157.230.171.79
IP Intelligence Briefing: 157.230.171.79
Date: 2026-06-10
---
**1. Profile Summary**
- Risk Score: 25 (Low Risk)
- Provider: DigitalOcean, LLC (ASN 14061)
- Geolocation: Santa Clara, CA, US (geo-validated with 2500km accuracy)
- Network Role: CloudCompute (DigitalOcean infrastructure)
- Services: SSH (port 22, OpenSSH 8.9p1)
- Threat Indicators: No malicious activity detected (zero threat indicators, blacklist count 0).
---
**2. Observation History**
- Stability: Stable over the past 30 days (no significant signal changes).
- Risk Trends: Consistent low-risk profile with no upward trends.
- Key Signals:
- DNS resolution to `prod-boron-sfo2-35.do.binaryedge.ninja` (confirmed).
- BGP routing stability (no route changes in 30 days).
- DNSSEC validation and SPF records present.
---
**3. Relationships**
- DNS Associations:
- Linked to `prod-boron-sfo2-35.do.binaryedge.ninja` (hostname).
- Network Relationships:
- Same network as `DIGITALOCEAN-157-230-0-0` (ASN 14061).
- No Suspicious Links: No connections to known malicious organizations, campaigns, or subnets.
---
**4. Neighborhood Analysis**
- Subnet: 157.230.171.79/24
- Abuse Density: 1 (mostly clean, inherited risk 2).
- Neighbors: No neighboring IPs found (likely a /32 host).
- Subnet Context: Low-risk subnet with no active malicious siblings.
---
**5. Recommendations**
- Monitoring: No immediate action required.
- Mitigation: No firewall rules or blocks needed for this IP.
- Context: Legitimate DigitalOcean cloud instance hosting a standard SSH service.
---
Conclusion:
157.230.171.79 is a low-risk, legitimate IP associated with DigitalOceanβs cloud infrastructure. No signs of malicious activity, and all observed signals align with benign cloud-hosted services. No further action is required, but continued monitoring is advised for any anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | prod-boron-sfo2-35.do.binaryedge.ninja |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | prod-boron-sfo2-35.do.binaryedge.ninja |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 32% | 1 | 3 |
| geolocation | 26% | 2 | 2 |
| Overall | 22% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-24 18:40:02 UTC |
| Last Seen | 2026-06-29 00:21:52 UTC |
| Profile Built | 2026-06-29 06:23:56 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.