Domain admin.anderson.edu
United States
MICROSOFT-CORP-MSN-AS-BLOCK
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-21 00:06
Last seen 2026-01-23 00:49
Open for 33 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656Public Swagger UI/API detected at path: /swagger-ui.html
Found on 2026-01-23 00:49
-
-
Open service 20.119.16.27:443 · admin.anderson.edu
2026-01-23 00:49
HTTP/1.1 200 OK Content-Length: 3989 Connection: close Content-Type: text/html Date: Fri, 23 Jan 2026 00:50:05 GMT Server: Microsoft-IIS/10.0 Accept-Ranges: bytes Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization Access-Control-Allow-Methods: GET, OPTIONS Cache-Control: public, must-revalidate, max-age=30 ETag: "35520811" Last-Modified: Thu, 22 Jan 2026 22:43:44 GMT Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Powered-By: Express X-Powered-By: ASP.NET Referrer-Policy: same-origin X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block x-dns-prefetch-control: off x-azure-ref: 20260123T005006Z-166685794dcr5hxchC1BL1ngdg0000000f0g0000000038e1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_MISS Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; Page title: Student First Admin <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Student First Admin</title> <base href="/" /> <link href="css/bootstrap/bootstrap.min.css?v=26.03" rel="stylesheet" /> <link href="css/app.css?v=26.03" rel="stylesheet" /> <link href="GlobalEdTech.Sis.WebApp.SPA.styles.css?v=26.03" rel="stylesheet" /> <link href="css/studentfirst.css?v=26.03" rel="stylesheet" /> <link href="https://unpkg.com/swagger-ui-dist/swagger-ui.css" rel="stylesheet" /> <link rel="apple-touch-icon" sizes="180x180" href="/apple-touch-icon.png"> <link rel="icon" type="image/png" href="favicon.png" /> <!--<link rel="manifest" href="/site.webmanifest">--> <link rel="mask-icon" href="/safari-pinned-tab.svg" color="#5bbad5"> <link rel="stylesheet" href="https://unpkg.com/@progress/kendo-font-icons/dist/index.css" /> <meta name="msapplication-TileColor" content="#da532c"> <meta name="theme-color" content="#ffffff"> </head> <body> <div id="app"> <svg class="loading-progress"> <circle r="40%" cx="50%" cy="50%" /> <circle r="40%" cx="50%" cy="50%" /> </svg> <div class="loading-progress-text"></div> </div> <div id="blazor-error-ui"> <div class="error-content"> <div class="error-icon">⚠️</div> <div class="error-title" data-localize="ERROR_TITLE">Something went wrong</div> <div class="error-message" data-localize="ERROR_MESSAGE">The Student First system encountered an issue. Please refresh the page to continue.</div> <div class="error-actions"> <a href="" class="reload" data-localize="REFRESH_PAGE">Refresh Page</a> <a class="dismiss">✕</a> </div> </div> </div> <script> // Conditionally hide blazor-error-ui based on URL (function() { const currentUrl = window.location.href.toLowerCase(); const isDevelopment = currentUrl.includes('localhost') || currentUrl.includes('studentfirst.dev'); if (!isDevelopment) { const errorUi = document.getElementById('blazor-error-ui'); if (errorUi) { errorUi.style.display = 'none'; // Also prevent it from being shown by adding a CSS class override const style = document.createElement('style'); style.textContent = '#blazor-error-ui { display: none !important; }'; document.head.appendChild(style); } } })(); </script> <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js?v=26.03"></script> <script src="https://kendo.cdn.telerik.com/2025.1.227/js/kendo.all.min.js?v=26.03"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js"></script> <script src="_content/Telerik.UI.for.Blazor/js/telerik-blazor.js?v=26.03"></script> <script src="_content/Microsoft.Authentication.WebAssembly.Msal/AuthenticationService.js?v=26.03"></script> <script src="_framework/blazor.webassembly.js?v=26.03"></script> <script src="js/kendo-ui-license (1).js"></script> <script src="js/error-localization.js?v=26.03" charset="utf-8"></script> <script src="js/app.js?v=26.03"></script> <script src="js/scriptLoader.js?v=26.03"></script> <script src="js/go.js?v=26.03"></script> <script src="js/gojs-scripts.js?v=26.03"></script> <script src="js/kendo-script-workflow.js?v=26.03"></script> <script src="https://kit.fontawesome.com/4e6292f6e8.js?v=26.03" crossorigin="anonymous"></script> <script src="_content/Telerik.ReportViewer.Blazor/interop.js?v=26.03" defer></script> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.119.16.27:443 · admin.anderson.edu
