13.209.83.233

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 13.209.83.233

## Executive Summary

Intellectual assessment of IP address 13.209.83.233 indicates a low-risk AWS EC2 instance deployed in the Seoul, South Korea region. The IP presents minimal threat indicators, with no active malicious campaigns or known attacker associations detected in current observation windows.

## Infrastructure Profile

IP Address: 13.209.83.233/32
Risk Score: 25 (Low Risk)
ASN: 16509 (Amazon.com, Inc., US)
Organization: Amazon Web Services (AWS)
Region: Asia Pacific (Seoul) Region (ap-northeast-2)
Country: South Korea (KR)
Geographic Coordinates: 37.57°N, 126.98°E
BGP Prefix: 13.209.0.0/16
DNS PTR: ec2-13-209-83-233.ap-northeast-2.compute.amazonaws.com

## Threat Assessment

Current threat indicators show no malicious activity:

Abuse Confidence Score: Not applicable
Known Attacker: False
Spam Source: False
Tor Exit Node: False
Blacklist Count: 0
Threat Feeds: Empty
Campaign Associations: None detected

Network role classification identifies the IP as AWS cloud infrastructure with firewall configuration (no open services detected).

## Neighborhood Analysis

The /24 subnet (13.209.83.0/24) demonstrates clean operational characteristics:

Abuse Density: 0
Classification: mostly_clean
Threat Siblings: 1
Active Siblings: 1
High-Risk Neighbors: 0

## Relationship Graph

Analysis of associated entities reveals:

DNS Associations: Multiple PTR records pointing to ec2-13-209-83-233.ap-northeast-2.compute.amazonaws.com
Network Affiliation: AMAZON-ICN (Amazon Interconnect)
Total Relationships: 105 associations (primarily DNS and network-level)

## Historical Observations

Signal history spanning 24 observations indicates stable infrastructure behavior:

Observation Window: Recent activity recorded through 2026-06-26
ASN Consistency: 16509 (AMAZON-02) confirmed across observations
Geographic Consistency: Seoul, KR location maintained
Cloud Infrastructure: is_cloud flag consistently true
Threat Persistence: 0 days (no persistent malicious activity)

## Service Exposure

Open Ports: None detected
HTTP/TLS Services: Not responding or filtered
Certificates: None detected
Banner Information: No service banners observed

## Recommended Actions

Based on risk profile analysis, no immediate defensive actions are recommended. The IP represents legitimate AWS cloud infrastructure with low risk characteristics. Standard monitoring practices apply.

Classification: LOW RISK — Legitimate cloud infrastructure with no actionable threat indicators.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇰🇷 South Korea
Region	11
City	Seoul
Timezone	Asia/Seoul
Latitude	37.57
Longitude	126.98

🏢 Ownership & Registration

Organization	AWS Asia Pacific (Seoul) Region
ASN	AS16509
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	ec2-13-209-83-233.ap-northeast-2.compute.amazonaws.com
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`ec2-13-209-83-233.ap-northeast-2.compute.amazonaws.com`

🔐 DNS Hygiene

Hygiene Score	80% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Unknown
Service Purpose	Firewalled / No Services
Network Tier	Hosting — Infrastructure provider without advanced routing

No specific classification

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected
Closed Ports	22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	25%	2	4
routing	20%	1	1
services	15%	2	2
ownership	24%	2	3
reputation	26%	1	3
geolocation	31%	2	3
Overall	23%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-10 22:17:08 UTC
Last Seen	2026-06-27 18:13:44 UTC
Profile Built	2026-06-28 12:18:20 UTC
Data Freshness	Live
Signal Types	23
Total Observations	29

🔍 23 signal types · 29 observations collected

This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

13.209.83.233📋 Copy