-
Notifications
You must be signed in to change notification settings - Fork 0
/
about.html
72 lines (66 loc) · 3.05 KB
/
about.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<title>AWS IP Address Information</title>
<link rel="stylesheet" href="style.css">
<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.3/font/bootstrap-icons.min.css">
</head>
<body>
<header>
<div class="container">
<h1>About</h1>
<nav>
<a href="index.html">Lookup</a>
<span></span>
<a href="about.html">About</a>
<a href="https://github.com/laurelmay/aws-ip-lookup" target="_blank">GitHub</a>
</nav>
</div>
</header>
<main class="container">
<p>
This uses the
<a href="https://docs.aws.amazon.com/vpc/latest/userguide/aws-ip-ranges.html" target="_blank">AWS IP Ranges JSON file</a>
to determine if a given IP address is used by AWS and if so what service(s) and region(s) it is
allocated to. This information is not particularly precise (a lot of services are listed as EC2).
The specific services that can be shown are listed in the AWS documentation.
</p>
<p>
When a hostname is entered, rather than directly looking the value up in the JSON file, the
<a href="https://developers.cloudflare.com/1.1.1.1/encryption/dns-over-https/make-api-requests/dns-json/" target="_blank">Cloudflare DNS over HTTPS API</a>
is used to get the IPv4 and IPv6 addresses for the given domain. Only <code>A</code> and
<code>AAAA</code> records will be checked.
</p>
<p>
This also won't work if an organization is using
<a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-byoip.html" target="_blank">Bring Your Own IP (BYOIP) addresses</a>
for their services. Those addresses won't appear in the <code>ip-ranges.json</code> file so they can't be
included here.
</p>
<p>
You can contribute on <a href="https://github.com/laurelmay/aws-ip-lookup" target="_blank">GitHub</a>.
</p>
<p class="info-alert">
<strong>Note</strong>: This tool should not be used for making security decisions. While
DNS data is fetched directly from CloudFlare using DNS over HTTPS, the responses are
not validated with DNSSEC. Additionally, the <code>ip-ranges.json</code> data may be
cached; you should always
<a href="https://docs.aws.amazon.com/vpc/latest/userguide/aws-ip-ranges.html#aws-ip-download" target="_blank">download</a>
the latest version of the file directly from AWS after validating the TLS certificates
presented during the download are correct.
</p>
</main>
<footer>
<div class="container spread-items">
<div>
<p><a href="license.html" id="copyright">Copyright © 2024 Laurel May</a></p>
</div>
<div>
<p><a href="https://github.com/laurelmay/aws-ip-lookup" target="_blank"><i class="bi-github"></i></a></p>
</div>
</div>
</footer>
</body>
</html>