2026-01-08 23:45
HTTP/1.1 200 OK Content-Length: 3989 Connection: close Content-Type: text/html Date: Thu, 08 Jan 2026 23:46:44 GMT Server: Microsoft-IIS/10.0 Accept-Ranges: bytes Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization Access-Control-Allow-Methods: GET, OPTIONS Cache-Control: public, must-revalidate, max-age=30 ETag: "75816020" Last-Modified: Wed, 07 Jan 2026 03:06:39 GMT Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Powered-By: Express X-Powered-By: ASP.NET Referrer-Policy: same-origin X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block x-dns-prefetch-control: off x-azure-ref: 20260108T234644Z-17d86db7bdcq4znnhC1BL1fk1s0000003sq0000000006n61 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_MISS Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; Page title: Student First Admin <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Student First Admin</title> <base href="/" /> <link href="css/bootstrap/bootstrap.min.css?v=26.01" rel="stylesheet" /> <link href="css/app.css?v=26.01" rel="stylesheet" /> <link href="GlobalEdTech.Sis.WebApp.SPA.styles.css?v=26.01" rel="stylesheet" /> <link href="css/studentfirst.css?v=26.01" rel="stylesheet" /> <link href="https://unpkg.com/swagger-ui-dist/swagger-ui.css" rel="stylesheet" /> <link rel="apple-touch-icon" sizes="180x180" href="/apple-touch-icon.png"> <link rel="icon" type="image/png" href="favicon.png" /> <!--<link rel="manifest" href="/site.webmanifest">--> <link rel="mask-icon" href="/safari-pinned-tab.svg" color="#5bbad5"> <link rel="stylesheet" href="https://unpkg.com/@progress/kendo-font-icons/dist/index.css" /> <meta name="msapplication-TileColor" content="#da532c"> <meta name="theme-color" content="#ffffff"> </head> <body> <div id="app"> <svg class="loading-progress"> <circle r="40%" cx="50%" cy="50%" /> <circle r="40%" cx="50%" cy="50%" /> </svg> <div class="loading-progress-text"></div> </div> <div id="blazor-error-ui"> <div class="error-content"> <div class="error-icon">⚠️</div> <div class="error-title" data-localize="ERROR_TITLE">Something went wrong</div> <div class="error-message" data-localize="ERROR_MESSAGE">The Student First system encountered an issue. Please refresh the page to continue.</div> <div class="error-actions"> <a href="" class="reload" data-localize="REFRESH_PAGE">Refresh Page</a> <a class="dismiss">✕</a> </div> </div> </div> <script> // Conditionally hide blazor-error-ui based on URL (function() { const currentUrl = window.location.href.toLowerCase(); const isDevelopment = currentUrl.includes('localhost') || currentUrl.includes('studentfirst.dev'); if (!isDevelopment) { const errorUi = document.getElementById('blazor-error-ui'); if (errorUi) { errorUi.style.display = 'none'; // Also prevent it from being shown by adding a CSS class override const style = document.createElement('style'); style.textContent = '#blazor-error-ui { display: none !important; }'; document.head.appendChild(style); } } })(); </script> <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js?v=26.01"></script> <script src="https://kendo.cdn.telerik.com/2025.1.227/js/kendo.all.min.js?v=26.01"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js"></script> <script src="_content/Telerik.UI.for.Blazor/js/telerik-blazor.js?v=26.01"></script> <script src="_content/Microsoft.Authentication.WebAssembly.Msal/AuthenticationService.js?v=26.01"></script> <script src="_framework/blazor.webassembly.js?v=26.01"></script> <script src="js/kendo-ui-license (1).js"></script> <script src="js/error-localization.js?v=26.01" charset="utf-8"></script> <script src="js/app.js?v=26.01"></script> <script src="js/scriptLoader.js?v=26.01"></script> <script src="js/go.js?v=26.01"></script> <script src="js/gojs-scripts.js?v=26.01"></script> <script src="js/kendo-script-workflow.js?v=26.01"></script> <script src="https://kit.fontawesome.com/4e6292f6e8.js?v=26.01" crossorigin="anonymous"></script> <script src="_content/Telerik.ReportViewer.Blazor/interop.js?v=26.01" defer></script> </body> </html>Found 2026-01-08 by HttpPluginCreate report
