168.144.112.158

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 168.144.112.158

*Generated using IPDebrief tools: Profile, History, Relationships, Neighbors*

---

1. Core Profile

Risk Score: 25 (Low Risk)
Ownership: Owned by DigitalOcean, LLC (ASN 14061).
Geolocation:

- Country: India (IN)

- Region: Karnataka

- City: Bengaluru

- Accuracy: ±2250 km (inferred via multi-signal geolocation).

Network Role:

- Cloud Provider: DigitalOcean (CloudCompute, Hosting).

- Subnet: 168.144.112.0/20 (BGP prefix).

- Services: No open ports or TLS certificates detected.

---

2. Threat & Abuse Indicators

Threat Score: 0 (No malicious activity detected).
DNS & Email:

- No PTR records, SPF/DKIM/D MARC records, or email-related threats.

Network Behavior:

- BGP: Route stable (no recent changes).

- DNSSEC: Validated.

- Neighbor Risk: 1 out of 256 IPs in the /24 subnet has a medium risk score (59).

---

3. Historical Observations (Last 30 Days)

Signal Stability:

- Consistent classification as "clean" with no persistent threats.

- Geolocation inferred via 2 signals (confidence: 35%).

Subnet Analysis:

- Subnet abuse density: 0% (no malicious IPs detected).

- No changes in ownership or network role.

---

4. Relationships & Network Context

Linked Entities:

- Network: NET-168-144-0-0-1 (repeated in relationships, possible data redundancy).

- Provider: DigitalOcean (same ASN 14061).

Neighbor IP:

- 168.144.112.115 (risk score: 59, medium risk).

---

5. Actionable Insights for SOC

Monitor Neighbor: The single high-risk neighbor (168.144.112.115) warrants closer scrutiny for potential lateral movement or shared infrastructure risks.
Verify Geolocation: The inferred location in Karnataka, India, should be cross-validated with additional signals (e.g., DNS or TLS geolocation).
No Immediate Action: The IP itself shows no malicious indicators, but ensure network segmentation rules block traffic to the high-risk neighbor.

---

*Generated by IPDebrief. All data derived from observed signals and network intelligence.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇮🇳 India
Region	Karnataka
City	Bengaluru
Timezone	—
Latitude	12.98
Longitude	77.59

🏢 Ownership & Registration

Organization	DigitalOcean, LLC
ASN	AS14061
Network Name	—
CIDR Block	168.144.112.0/20
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	60% (Good)
SPF	Present
DMARC	Present
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
Closed Ports	22, 25, 3389, 8080, 8443 (2 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—

🔐 TLS Certificate

🔒

CN=new-demo-flights.tripxl.com

Issued by CN=E7, O=Let's Encrypt, C=US

Self-signed: No

SANs	new-demo-flights-api.tripxl.comnew-demo-flights.tripxl.com
Valid From	2026-05-18T11:41:57+00:00
Valid Until	2026-08-16T11:41:56+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha384ECDSA
Validity Period	89 days
Serial Number	06CDA4950921E75F73E3724B1A90A3E2E175
Thumbprint	E66A2D5AECBCAD3BADEE95253B52EA6F678AE46C

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	27%	2	4
routing	24%	2	3
services	30%	2	3
ownership	37%	3	6
reputation	26%	1	3
geolocation	35%	2	3
Overall	30%	12	22

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-19 23:49:06 UTC
Last Seen	2026-06-28 10:27:39 UTC
Profile Built	2026-06-29 04:32:51 UTC
Data Freshness	Live
Signal Types	24
Total Observations	29

🔍 24 signal types · 29 observations collected

This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

168.144.112.158📋 Copy

**1. Core Profile**

**2. Threat & Abuse Indicators**

**3. Historical Observations (Last 30 Days)**

**4. Relationships & Network Context**

**5. Actionable Insights for SOC**