Check an IP Address, Domain Name, Subnet, or ASN

157.230.45.77 was found in our database!

$ whois 157.230.45.77

country·🇸🇬 Singapore

city·Singapore

isp·DigitalOcean, LLC

asn·AS14061

network·Standard

$ sikker risk 157.230.45.77scoring →

confidence

85%Very High

first_seen·Apr 4, 2026

last_seen·6h ago

sessions·25

events·25

$ sikker protocols 157.230.45.77

HTTP

10 / 10

HTTPS

10 / 10

ELASTICSEARCH

5 / 5

$ sikker summary 157.230.45.77

157.230.45.77 has a threat confidence score of 85%. This IP address from Singapore (AS14061, DigitalOcean, LLC) has been observed in 25 honeypot sessions targeting HTTP, HTTPS, ELASTICSEARCH protocols. First observed on April 4, 2026, most recently active April 5, 2026.

$ sikker behaviors 157.230.45.77catalog →

lowElastic Service Validation And Index Enumeration5x

Client first performs a generic request to the Elasticsearch root endpoint to verify service availability, then proceeds to request /_cat/indices. This sequence reflects staged Elasticsearch reconnaissance where the actor validates that the cluster is reachable before attempting index enumeration and data exposure assessment. Compared to direct index enumeration behaviors, the interaction begins with a service-validation step, suggesting adaptive probing rather than immediate Elasticsearch-specific targeting.

infoHttp Http Method Get5x

HTTP request using GET method.

infoHttp Root Path Request5x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request5x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 157.230.45.77

elastic_http_get_request15 elastic_root_path_probe10 http_method_get5 https_path_root5 elastic_cat_indices_enumeration5

$ sikker related 157.230.45.77

🇸🇬·More threats fromSingapore→AS·More threats fromDigitalOcean, LLC→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→ELAS·More threats targetingELASTICSEARCH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
161.35.119.70	96%	204
142.93.63.199	71%	64
134.209.253.71	85%	64
159.89.0.229	76%	91
209.38.220.88	30%	2

IP Address	Confidence	Events
43.156.13.43	96%	2,823
104.194.153.136	88%	2,978
134.122.128.232	96%	232
43.128.100.27	94%	307
43.134.1.142	96%	2,763