-
Open service 20.119.16.27:443 · admin.anderson.edu
2026-01-02 02:02
HTTP/1.1 200 OK Content-Length: 3989 Connection: close Content-Type: text/html Date: Fri, 02 Jan 2026 02:02:11 GMT Server: Microsoft-IIS/10.0 Accept-Ranges: bytes Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization Access-Control-Allow-Methods: GET, OPTIONS Cache-Control: public, must-revalidate, max-age=30 ETag: "19942155" Last-Modified: Wed, 24 Dec 2025 03:08:55 GMT Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Powered-By: Express X-Powered-By: ASP.NET Referrer-Policy: same-origin X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block x-dns-prefetch-control: off x-azure-ref: 20260102T020212Z-16cb8b7df7f86wkfhC1BL17s6s00000003zg00000000adyx x-fd-int-roxy-purgeid: 10 X-Cache: TCP_MISS Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; Page title: Student First Admin <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Student First Admin</title> <base href="/" /> <link href="css/bootstrap/bootstrap.min.css?v=25.78" rel="stylesheet" /> <link href="css/app.css?v=25.78" rel="stylesheet" /> <link href="GlobalEdTech.Sis.WebApp.SPA.styles.css?v=25.78" rel="stylesheet" /> <link href="css/studentfirst.css?v=25.78" rel="stylesheet" /> <link href="https://unpkg.com/swagger-ui-dist/swagger-ui.css" rel="stylesheet" /> <link rel="apple-touch-icon" sizes="180x180" href="/apple-touch-icon.png"> <link rel="icon" type="image/png" href="favicon.png" /> <!--<link rel="manifest" href="/site.webmanifest">--> <link rel="mask-icon" href="/safari-pinned-tab.svg" color="#5bbad5"> <link rel="stylesheet" href="https://unpkg.com/@progress/kendo-font-icons/dist/index.css" /> <meta name="msapplication-TileColor" content="#da532c"> <meta name="theme-color" content="#ffffff"> </head> <body> <div id="app"> <svg class="loading-progress"> <circle r="40%" cx="50%" cy="50%" /> <circle r="40%" cx="50%" cy="50%" /> </svg> <div class="loading-progress-text"></div> </div> <div id="blazor-error-ui"> <div class="error-content"> <div class="error-icon">⚠️</div> <div class="error-title" data-localize="ERROR_TITLE">Something went wrong</div> <div class="error-message" data-localize="ERROR_MESSAGE">The Student First system encountered an issue. Please refresh the page to continue.</div> <div class="error-actions"> <a href="" class="reload" data-localize="REFRESH_PAGE">Refresh Page</a> <a class="dismiss">✕</a> </div> </div> </div> <script> // Conditionally hide blazor-error-ui based on URL (function() { const currentUrl = window.location.href.toLowerCase(); const isDevelopment = currentUrl.includes('localhost') || currentUrl.includes('studentfirst.dev'); if (!isDevelopment) { const errorUi = document.getElementById('blazor-error-ui'); if (errorUi) { errorUi.style.display = 'none'; // Also prevent it from being shown by adding a CSS class override const style = document.createElement('style'); style.textContent = '#blazor-error-ui { display: none !important; }'; document.head.appendChild(style); } } })(); </script> <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js?v=25.78"></script> <script src="https://kendo.cdn.telerik.com/2025.1.227/js/kendo.all.min.js?v=25.78"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js"></script> <script src="_content/Telerik.UI.for.Blazor/js/telerik-blazor.js?v=25.78"></script> <script src="_content/Microsoft.Authentication.WebAssembly.Msal/AuthenticationService.js?v=25.78"></script> <script src="_framework/blazor.webassembly.js?v=25.78"></script> <script src="js/kendo-ui-license (1).js"></script> <script src="js/error-localization.js?v=25.78" charset="utf-8"></script> <script src="js/app.js?v=25.78"></script> <script src="js/scriptLoader.js?v=25.78"></script> <script src="js/go.js?v=25.78"></script> <script src="js/gojs-scripts.js?v=25.78"></script> <script src="js/kendo-script-workflow.js?v=25.78"></script> <script src="https://kit.fontawesome.com/4e6292f6e8.js?v=25.78" crossorigin="anonymous"></script> <script src="_content/Telerik.ReportViewer.Blazor/interop.js?v=25.78" defer></script> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 20.119.16.27:443 · admin.anderson.edu
2025-12-23 06:01
