52.229.216.129

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 52.229.216.129

Date: 2026-06-16

---

1. Core Profile

Risk Rating: Low Risk (Risk Score: 25)
Ownership: Microsoft Corporation (ASN 8075, MSFT)
Geolocation: Hong Kong (HK), Latitude 22.31, Longitude 113.91
Network Role: Microsoft Azure Cloud Compute instance (Hosting, Web Server)
Services:

- Open Ports: HTTP (80), HTTPS (443), SSH (22)

- TLS Certificate: Valid (Let’s Encrypt), SANs: `vaanistack.in`, `www.vaanistack.in`

- Server Banner: `nginx/1.24.0 (Ubuntu)`

---

2. Threat & Abuse Indicators

Threat Status: No malware, spam, or attack indicators detected.
Blacklist Status: Not listed on public DNSBLs (0 matches).
Abuse Density: Subnet abuse density: 1 (low risk).
Historical Observations:

- Secure TLS configuration (TLS 1.3, AES-256-GCM).

- No DNS or email authentication (SPF/DKIM/DMArC not configured).

- No Tor exit node or known attacker associations.

---

3. Network Relationships

Subnet: `52.229.216.129/24` (Microsoft Azure subnet).
Neighbors: No active siblings or threat siblings in the subnet.
Cross-Entity Links:

- Linked to Microsoft’s MSFT network (ASN 8075).

- No correlated IPs or campaigns detected.

---

4. Observational Trends

Recent Activity:

- Last observed on 2026-06-16 with HTTP/HTTPS services and SSH access.

- No significant changes in risk scores or network behavior over the past 30 days.

Geolocation Validity: ICMP validation failed (firewall blocking probes), but geolocation aligns with Hong Kong.

---

5. Recommendations

Monitor: Track for unexpected port openings or configuration changes.
Verify: Confirm DNS and email security settings (SPF/DKIM) if this IP hosts public services.
No Immediate Action Required: Low-risk, legitimate cloud infrastructure with no malicious indicators.

End of Briefing

*Generated via IPDebrief intelligence tools. For further analysis, correlate with domain and certificate data.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇭🇰 Hong Kong
Region	HK
City	Hong Kong
Timezone	Asia/Hong_Kong
Latitude	22.31
Longitude	113.91

🏢 Ownership & Registration

Organization	Microsoft Corporation
ASN	AS8075
Network Name	MSFT
CIDR Block	52.224.0.0/11
RIR	ARIN
Country	United States
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16
Closed Ports	25, 3389, 8080, 8443 (3 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16

🔐 TLS Certificate

🔒

CN=vaanistack.in

Issued by CN=YE2, O=Let's Encrypt, C=US

Self-signed: No

SANs	vaanistack.inwww.vaanistack.in
Valid From	2026-06-02T08:46:04+00:00
Valid Until	2026-08-31T08:46:03+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha384ECDSA
Validity Period	89 days
Serial Number	05A3B65B59005FCC1600F28F84262C99E590
Thumbprint	18F2CC853C0AA663AD58AC2BF25ED2486A510D68

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	31%	2	4
routing	13%	1	1
services	30%	2	3
ownership	27%	2	3
reputation	26%	1	3
geolocation	27%	2	3
Overall	26%	10	17

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-06-03 06:16:54 UTC
Last Seen	2026-06-21 10:01:01 UTC
Profile Built	2026-06-21 10:09:03 UTC
Data Freshness	Live
Signal Types	22
Total Observations	23

🔍 22 signal types · 23 observations collected

This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

52.229.216.129📋 Copy

**1. Core Profile**

**2. Threat & Abuse Indicators**

**3. Network Relationships**

**4. Observational Trends**

**5. Recommendations**