LeakIX - Host api.arewabooks.com

Domain api.arewabooks.com

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.220.108
Domain: api.arewabooks.com
Port: 80
URL: http://api.arewabooks.com

First seen 2025-11-16 02:34
Last seen 2026-01-09 15:57
Open for 54 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 15:57
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.71.179.82
Domain: api.arewabooks.com
Port: 443
URL: https://api.arewabooks.com

First seen 2025-11-16 02:34
Last seen 2026-01-09 14:26
Open for 54 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 14:26
Create report

Open service 99.83.220.108:80 · api.arewabooks.com

2026-01-09 15:57

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Fri, 09 Jan 2026 15:58:10 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 298
Ratelimit-Reset: 4
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=g4C%2FLXRZ0S2En1hPa3ne%2BvR0opsHpxOA5u%2B5PYquCoY%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767974290"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=g4C%2FLXRZ0S2En1hPa3ne%2BvR0opsHpxOA5u%2B5PYquCoY%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767974290"
Server: Heroku
Set-Cookie: connect.sid=s%3AeuTYKr-y7Ao0fhdLMKnbNow8lBQpXwlc.kzTDd3ivShzgMCKmlVESTV2TKhzoq3DcR1ntRn7EkEU; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2026-01-09 by HttpPlugin

Create report

Open service 35.71.179.82:443 · api.arewabooks.com

2026-01-09 14:26

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Fri, 09 Jan 2026 14:26:31 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 299
Ratelimit-Reset: 60
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lyUs6sVTvZo1up%2B5QgZ4cs%2B%2Fd4%2FhIBEiwwbRzUOequY%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767968791"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lyUs6sVTvZo1up%2B5QgZ4cs%2B%2Fd4%2FhIBEiwwbRzUOequY%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767968791"
Server: Heroku
Set-Cookie: connect.sid=s%3AB3m2fr6bzu2SsJiLOKoCvLrSe41JUjP_.hLDYBMBIxEkU%2FpR%2BuyJh8N2m1UaSPz3XXGjOs9peGbI; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2026-01-09 by HttpPlugin

Create report

Open service 99.83.220.108:80 · api.arewabooks.com

2026-01-02 22:29

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Fri, 02 Jan 2026 22:29:39 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 299
Ratelimit-Reset: 60
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=NlLO9g%2FikUfMYBuMhLbSyDR2CyKtua%2FMmuCVkqJ%2BbM8%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767392979"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=NlLO9g%2FikUfMYBuMhLbSyDR2CyKtua%2FMmuCVkqJ%2BbM8%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767392979"
Server: Heroku
Set-Cookie: connect.sid=s%3AoNHzpsXMqX3xNkogiqMr1EAxFkZKLQjP.37iOPObmsexgV0osB3qUAmLble8%2BjHWXV8LBCwKaVnI; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 35.71.179.82:443 · api.arewabooks.com

2026-01-02 19:01

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Fri, 02 Jan 2026 19:01:35 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 299
Ratelimit-Reset: 60
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=O9fDjmrGKUVV8ZtpyrFM6XuZuOp7WqjJTLC51YKe33U%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767380495"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=O9fDjmrGKUVV8ZtpyrFM6XuZuOp7WqjJTLC51YKe33U%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767380495"
Server: Heroku
Set-Cookie: connect.sid=s%3ASjzXMt7kY-ExG2AfvqVPbl-GzQsMxq9S.Xi2rTPKViRI1c9hKQgFzRYLOwHvTui3KlUMrccBQVAU; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 35.71.179.82:443 · api.arewabooks.com

2025-12-23 08:12

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Tue, 23 Dec 2025 08:12:23 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 299
Ratelimit-Reset: 60
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=sIe95fzwpS5SPfMny3RN404dT7x2Fjfk%2FYwwQUyWtGU%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766477543"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=sIe95fzwpS5SPfMny3RN404dT7x2Fjfk%2FYwwQUyWtGU%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766477543"
Server: Heroku
Set-Cookie: connect.sid=s%3Ao-o20KBCMEg36LwKC4zvp2_kVjtHYzlt.Je2EfzfyLReJpBdIJ0%2FUUS3%2FX15z87xJtl5raa6dk8g; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2025-12-23 by HttpPlugin

Create report

Open service 99.83.220.108:80 · api.arewabooks.com

2025-12-22 12:07

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Mon, 22 Dec 2025 12:07:55 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 282
Ratelimit-Reset: 1
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=SsjPCq60B9w02NuKL%2Bejl2wnlxafGEGFhPh4%2B77zO0Q%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766405275"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=SsjPCq60B9w02NuKL%2Bejl2wnlxafGEGFhPh4%2B77zO0Q%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766405275"
Server: Heroku
Set-Cookie: connect.sid=s%3AuqVfZ6llDC5NCsBU4gF0MiAxBrW6jb27.mLiUFw%2FD1AFBUjtOAgPy8DnD%2BBREpxWaSy481OaqXow; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2025-12-22 by HttpPlugin

Create report

Open service 35.71.179.82:443 · api.arewabooks.com

2025-12-21 01:04

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Sun, 21 Dec 2025 01:04:22 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 237
Ratelimit-Reset: 6
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=SyiYF%2FgAy6HoRLTFNAeN4S%2Bqy2E9m%2BT%2FBES%2BL7emgmE%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766279062"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=SyiYF%2FgAy6HoRLTFNAeN4S%2Bqy2E9m%2BT%2FBES%2BL7emgmE%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766279062"
Server: Heroku
Set-Cookie: connect.sid=s%3Agt-_9kPIYfPQls65g8JmQGSwigbLml6I.dCZeSkXw%2BQIO2kiL3MzDcql53kVRoUf80zARtgNy3z8; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2025-12-21 by HttpPlugin

Create report

Open service 99.83.220.108:80 · api.arewabooks.com

2025-12-20 11:44

HTTP/1.1 404 Not Found
Access-Control-Allow-Credentials: true
Content-Length: 21
Content-Type: application/json; charset=utf-8
Date: Sat, 20 Dec 2025 11:44:19 GMT
Etag: W/"15-5KajTCx0AJD0xogoSeOjjV2M8K0"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 300
Ratelimit-Policy: 300;w=60
Ratelimit-Remaining: 297
Ratelimit-Reset: 55
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=q7TD3ozYo%2BxoKizcxeM3UN2q%2FftktLilht5T04dnaUE%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766231059"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=q7TD3ozYo%2BxoKizcxeM3UN2q%2FftktLilht5T04dnaUE%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766231059"
Server: Heroku
Set-Cookie: connect.sid=s%3ArOHUKjZ3lRwHUkZz8ZHvWReedzQAvNm3.0rkOr%2FYPzdhnh41QUA770ekyTku8C%2BjT4coFBEyRMS8; Path=/; HttpOnly
Vary: Origin
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"error":"Not Found"}

Found 2025-12-20 by HttpPlugin

Create report

api.arewabooks.com

Fingerprint:

ed2fd8119436395642cf50ac3f49d53e7ba6d9cea47b985cebcb5e3e4c04cd9c

CN:

api.arewabooks.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-16 01:35

Not after:

2026-02-14 01:35

Domain summary

api.arewabooks.com 9

1 recorded

IP summary

99.83.220.108 1 35.71.179.82 1

2 recorded

Domain api.arewabooks.com

United States

Software information

Swagger API description is publicly available

Swagger API description is publicly available

api.arewabooks.com

Domain summary

IP summary