LeakIX - Host api-utils.prada.com

Domain api-utils.prada.com

Germany

Akamai International B.V.

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 23.50.131.132
Domain: api-utils.prada.com
Port: 443
URL: https://api-utils.prada.com

First seen 2025-11-16 11:29
Last seen 2026-02-05 14:40
Open for 81 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb450568cc07178d73e7178d73e7178d73e7178d73e
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /liveness
POST /cybersource/responseUrl
```
  Found on 2026-02-05 14:40
Create report

Open service 23.50.131.145:80 · api-utils.prada.com

2026-02-05 14:40

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://api-utils.prada.com/
Expires: Thu, 05 Feb 2026 14:41:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 05 Feb 2026 14:41:38 GMT
Connection: close
x-api-request-correlation-id: a9dd8b0a-8d5c-46cc-98f2-c6e04637939f
Set-Cookie: _abck=6D572E743E92531DC92EEE1AF5FEB68A~-1~YAAQERczF5tWSxycAQAAvWZALg+MBqCVB8Ly8PCpcNYvj5BHFvfs8/Z+azArf8CArgcMDYdM+ueYv/smSWI4h8tzNOWNeDUkG3Ywj0qT2e3jwFMsMrDIH+d7m8uRhK85I06zV8TR/iVUx39nSzRx+0Agj6fUOJCETVOW2lUU+AkhsqhFF90jJjLYgUav2t9FUaN3xISrFqBgiAi4zPMIppoQ07eEjE6rAc+OEuxcCNPPdOjOJz9ithmREOFGlrhyaKvVGEPCD6qrNEelqYInUR0fvpmo8+SeI+AKTHnoL0OimCY/Wq4s98YQYizt4JzX/qQylgVLAc7TwYI9zXFGuUcP5bfiFFRM2LjFi/0+4sQNIs1I4ewbxiEF0/3CfrGMefBVAg==~-1~-1~-1~-1~-1; Domain=.prada.com; Path=/; Expires=Fri, 05 Feb 2027 14:41:38 GMT; Max-Age=31536000; SameSite=None; Secure
Set-Cookie: bm_sz=ED6199B0C642B181C54C553268315295~YAAQERczF5xWSxycAQAAvWZALh7yxsvStJqv2hqRzkKr176vF0HpjtzE/5nHPkvRJVLPL52mPnq9xMqOs5N8wIjlB6bB0bB332f9wV6XH98FtVTq+vyobh02rMKhZQavGhb1mH54OapLhUS2FAyD9k17FPMaXqD0//RalkLdpEcnY2Plt9wUyr+cIuDD19HMcxk/sHWRM0XAf7ehw3oOslRRn8IxStQ7vcwgBWzqYCE9GUYOdXQ7EA58rIj3G0CaotW+4yt+Gf5Pv6nj9Zzd5LuoqGlTsm5ApjAs3UnNmsc1hSRo30sMomyUK5nj/EezArFiM1Mve0lEB6TCCBbqjyRJiiWCMRQBXsdCpMJ0~3355191~3621432; Domain=.prada.com; Path=/; Expires=Thu, 05 Feb 2026 18:41:38 GMT; Max-Age=14400; SameSite=None; Secure

Found 2026-02-05 by HttpPlugin

Create report

Open service 23.50.131.132:443 · api-utils.prada.com

2026-01-23 07:19

HTTP/1.1 200 OK
Content-Type: text/html
Request-Context: appId=cid-v1:67ed3dc7-5203-4eb6-946e-b0931c6fb5fc
X-Akamai-Transformed: 0 - 0 -
Expires: Fri, 23 Jan 2026 07:19:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 23 Jan 2026 07:19:53 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
x-api-request-correlation-id: c595a8ac-8775-42d7-bfaa-c404cfa13331
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload
