LeakIX - Host api.dev.gocore.gg

Domain api.dev.gocore.gg

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.217.1
Domain: api.dev.gocore.gg
Port: 443
URL: https://api.dev.gocore.gg

First seen 2025-11-15 01:00
Last seen 2026-01-09 18:45
Open for 55 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6006cde513cfebdf72fb36fb0daa678bcd5d625e14

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/BackOfficeCommon/dashboard
GET /api/BackOfficeGocoreCustomers
GET /api/BackOfficePickemTournamentRewards
GET /api/BackOfficePickemTournaments
GET /api/BackOfficePickemTournaments/{id}
GET /api/BackOfficePickems
GET /api/BackOfficePickems/matches
GET /api/BackOfficePickems/{id}
GET /api/BackOfficePlayers
GET /api/BackOfficePlayers/player-pickems
GET /api/BackOfficeTips
GET /api/BackOfficeTips/{id}
GET /api/BackOfficeTipsters
GET /api/BackOfficeTipsters/id
GET /api/BackOfficeUsers
GET /api/BackOfficeUsers/current-user-detail
GET /api/BackOfficeUsers/fulltext
GET /api/BackOfficeUsers/roles
GET /api/BackOfficeUsers/{id}
GET /api/Matches/match
GET /api/Matches/matches
GET /api/Matches/matches-calendar
GET /api/PandaScore/all-matches
GET /api/Pickems/current-player/all
GET /api/Pickems/current-player/betable
GET /api/Pickems/current-player/history
GET /api/Pickems/player-leaderboards
GET /api/Pickems/player-results
GET /api/Pickems/player-tournament-leaderboards
GET /api/Players
GET /api/Rss/dota-buff
GET /api/Rss/feed
GET /api/Rss/hltv
GET /api/Tips
GET /api/Tips/fulltext
GET /api/Tips/slug/{slug}
GET /api/Tips/slugs
GET /api/Tips/tip-of-day
GET /api/Tips/{id}
GET /api/Tipster/leaderboard
POST /api/BackOfficePickems/create-pickem
POST /api/BackOfficePickems/create-pickems
POST /api/BackOfficePickems/revalidate-pickem
POST /api/Players/email-confirmation
POST /api/Players/send-email-confirmation
POST /api/Users/reset
POST /api/Users/reset-token
PUT /api/BackOfficePickemTournaments/{tournamentId}
PUT /api/BackOfficePickems/adjust-admin-pickems
PUT /api/BackOfficePickems/adjust-bet-pickem
PUT /api/BackOfficePickems/admin-bet-pickem
PUT /api/BackOfficePickems/{pickemId}
PUT /api/BackOfficeTips/admin
PUT /api/BackOfficeUsers/current-user-change-detail
PUT /api/BackOfficeUsers/{id}/lock
PUT /api/BackOfficeUsers/{id}/unlock
PUT /api/Pickems/bet
PUT /api/Pickems/bets
PUT /api/Users/change-password

Found on 2026-01-09 18:45

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 15.197.129.158
Domain: api.dev.gocore.gg
Port: 80
URL: http://api.dev.gocore.gg

First seen 2025-11-15 01:00
Last seen 2026-01-09 19:23
Open for 55 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6006cde513cfebdf72fb36fb0daa678bcd5d625e14

