66.132.172.129
IP Intelligence Briefing: 66.132.172.129
Date: 2026-06-18
---
**1. Risk Profile**
- Overall Risk: Moderate (Risk Score: 50)
- Ownership: Censys, Inc. (ASN 398324)
- Geolocation: Miami, FL, US (ARIN registry)
- Threat Indicators: No malicious indicators, spam, or known attacker associations.
- Network Role: Firewalled system with no open services or TLS certificates.
---
**2. Observation History**
- Recent Activity (2026-06-18):
- DNS associations with `censys-scanner.com` (likely scanning activity).
- Subnet abuse density: 48.94% (mixed classification).
- No persistent malicious behavior or threat persistence.
---
**3. Relationships**
- Key Associations:
- Linked to `censys-scanner.com` via DNS (PTR hostname).
- Same subnet (`66.132.172.0/24`) with 94 sibling IPs.
- No direct connections to known malicious domains or organizations.
---
**4. Neighborhood Analysis**
- Subnet: `66.132.172.0/24`
- Abuse Density: 48.94% (moderate risk).
- Neighbor Risk Distribution:
- 73 IPs: Medium risk (score 25β50).
- 22 IPs: Low risk.
- No high-risk IPs identified.
---
**5. Actionable Insights**
- Monitor Subnet: The subnet has a mixed risk profile; prioritize monitoring for unusual traffic patterns.
- Verify DNS Activity: The IPβs DNS associations with `censys-scanner.com` suggest passive scanning; confirm if this aligns with expected network behavior.
- No Immediate Mitigation Needed: No malicious indicators or high-risk neighbors require blocking.
---
Conclusion: This IP is part of Censysβ infrastructure, likely used for security scanning. While the subnet has moderate abuse density, the IP itself poses no direct threat. Continue monitoring for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Censys, Inc. |
| ASN | AS398324 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 129.172.132.66.censys-scanner.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 129.172.132.66.censys-scanner.com |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 2 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 32% | 2 | 3 |
| Overall | 19% | 9 | 12 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:32 UTC |
| Last Seen | 2026-06-26 18:11:31 UTC |
| Profile Built | 2026-06-23 20:11:57 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 21 |
Full dossier details are available via our API.