Authorized network scanning

You're seeing this page because something on your network observed a connection from scanner.magholoon.cc (or one of its egress hosts) and looked it up.

What this is

This system is part of an authorized security and asset-discovery scanning service operated under contract with the network owner you're investigating. Probes are intentionally lightweight: a TCP connect, an SMTP EHLO banner read, an HTTP GET /, and similar protocol-level handshakes. We do not attempt to authenticate, exploit, or move beyond the initial banner exchange.

What to do if you're an operator

If a scan is reaching you that you don't expect, or you'd like us to exclude an address range, contact the address below and we'll respond promptly. Please include the destination IP/hostname, approximate timestamp, and a sample log line — that's enough for us to trace it back to a specific customer engagement.

Why the HELO/EHLO says scanner.magholoon.cc

RFC 5321 requires SMTP clients to identify themselves with a valid FQDN in HELO/EHLO. We use this hostname so receiving mail servers (and the operators reading their logs) have a single place to look up who's connecting and how to reach us.

If you reached this page by accident, there's nothing else here — close the tab.