Recommended: Drop

147.182.193.28

Name: 147.182.193.28 — threat profile
Creator: BoarNet
License: https://creativecommons.org/licenses/by/4.0/
Keywords: appserver:spring-actuator, asn-abuse, category:cve-exploit, category:port-scan, category:research-scanner, category:scanner, category:service-probe, cloud:digitalocean, cve-probe, db, elasticsearch, http, http-on-nonstd, mongodb, mysql, postgres, probe, probe-family:elasticsearch, probe-family:http, probe-family:mongodb, probe-family:postgres, probe-family:redis, probe-family:syn-only, probe-family:unknown, redis, scanner:curl, scanner:python-requests, scanner:python-urllib, tls

PTR…

AS14061·DIGITALOCEAN-ASN·US

Total sightings: 4,488
Core / Mesh / Edge: 3913 / 575 / 0
First seen: 2026-05-10
Last seen: 2026-05-20

Behavioral tags

appserver:spring-actuatorasn-abusecategory:cve-exploitcategory:port-scancategory:research-scannercategory:scannercategory:service-probecloud:digitaloceancve-probedbelasticsearchhttphttp-on-nonstdmongodbmysqlpostgresprobeprobe-family:elasticsearchprobe-family:httpprobe-family:mongodbprobe-family:postgresprobe-family:redisprobe-family:syn-onlyprobe-family:unknownredisscanner:curlscanner:python-requestsscanner:python-urllibtls

Probed ports

:3306:5432:6379:8080:8443:9200:27017

Want more?

Full dashboard view includes JA3/JA4 TLS fingerprints, SSH credential attempts, payload samples, per-sensor sightings, cluster attribution, and the RDAP abuse contact — plus live API access for your integrations.

Open in dashboard →Run a sensor

BoarNet is a passive sensor fleet; these observations came from honeypot and edge telemetry. Absence of sightings is not evidence of safety.