167.99.225.143

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 167.99.225.143

## Executive Summary

IP 167.99.225.143 is a low-risk DigitalOcean cloud infrastructure asset with no active threat indicators. The IP resolves to cybersecurity infrastructure (cyberresilience.io) and operates within a clean subnet environment.

## Risk Assessment

Risk Score: 25 (Low Risk)
Provider Score: 0
Authority Score: 0
Abuse Confidence: Not applicable
Classification: Cloud Infrastructure (DigitalOcean)

## Ownership & Location

Organization: DigitalOcean, LLC (AS14061)
Network Block: 167.99.0.0/16 (DIGITALOCEAN-167-99-0-0)
Geolocation: North Bergen, NJ, United States
Geolocation Consensus: True (2 sources)
Route Stability: Unstable

## Technical Profile

DNS Resolution: portscanner-nyc1-05.prod.cyberresilience.io
Domain: cyberresilience.io
Email Authentication: SPF and DMARC configured
Open Services: None detected
TLS/Certificates: Not detected

## Threat Indicators

Known Attacker: No
Tor Exit Node: No
Spam Source: No
Blacklist Count: 0
Active Threats: None detected
Campaign Association: None

## Neighborhood Analysis

Subnet: 167.99.225.143/24
Abuse Density: 0 (Low)
Subnet Classification: Mostly Clean
Total Siblings: 2
Active Siblings: 2
Threat Siblings: 2
Neighbor IP: 167.99.225.27 (Risk Score: 25)

## Historical Observations

Total Observations: 25 signals over monitoring period
Recent Activity: June 21-29, 2026
Operator Score Trend: 0.3478 (Basic)
Threat Persistence: No persistent malicious behavior detected
Ownership Changes: 0

## Relationship Graph

Network Associations: Multiple DIGITALOCEAN-167-99-0-0 network entries
DNS Associations: portscanner-nyc1-05.prod.cyberresilience.io
Total Relationships: 34

## Recommended Actions

No immediate firewall or blocking actions recommended. The IP exhibits low-risk characteristics consistent with legitimate cloud infrastructure.

Monitoring Considerations

DNS Verification: Confirm cyberresilience.io domain ownership and legitimacy
Subnet Context: Monitor subnet 167.99.225.0/24 for correlated activity
Baseline Behavior: No established malicious baseline; treat as benign unless new indicators emerge

## Conclusion

IP 167.99.225.143 represents a low-risk cloud infrastructure endpoint associated with cybersecurity operations infrastructure (cyberresilience.io). The absence of threat indicators, combined with legitimate DNS resolution and clean neighborhood metrics, suggests benign operational use. No defensive actions required at this time.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇺🇸 United States
Region	NJ
City	North Bergen
Timezone	—
Latitude	40.80
Longitude	-74.02

🏢 Ownership & Registration

Organization	DigitalOcean, LLC
ASN	AS14061
Network Name	DIGITALOCEAN-167-99-0-0
CIDR Block	167.99.0.0/16
RIR	ARIN
Country	United States
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	portscanner-nyc1-05.prod.cyberresilience.io
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`portscanner-nyc1-05.prod.cyberresilience.io`

🔐 DNS Hygiene

Hygiene Score	100% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Present

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Firewalled / No Services
Network Tier	Tier 3 — Basic operator with some routing infrastructure

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected
Closed Ports	22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	27%	2	4
routing	13%	1	1
services	19%	2	2
ownership	27%	2	3
reputation	22%	1	3
geolocation	27%	2	3
Overall	22%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-30 23:03:49 UTC
Last Seen	2026-06-29 08:04:58 UTC
Profile Built	2026-06-29 08:17:49 UTC
Data Freshness	Live
Signal Types	24
Total Observations	25

🔍 24 signal types · 25 observations collected

This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

167.99.225.143📋 Copy