Set-Cookie: _abck=E86D5EC318E1DEB9DF43FAA8B6A8F251~-1~YAAQERczF7U9gsObAQAAzky56Q8g8LN6BwN1MRlpTNd7SFcIDESoJEaiD0T/DyZg3kWjyycOnTQ02AZyCol9HAPk26GnxGHagFe3crVxwnIi0L/T7LeZ4ZnedKMKI2GHdVKdGwhEuPsQo6WCkNm+AWKRpkReYN6vOuVZdIj7gFt94/BXuBoL+daoXuzx7m+ycW963sccZccGQBaHV69NrCsVMSocDH3NMWS290uUOtAFKd+93ELOKYh/MrdytjFRW2NpW4lyh+XUhWOpPg6U8E6lSuGOtEqlPWWItDVr8t0+5n34BuPO/UXovuNN1P3z7sQOPRwns0toJrsUtLlfxV7s//ZpjsXQu6IRntncekJUg6l//Z1PdiAx4jN0QaETKxGIhAa62HigdqBK+DO6WS+JFSobF47X+dnoj3UMdLraawFvJBDttapA6iiiYpionxmrvQ==~-1~-1~-1~-1~-1; Domain=.prada.com; Path=/; Expires=Sat, 23 Jan 2027 07:19:53 GMT; Max-Age=31536000; SameSite=None; Secure
Set-Cookie: bm_sz=1B97586EC1CF6BF00314DE3FDBE2B27A~YAAQERczF7Y9gsObAQAAzky56R5LK6baP73aswFOSK6bLzuwPKZ55h5lwuSTKkeAIOS2ZGunqlC9EOlTts/WTDaYxbG1ibUYIye/l7AKu2fsTXD/8bbc9SwuDyW8oyfJdkOflBwIVrUiWbyMW3bxM/GLCCR7ikupdIy+TTNvWZqUGKaksSKVFsJUxFmHJYpfiUvLjfwcSv5RyCgjijpGuqrEFKuvcmM3KDlfeZBkDy+QbdYRwzSgtZffDjypcNlmmM3DFsJKaCBLPpQnjVcAlnnnofZJGm/926rc12by7grklpNmuqwKxsUQvW+22EtHC3xE/hTBXQ8Oz8XSeC1kJV1GmdWAiUph3TwG~3683632~3162674; Domain=.prada.com; Path=/; Expires=Fri, 23 Jan 2026 11:19:53 GMT; Max-Age=14400; SameSite=None; Secure

Found 2026-01-23 by HttpPlugin

Create report

Open service 23.50.131.132:443 · api-utils.prada.com

2026-01-09 22:17

HTTP/1.1 200 OK
Content-Type: text/html
Request-Context: appId=cid-v1:67ed3dc7-5203-4eb6-946e-b0931c6fb5fc
X-Akamai-Transformed: 0 - 0 -
Expires: Fri, 09 Jan 2026 22:17:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 22:17:07 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
x-api-request-correlation-id: 3ace5fc3-40ab-4556-b5f1-dc400d14b32c
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload
Set-Cookie: _abck=FA52AD5AA77F5BC3C4532515DC91932B~-1~YAAQERczF4h/DpGbAQAATLXVpA/BV+Gmt0tpk9FqxP3eDp7u97BqNyJN/FrVkieCdWuJWirtHjLgZRFYHcy4ow/XmvtwwIgFGzdNnORxg6ks3k6rtdeSMcchYZB4T2abDS5gw4GEKl1B9ss2j9o1LNacWsrIj6iMDAkYWH/Vfw+FK37ggJLd7Ta8IAZdAEjG3BR9GYkuqL0scUkHlhZWuKLhuDH2F2OVEH/Dx2/h6mPFh9LqrTmvz/Zl447uv+rRPMog6ksCqUiYUZfe0sY0Xi5vphYH1MdBUzaSsWHngSbmO9Cr2JDLaY0Icdcl5KZMd1gMxn9xDgWdoJwZ9Yumz/9Dm826Miv++KBH3r8YOu57OMUw8qUHAztR2dGyNWB+QcYih8rfHj00m10KqqKHjx+o8N1CqqqGymq92dC27IVDY2hGFTerM7+WfHimwuZ1pyf3Uw==~-1~-1~-1~-1~-1; Domain=.prada.com; Path=/; Expires=Sat, 09 Jan 2027 22:17:07 GMT; Max-Age=31536000; SameSite=None; Secure
Set-Cookie: bm_sz=6619B8DEC9A0F5A97407281467B73E48~YAAQERczF4l/DpGbAQAATLXVpB4nj22qFGijzXmKCOSr0xPXRx+u+iLU5L//lOOGniKyReNBIrc+K3BtuekCPB30bZN1g4KJhdOf/4AsvQoOvmxNvIpg1azMToowQSx9udnQyWvXnIyudBItsZBBp5h/bULe9k2x88WPMWi9bALnQzrCP9s1BCBDHKas9j3FSDwRiWml22Ev9RWqPxGuBCPQNEKssKgW1T4IX4ARtZMn4rM/X+60IoAVSdO76sgtInCHpDPrbE2ezgGDhTnmCLi3rVcAb6MHO0/pXtT3IvWIcXNnD8BRI45zT7MtsyTJzkq8tLqq6osydRN435sTOqOSljc2yyaCsZE8uQI=~3290931~3227974; Domain=.prada.com; Path=/; Expires=Sat, 10 Jan 2026 02:17:07 GMT; Max-Age=14400; SameSite=None; Secure

Found 2026-01-09 by HttpPlugin

Create report

Open service 23.50.131.132:443 · api-utils.prada.com

2026-01-02 15:57

HTTP/1.1 200 OK
Content-Type: text/html
Request-Context: appId=cid-v1:67ed3dc7-5203-4eb6-946e-b0931c6fb5fc
X-Akamai-Transformed: 0 - 0 -
