601

    2021-08-28 08:36

    HTTP/1.1 302 Found
    location: /app/kibana
    kbn-name: kibana
    kbn-xpack-sig: c59599b4f5c399a4cd5b87f5f6fefe62
    cache-control: no-cache
    content-length: 0
    connection: close
    Date: Sat, 28 Aug 2021 08:36:21 GMT
    
    
    Found 2021-08-28 by l9explore
    Create report
Data leak
Size
29.3 MB
Collections
2
Rows
42994
Domain summary
No record