AI TOOLS MASTER

AI TOOLS MASTER

2977 bookmarks
Newest
Shodan Search cloud resgion us-gov-east-1 RDP CONCERNING Vipr cloud is not FEDRAMP approved, genetec is not fedramp, more ITAR????
Shodan Search cloud resgion us-gov-east-1 RDP CONCERNING Vipr cloud is not FEDRAMP approved, genetec is not fedramp, more ITAR????

High Exploitation Risk – RDP is one of the most attacked services, targeted by ransomware, brute-force attacks, and credential stuffing. Government Policies Against Open RDP – Agencies typically enforce zero-trust architectures, using VPNs, Bastion hosts, or jump servers instead of exposing RDP directly. FedRAMP and NIST Compliance – Government clouds require strict security controls. Direct RDP access without MFA or monitoring violates NIST 800-53 security guidelines.

Jan - March 2025 investigative leads, evidence of privacy risks violationsJan - March 2025 investigative leads, evidence of privacy risks violations#important#sus#notauth#selfcert
·shodan.io·
Shodan Search cloud resgion us-gov-east-1 RDP CONCERNING Vipr cloud is not FEDRAMP approved, genetec is not fedramp, more ITAR????
18.253.115.139 very strange certs port 22, 443, 25 OpenSMTPD mail.nbcbib.dev port on 1/24/2025 port 80 ertificate: Data: Version: 3 (0x2) Serial Number: 5a:6e:50:dc:b1:dd:bd:ed:ef:fd:89:50:71:dd:a1:fd:1f:46:e1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld Validity Not Before: Feb 16 21:50:10 2022 GMT Not After : Feb 14 21:50:10 2032 GMT Subject: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld
18.253.115.139 very strange certs port 22, 443, 25 OpenSMTPD mail.nbcbib.dev port on 1/24/2025 port 80 ertificate: Data: Version: 3 (0x2) Serial Number: 5a:6e:50:dc:b1:dd:bd:ed:ef:fd:89:50:71:dd:a1:fd:1f:46:e1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld Validity Not Before: Feb 16 21:50:10 2022 GMT Not After : Feb 14 21:50:10 2032 GMT Subject: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld

is this the smoking gun....linux mail relay to send massive amounts of emails...when i SMTP with mail.nbcbib.dev, its THIS IP ADDRESS

Connecting to 18.253.115.139

220 mail.nbcbib.dev ESMTP OpenSMTPD [262 ms] EHLO keeper-us-east-1d.mxtoolbox.com 250-mail.nbcbib.dev Hello keeper-us-east-1d.mxtoolbox.com [18.209.86.113], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 36700160 250 HELP [132 ms] MAIL FROM:supertool@mxtoolboxsmtpdiag.com 250 2.0.0 Ok [132 ms] RCPT TO:test@mxtoolboxsmtpdiag.com 550 Invalid recipient: test@mxtoolboxsmtpdiag.com [145 ms]

LookupServer 1146ms

mail.nbcbib.dev
Subject: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld
Jan - March 2025 investigative leads, evidence of privacy risks violationsJan - March 2025 investigative leads, evidence of privacy risks violations#important#sus
·shodan.io·
18.253.115.139 very strange certs port 22, 443, 25 OpenSMTPD mail.nbcbib.dev port on 1/24/2025 port 80 ertificate: Data: Version: 3 (0x2) Serial Number: 5a:6e:50:dc:b1:dd:bd:ed:ef:fd:89:50:71:dd:a1:fd:1f:46:e1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld Validity Not Before: Feb 16 21:50:10 2022 GMT Not After : Feb 14 21:50:10 2032 GMT Subject: C=US, ST=Some-State, O=Internet Widgits Pty Ltd, CN=saymyname.domain.tld/emailAddress=dontbother@domain.tld
AWS Services in Scope by Compliance Program — Federal Risk and Authorization Management Program (FedRAMP)
AWS Services in Scope by Compliance Program — Federal Risk and Authorization Management Program (FedRAMP)
We include generally available services in the scope of our compliance efforts based on the expected use case, feedback and demand. If a service is not currently listed as in scope of the most recent assessment, it does not mean that you cannot use the service. It is part of the shared responsibility for your organization to determine the nature of the data. Based on the nature of what you are building on AWS, you should determine if the service will process or store customer data and how it will or will not impact the compliance of your customer data environment.
Jan 2025 start of investigation OPM emails articleJan 2025 start of investigation OPM emails article
·aws.amazon.com·
AWS Services in Scope by Compliance Program — Federal Risk and Authorization Management Program (FedRAMP)
182.30.141.26 what's owncloud Issuer: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems Validity Not Before: Jan 7 23:46:36 2025 GMT Not After : Jan 7 23:46:36 2026 GMT Subject: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems
182.30.141.26 what's owncloud Issuer: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems Validity Not Before: Jan 7 23:46:36 2025 GMT Not After : Jan 7 23:46:36 2026 GMT Subject: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems
Ports open: 22, 443
Jan - March 2025 investigative leads, evidence of privacy risks violationsJan - March 2025 investigative leads, evidence of privacy risks violations
·shodan.io·
182.30.141.26 what's owncloud Issuer: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems Validity Not Before: Jan 7 23:46:36 2025 GMT Not After : Jan 7 23:46:36 2026 GMT Subject: CN=transfer.belcangov.com, O=Belcan Government Services, OU=Belcan ITSG Open Systems