## INTELLIGENCE BRIEFING: 20.100.201.184/32
Classification: Microsoft Azure Cloud Infrastructure | Risk Level: Low (25/100)
EXECUTIVE SUMMARY
IP 20.100.201.184 is a Microsoft Corporation (ASN 8075) cloud compute address within Microsoft Azure infrastructure. No malicious indicators detected. IP serves as part of Microsoft's legitimate cloud hosting environment with no active threat activity.
OWNERSHIP & INFRASTRUCTURE
- Organization: Microsoft Corporation (ASN 8075)
- Infrastructure Type: CloudCompute (Microsoft Azure)
- Network Role: Cloud hosting provider
- Geolocation: United States (US)
- Registration: ARIN registry
THREAT ASSESSMENT
- Risk Score: 25/100 (Low Risk)
- Threat Indicators: None detected
- Blacklist Count: 0
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- Campaign Associations: None
Evidence:
- No open ports detected (firewalled/no services exposed)
- No TLS certificates or HTTP banners observed
- No DNS records or email authentication (SPF/DMARC)
- No threat feeds matches or known campaigns
NEIGHBORHOOD ANALYSIS (20.100.201.0/24)
- Subnet Classification: mostly_clean
- Abuse Density: 1 (minimal)
- Total Siblings: 3 active IPs
- Threat Siblings: 3 (all low-risk)
- Neighbor Risk Scores: 20.100.201.159 (25), 20.100.201.203 (25)
OBSERVATION HISTORY
- Total Observations: 19 signals
- Latest Activity: 2026-06-18
- Risk Trend: Stable (no escalation)
- Campaign Likelihood: None
- Threat Persistence: 0 days
- Ownership Changes: 0
RELATIONSHIP GRAPH
- Same Network Entities: 19 relationships to MSFT (Microsoft)
- Network Classification: All relationships identify as Microsoft infrastructure
RECOMMENDED ACTIONS
1. Allow: No blocking required; legitimate cloud infrastructure
2. Monitor: Standard cloud traffic baseline monitoring
3. No Action: No firewall rules or WAF policies needed
SOC ANALYST NOTES
This IP represents Microsoft Azure cloud infrastructure with no anomalous behavior. The IP is properly classified as cloud compute hosting. No incident response actions required. Continue standard monitoring for Microsoft Azure traffic patterns.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:07 UTC |
| Last Seen | 2026-06-27 02:59:55 UTC |
| Profile Built | 2026-06-27 21:07:19 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 24 |
Full dossier details are available via our API.