HTTP/1.1 200 OK Content-Length: 3989 Connection: close Content-Type: text/html Date: Tue, 23 Dec 2025 06:01:52 GMT Server: Microsoft-IIS/10.0 Accept-Ranges: bytes Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization Access-Control-Allow-Methods: GET, OPTIONS Cache-Control: public, must-revalidate, max-age=30 ETag: "75110385" Last-Modified: Sat, 20 Dec 2025 23:32:42 GMT Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Powered-By: Express X-Powered-By: ASP.NET Referrer-Policy: same-origin X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block x-dns-prefetch-control: off x-azure-ref: 20251223T060153Z-17d86db7bdcpdrzkhC1BL1xfe000000019gg000000001nep x-fd-int-roxy-purgeid: 10 X-Cache: TCP_MISS Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; Page title: Student First Admin <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Student First Admin</title> <base href="/" /> <link href="css/bootstrap/bootstrap.min.css?v=25.77" rel="stylesheet" /> <link href="css/app.css?v=25.77" rel="stylesheet" /> <link href="GlobalEdTech.Sis.WebApp.SPA.styles.css?v=25.77" rel="stylesheet" /> <link href="css/studentfirst.css?v=25.77" rel="stylesheet" /> <link href="https://unpkg.com/swagger-ui-dist/swagger-ui.css" rel="stylesheet" /> <link rel="apple-touch-icon" sizes="180x180" href="/apple-touch-icon.png"> <link rel="icon" type="image/png" href="favicon.png" /> <!--<link rel="manifest" href="/site.webmanifest">--> <link rel="mask-icon" href="/safari-pinned-tab.svg" color="#5bbad5"> <link rel="stylesheet" href="https://unpkg.com/@progress/kendo-font-icons/dist/index.css" /> <meta name="msapplication-TileColor" content="#da532c"> <meta name="theme-color" content="#ffffff"> </head> <body> <div id="app"> <svg class="loading-progress"> <circle r="40%" cx="50%" cy="50%" /> <circle r="40%" cx="50%" cy="50%" /> </svg> <div class="loading-progress-text"></div> </div> <div id="blazor-error-ui"> <div class="error-content"> <div class="error-icon">⚠️</div> <div class="error-title" data-localize="ERROR_TITLE">Something went wrong</div> <div class="error-message" data-localize="ERROR_MESSAGE">The Student First system encountered an issue. Please refresh the page to continue.</div> <div class="error-actions"> <a href="" class="reload" data-localize="REFRESH_PAGE">Refresh Page</a> <a class="dismiss">✕</a> </div> </div> </div> <script> // Conditionally hide blazor-error-ui based on URL (function() { const currentUrl = window.location.href.toLowerCase(); const isDevelopment = currentUrl.includes('localhost') || currentUrl.includes('studentfirst.dev'); if (!isDevelopment) { const errorUi = document.getElementById('blazor-error-ui'); if (errorUi) { errorUi.style.display = 'none'; // Also prevent it from being shown by adding a CSS class override const style = document.createElement('style'); style.textContent = '#blazor-error-ui { display: none !important; }'; document.head.appendChild(style); } } })(); </script> <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js?v=25.77"></script> <script src="https://kendo.cdn.telerik.com/2025.1.227/js/kendo.all.min.js?v=25.77"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.js"></script> <script src="https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js"></script> <script src="_content/Telerik.UI.for.Blazor/js/telerik-blazor.js?v=25.77"></script> <script src="_content/Microsoft.Authentication.WebAssembly.Msal/AuthenticationService.js?v=25.77"></script> <script src="_framework/blazor.webassembly.js?v=25.77"></script> <script src="js/kendo-ui-license (1).js"></script> <script src="js/error-localization.js?v=25.77" charset="utf-8"></script> <script src="js/app.js?v=25.77"></script> <script src="js/scriptLoader.js?v=25.77"></script> <script src="js/go.js?v=25.77"></script> <script src="js/gojs-scripts.js?v=25.77"></script> <script src="js/kendo-script-workflow.js?v=25.77"></script> <script src="https://kit.fontawesome.com/4e6292f6e8.js?v=25.77" crossorigin="anonymous"></script> <script src="_content/Telerik.ReportViewer.Blazor/interop.js?v=25.77" defer></script> </body> </html>Found 2025-12-23 by HttpPluginCreate report
admin.anderson.edu
CN:
admin.anderson.edu
Not before:
2025-12-21 00:00
Not after:
2026-04-14 23:59