LeakIX - Host api-forms.homefinance.nl

Domain api-forms.homefinance.nl

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.45.14.249
Domain: api-forms.homefinance.nl
Port: 80
URL: http://api-forms.homefinance.nl

First seen 2025-12-29 12:08
Last seen 2026-02-09 13:03
Open for 42 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60c9b932e6bff9bc33db60bfcfc5fdd5c3d80ac84c
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/keys/generate
GET /api/test/mail/test
GET /api/test/mail/test/aanroep
POST /api/forms/contact/calculation/v1
POST /api/forms/contact/calculation/v2
```
  Found on 2026-02-09 13:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.45.14.249
Domain: api-forms.homefinance.nl
Port: 443
URL: https://api-forms.homefinance.nl

First seen 2025-12-29 12:08
Last seen 2026-01-23 11:53
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60c9b932e6bff9bc33db60bfcfc5fdd5c3d80ac84c
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/keys/generate
GET /api/test/mail/test
GET /api/test/mail/test/aanroep
POST /api/forms/contact/calculation/v1
POST /api/forms/contact/calculation/v2
```
  Found on 2026-01-23 11:53
Create report

Open service 104.45.14.249:80 · api-forms.homefinance.nl

2026-01-23 11:53

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 11:54:25 GMT
Server: Microsoft-IIS/10.0
Location: https://api-forms.homefinance.nl/
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Domain=api-forms.homefinance.nl
X-Powered-By: ASP.NET

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.45.14.249:443 · api-forms.homefinance.nl

2026-01-23 11:53

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 11:54:27 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Secure;Domain=api-forms.homefinance.nl
Set-Cookie: ARRAffinitySameSite=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;SameSite=None;Secure;Domain=api-forms.homefinance.nl
Strict-Transport-Security: max-age=2592000
X-Powered-By: ASP.NET

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.45.14.249:443 · api-forms.homefinance.nl

2026-01-09 21:57

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 21:58:28 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Secure;Domain=api-forms.homefinance.nl
Set-Cookie: ARRAffinitySameSite=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;SameSite=None;Secure;Domain=api-forms.homefinance.nl
Strict-Transport-Security: max-age=2592000
X-Powered-By: ASP.NET

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.45.14.249:80 · api-forms.homefinance.nl

2026-01-09 21:57

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 21:58:26 GMT
Server: Microsoft-IIS/10.0
Location: https://api-forms.homefinance.nl/
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Domain=api-forms.homefinance.nl
X-Powered-By: ASP.NET

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.45.14.249:80 · api-forms.homefinance.nl

2026-01-03 11:22

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Sat, 03 Jan 2026 11:22:19 GMT
Server: Microsoft-IIS/10.0
Location: https://api-forms.homefinance.nl/
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Domain=api-forms.homefinance.nl
X-Powered-By: ASP.NET

Found 2026-01-03 by HttpPlugin

Create report

Open service 104.45.14.249:443 · api-forms.homefinance.nl

2026-01-03 11:22

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Sat, 03 Jan 2026 11:22:19 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Secure;Domain=api-forms.homefinance.nl
Set-Cookie: ARRAffinitySameSite=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;SameSite=None;Secure;Domain=api-forms.homefinance.nl
Strict-Transport-Security: max-age=2592000
X-Powered-By: ASP.NET

Found 2026-01-03 by HttpPlugin

Create report

Open service 104.45.14.249:80 · api-forms.homefinance.nl

2026-01-02 22:46

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 02 Jan 2026 22:46:47 GMT
Server: Microsoft-IIS/10.0
Location: https://api-forms.homefinance.nl/
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Domain=api-forms.homefinance.nl
X-Powered-By: ASP.NET

Found 2026-01-02 by HttpPlugin

Create report

Open service 104.45.14.249:443 · api-forms.homefinance.nl

2026-01-02 22:46

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 02 Jan 2026 22:46:47 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;Secure;Domain=api-forms.homefinance.nl
Set-Cookie: ARRAffinitySameSite=0762c15da7b1aa7bf0a7c58839b035e538c63969761e664495c7353a57d9ce01;Path=/;HttpOnly;SameSite=None;Secure;Domain=api-forms.homefinance.nl
Strict-Transport-Security: max-age=2592000
X-Powered-By: ASP.NET

Found 2026-01-02 by HttpPlugin

Create report

api-forms.homefinance.nl

Fingerprint:

dbc96129801bcf9961a172e5ed08e48c0758bf8967eb85de42fbc6ddb8262c90

CN:

api-forms.homefinance.nl

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-29 00:00

Not after:

2026-04-14 23:59

Domain summary

api-forms.homefinance.nl 9

1 recorded

IP summary

104.45.14.249 2

1 recorded

Domain api-forms.homefinance.nl

The Netherlands

Software information

Swagger API description is publicly available

Swagger API description is publicly available

api-forms.homefinance.nl

Domain summary

IP summary