Expires: Fri, 02 Jan 2026 15:57:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Jan 2026 15:57:35 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
x-api-request-correlation-id: 4f7d9c66-6540-4372-8d04-179af35d0c17
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload
Set-Cookie: _abck=CBED5E881AC8CDADC9F910F1EAEF7C38~-1~YAAQERczF3/ETmObAQAA87Ztfw9XNbZIFYJ6s4d2SHYv/Fed+DCQMCGbdi+3xxeFB8CCEBXzj9j1jQP93gs5AivPDsJdtFN9O/72Aqwy+zjjO1HXUJ/fY83LeU2wiqWjOSwnSDSCGUXCCBeNc4Elr6nirWvcUFihBfA8vr0880/kwfe4ueU+mKwjc7/M3pgbROGgPzHGZWjPDbHMix/awPJ3TbrtPUwN94m38ReTD/IX3yoBnHg9Q1EiFMEeR50TUXcP5tuBSNlTCodLbZsvnfmbvwUf+j5gHr/NyHCnl0Hl23tWR1hp3OI2yxmOEOUZwsVD37PONOKsGqFyj7aB0w+K8h2vB6z9+rQ8ObAXotPCTBa6b9/rxSRXniTMpEe9LPyjkMtbP/rKAy1wf2qonfGm39xr5Jl1b3BzkIjYxxW+WbvYwLkAqH7EjtZVkcknYCVU8Q==~-1~-1~-1~-1~-1; Domain=.prada.com; Path=/; Expires=Sat, 02 Jan 2027 15:57:35 GMT; Max-Age=31536000; SameSite=None; Secure
Set-Cookie: bm_sz=C020F034DEA1C079A41150068B253445~YAAQERczF4DETmObAQAA87Ztfx5eRyq+kSMVyrkmUPbpA8iT7PSH6FEd5ydlH3foIghKsETHF7q1auJOs0VlnkjysIZvSbOZfQ+ov4bk2iqcrcZGpCJ7XVdM4Lto14gEVjuwBdK/0A6tMPvqgtUgawaHGMf/FoWmPSAv69IpQkcCgQwKFF4kaIZ6R1jS0QurbfVAldE60QCTUoSAPjeeFP31IPTCDQ8vX7pj7geYpQ5BAFZloSGQNSgT50raQ+Q+LxsPJYRS3UOldDBxUcGPqjAQUvKAi9Ko45cGkgBKmhdTuSGHRqneQ8LyAXrfu4X9QSoXm8C+CC4MtvOp38fVCCdt3BUL7d4Saw+eew==~3618096~3750197; Domain=.prada.com; Path=/; Expires=Fri, 02 Jan 2026 19:57:35 GMT; Max-Age=14400; SameSite=None; Secure

Found 2026-01-02 by HttpPlugin

Create report

Open service 23.50.131.132:443 · api-utils.prada.com

2025-12-22 22:13

HTTP/1.1 200 OK
Content-Type: text/html
Request-Context: appId=cid-v1:67ed3dc7-5203-4eb6-946e-b0931c6fb5fc
X-Akamai-Transformed: 0 - 0 -
Expires: Mon, 22 Dec 2025 22:13:04 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 22 Dec 2025 22:13:04 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
x-api-request-correlation-id: 9bd61258-a59b-4d1c-a62c-7bb3ebebbeb6
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload
Set-Cookie: _abck=3F2120BB517BCC72ABBDBE01BD40B30B~-1~YAAQERczF5X1BUebAQAAB4cfSA84urgUEq3gUHxikfD7fjKv/nAXqB6LTiQhb10+w5aAtj1Vij2ztqfnAadrjB2rqD3QLIdP+RJqLGSoX4UDKLbMuZI9QaAEFPyG21vSycKMAsTjLbo3JgFqldm0eT7bduLXnebkTYoGnrIux9/KMU1E4IqEopx2FRllQ3+5sZ0YvbUgwBZkBjdD8vaEe7HP2mal6kUG0isMmilv1ELKiDoeZa48fyW0raE5dviNh56S6n4UAI2G9HnnFQpxxERuc6B2VBLGWyZDEFo+qhRkM4R4COyQd87vYVNS3UuS7Az09FBPVjh00cFEg8g//I55uUK4Xk1QEn10g+LYNciZxVLjS89t4ZC+MmP+dmJNDFjRk60RnqvK7bI1TdryKD/TjVxsKbWU0qRZPCG2NAQSd08YDbEAnEnhjDB3c8ZXgRZWbw==~-1~-1~-1~-1~-1; Domain=.prada.com; Path=/; Expires=Tue, 22 Dec 2026 22:13:04 GMT; Max-Age=31536000; SameSite=None; Secure
