Since they have port 80/443 open, good chance there is something you could bite, or if in luck, an older version of SSH living on 22...
EDIT: they are running Nginx on 443.... an older version at that.
Have fun :P
Vulnerability & Exploit Database | Rapid7