Thinking...
[get complete service list]
Top of page
Port Information
Protocol Service Name
tcp wsmans WBEM
tcp OMI Open Management Infrastructure
udp wsmans WBEM WS-Management HTTP over TLS/SSL
Top IPs Scanning
Today Yesterday
109.74.202.57 (79)18.223.2.197 (84)
18.116.239.38 (70)3.18.108.78 (70)
18.191.255.164 (35)3.129.92.250 (56)
156.225.0.16 (17)152.32.181.108 (46)
66.222.133.234 (16)207.90.244.14 (38)
146.190.69.241 (14)148.113.214.206 (38)
13.59.242.100 (14)152.32.135.214 (29)
3.134.93.22 (14)3.17.72.122 (28)
3.17.206.73 (14)18.188.53.152 (28)
3.15.180.31 (14)156.225.0.16 (24)
Port diary mentions
URL
#OMIGOD Exploits Captured in the Wild. Researchers responsible for half of scans for related ports.
Top of page
User Comments
Submitted By Date
Comment
2021-09-21 00:21:14
Used by Open Management Infrastructure (OMI) framework. Actively Exploited. https://msrc-blog.microsoft.com/2021/09/16/additional-guidance-regarding-omi-vulnerabilities-within-azure-vm-management-extensions/ Also see port 5985/TCP, 5986/TCP, 1270/TCP
Top of page
CVE Links
CVE # Description
Top of page