Set-Cookie: bm_sz=E1A3EC07DAF29901F42D7DD1C9938887~YAAQERczF5b1BUebAQAAB4cfSB4AOIKwj7NfNmIyqC3wjeJhpiycbpf+zC2RhkLWBeXGPcW93Jnt/64EvqtJXh4Zd04iOxerfcKcBkUlmvnzLx8rZd9EWgyWC4e0MwtvCCp3c04MqShyANvbgb/u6JXSiqWSR8tUPR71p2rKT10wlI9mpyP/+aBYjDDpFsuNfMIquw8ujaQJK+m28nrSY7H4VegVpsIZlT+SJf7OWudgYq8RyM74ninkrpKxzE5eHmBDkw6UwDR7Sg9wYE8AN2TzqptdPRGgLckriOhP2Uu6UGJwYSEnX69V/fUv2m33kBxR1T4UnbZFCDidKUAjYNFDtI11GK/cg2GLYw8=~4536369~4339777; Domain=.prada.com; Path=/; Expires=Tue, 23 Dec 2025 02:13:04 GMT; Max-Age=14400; SameSite=None; Secure

Found 2025-12-22 by HttpPlugin

Create report

pradaemployee.prada.comapi-utils.church-footwear.comapi-utils.marchesi1824.comapi-utils.miumiu.cnapi-utils.miumiu.comapi-utils.prada.cnapi-utils.prada.comapi-utils.pradagroup.comapi.carshoe.comapi.church-footwear.comapi.marchesi1824.comapi.miumiu.cnapi.miumiu.comapi.prada.cnapi.prada.comapi.pradagroup.comaurablockchain-dev.prada.comaurablockchain-preprod.prada.comaurablockchain.prada.combeta2-pradaemployee.prada.combeta2-pradaoutlet.prada.combeta3-employeesonlinestore.prada.combeta3-pradaoutlet.prada.combeta3-preview.church-footwear.combeta3.church-footwear.comdev.carshoe.comdev.church-footwear.comdev.miumiu.comdev.pasticceriamarchesi.comdev.prada.comdev3.carshoe.comdev3.church-footwear.comdev4.carshoe.comdev4.church-footwear.comdev5.carshoe.comdev5.church-footwear.comdev5.miumiu.comdev5.prada.comdev65.carshoe.comdev65.church-footwear.comdev65.miumiu.comdev65.prada.comdevperf.carshoe.comdevperf.church-footwear.comdevperf.pasticceriamarchesi.comdevtest.carshoe.comdevtest.church-footwear.comdevtest.miumiu.comdevtest.prada.comemployeesonlinestore.prada.compradaoutlet.prada.compuntivendita-dev.prada.compuntivendita-tst.prada.compuntivendita.prada.comqas3.church-footwear.comvemtool-dev.prada.comvemtool-preprod.prada.comvemtool.prada.comwww3-pradaoutlet.prada.comwww3-preview.church-footwear.comwww3.church-footwear.comapi-dev.prada.cnapi-dev.prada.comapi-oms-noprod.prada.cnapi-oms-noprod.prada.comapi-oms.prada.cnapi-oms.prada.comapi-preprod.carshoe.comapi-preprod.church-footwear.comapi-preprod.marchesi1824.comapi-preprod.miumiu.cnapi-preprod.miumiu.comapi-preprod.prada.cnapi-preprod.prada.comapi-preprod.pradagroup.comapi-qfe.prada.cnapi-qfe.prada.comapi-utils-dev.prada.cnapi-utils-dev.prada.comapi-utils-preprod.carshoe.comapi-utils-preprod.church-footwear.comapi-utils-preprod.marchesi1824.comapi-utils-preprod.miumiu.cnapi-utils-preprod.miumiu.comapi-utils-preprod.prada.cnapi-utils-preprod.prada.comapi-utils-preprod.pradagroup.comapi-utils-qfe.prada.cnapi-utils-qfe.prada.comapi-utils.carshoe.com

Fingerprint:

a7a93c3fd6f31f4be5030771b6994eebbcf64470a3563563735829b9dbf5f268

CN:

pradaemployee.prada.com

Key:

ECDSA-256

Issuer:

DigiCert TLS Hybrid ECC SHA384 2020 CA1

Not before:

2025-03-02 00:00

Not after:

2026-03-04 23:59

Domain summary

api-utils.prada.com 5

1 recorded

IP summary

23.50.131.145 1 23.50.131.132 1

2 recorded

Domain api-utils.prada.com

Germany

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Domain summary

IP summary