IPDebrief

18.142.251.88

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IPDEBRIEF INTELLIGENCE BRIEFING

Subject: 18.142.251.88/32

Classification: Defensive Security Assessment

Date: Analysis completed based on current signal data

Status: MONITORED - Low Threat Profile

---

## EXECUTIVE SUMMARY

IP address 18.142.251.88 is a legitimate Amazon Web Services EC2 instance deployed in Singapore (ap-southeast-1 region). The IP registers a moderate risk score of 40/100, primarily attributable to cloud infrastructure classification rather than malicious activity. No active threat indicators, malware campaigns, or known attacker signatures were observed. The IP is classified as a single-service host with SSH services enabled, consistent with standard cloud deployment patterns.

---

## TECHNICAL PROFILE

Infrastructure Ownership:

DNS Resolution:

Active Services:

Network Classification:

---

## THREAT INTELLIGENCE

Current Risk Assessment: Moderate Risk (Score: 40/100)

DNSBL Status:

---

## OBSERVATION HISTORY (23 Signals)

Temporal Analysis:

Signal Confidence Trends:

No escalation in threat indicators observed over the monitoring period.

---

## NETWORK RELATIONSHIPS

DNS Associations:

Network Relationships:

---

## SUBNET ANALYSIS (18.142.251.0.0/24)

Neighborhood Classification:

No elevated risk observed in adjacent IP addresses.

---

## SECURITY ACTIONS & RECOMMENDATIONS

Firewall/Blocking Decision: NO ACTION REQUIRED

Rationale:

Monitoring Considerations:

---

## INTELLIGENCE CONCLUSION

IP 18.142.251.88 is a legitimate Amazon Web Services EC2 instance with no evidence of malicious activity. The moderate risk score (40/100) reflects standard cloud infrastructure risk factors rather than malicious intent. No security actions or blocking measures are warranted. SOC teams may classify this as a benign cloud asset requiring standard cloud traffic monitoring.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΈπŸ‡¬ Singapore
RegionSG
CitySingapore
TimezoneAsia/Singapore
Latitude1.35
Longitude103.82

🏒 Ownership & Registration

OrganizationAmazon Data Services Singapore
ASNAS16509
Network NameAMAZON-SIN
CIDR Block18.142.0.0/15
RIRARIN
CountrySingapore
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-18-142-251-88.ap-southeast-1.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-18-142-251-88.ap-southeast-1.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureUnknown
Service PurposeSingle-Service Host
Network TierTier 3 β€” Basic operator with some routing infrastructure
No specific classification

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
22sshtcp
Closed Ports25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”
SSH VersionSSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
35%
23
routing
17%
11
services
24%
22
ownership
35%
23
reputation
17%
12
geolocation
17%
11
Overall24%912
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-10 14:50:37 UTC
Last Seen2026-06-21 17:34:54 UTC
Profile Built2026-06-21 17:43:33 UTC
Data FreshnessLive
Signal Types22
Total Observations25
πŸ” 22 signal types Β· 25 observations collected
This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.