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/BackOfficeCommon/dashboard
GET /api/BackOfficeGocoreCustomers
GET /api/BackOfficePickemTournamentRewards
GET /api/BackOfficePickemTournaments
GET /api/BackOfficePickemTournaments/{id}
GET /api/BackOfficePickems
GET /api/BackOfficePickems/matches
GET /api/BackOfficePickems/{id}
GET /api/BackOfficePlayers
GET /api/BackOfficePlayers/player-pickems
GET /api/BackOfficeTips
GET /api/BackOfficeTips/{id}
GET /api/BackOfficeTipsters
GET /api/BackOfficeTipsters/id
GET /api/BackOfficeUsers
GET /api/BackOfficeUsers/current-user-detail
GET /api/BackOfficeUsers/fulltext
GET /api/BackOfficeUsers/roles
GET /api/BackOfficeUsers/{id}
GET /api/Matches/match
GET /api/Matches/matches
GET /api/Matches/matches-calendar
GET /api/PandaScore/all-matches
GET /api/Pickems/current-player/all
GET /api/Pickems/current-player/betable
GET /api/Pickems/current-player/history
GET /api/Pickems/player-leaderboards
GET /api/Pickems/player-results
GET /api/Pickems/player-tournament-leaderboards
GET /api/Players
GET /api/Rss/dota-buff
GET /api/Rss/feed
GET /api/Rss/hltv
GET /api/Tips
GET /api/Tips/fulltext
GET /api/Tips/slug/{slug}
GET /api/Tips/slugs
GET /api/Tips/tip-of-day
GET /api/Tips/{id}
GET /api/Tipster/leaderboard
POST /api/BackOfficePickems/create-pickem
POST /api/BackOfficePickems/create-pickems
POST /api/BackOfficePickems/revalidate-pickem
POST /api/Players/email-confirmation
POST /api/Players/send-email-confirmation
POST /api/Users/reset
POST /api/Users/reset-token
PUT /api/BackOfficePickemTournaments/{tournamentId}
PUT /api/BackOfficePickems/adjust-admin-pickems
PUT /api/BackOfficePickems/adjust-bet-pickem
PUT /api/BackOfficePickems/admin-bet-pickem
PUT /api/BackOfficePickems/{pickemId}
PUT /api/BackOfficeTips/admin
PUT /api/BackOfficeUsers/current-user-change-detail
PUT /api/BackOfficeUsers/{id}/lock
PUT /api/BackOfficeUsers/{id}/unlock
PUT /api/Pickems/bet
PUT /api/Pickems/bets
PUT /api/Users/change-password

Found on 2026-01-09 19:23

Create report

Open service 15.197.129.158:80 · api.dev.gocore.gg

2026-01-09 19:23

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Fri, 09 Jan 2026 19:24:22 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=alxHn8YOa0EqCi9Fh6Tt21%2FmxfKoo5EPIjoiCcBx0uk%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767986663"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=alxHn8YOa0EqCi9Fh6Tt21%2FmxfKoo5EPIjoiCcBx0uk%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767986663"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 3 days ago by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2026-01-09 18:45

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Fri, 09 Jan 2026 18:45:44 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=wnAl%2BOKK%2F%2FvRLXM0midY9bRMhFwYz2fuke5TTHN0LMA%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767984344"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=wnAl%2BOKK%2F%2FvRLXM0midY9bRMhFwYz2fuke5TTHN0LMA%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767984344"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 3 days ago by HttpPlugin

Create report

Open service 15.197.129.158:80 · api.dev.gocore.gg

2026-01-02 22:41

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Fri, 02 Jan 2026 22:41:55 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=vVqT4LY%2Fy1Ak1e9hI2gl1T5LUX%2FLmO5%2BP1uvN%2FeTrac%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767393716"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=vVqT4LY%2Fy1Ak1e9hI2gl1T5LUX%2FLmO5%2BP1uvN%2FeTrac%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767393716"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2026-01-02 04:45

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Fri, 02 Jan 2026 04:45:04 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=HlUeO0l0OqnJ7uTm%2Fcrp7NTpmByC1ldyB3AjvmNN8OQ%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767329105"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=HlUeO0l0OqnJ7uTm%2Fcrp7NTpmByC1ldyB3AjvmNN8OQ%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767329105"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2025-12-30 06:45

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Tue, 30 Dec 2025 06:45:41 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=DrUrPhTB7ksTtj41rOf2KeBdb7P%2FWU%2B3eORnQHAgcTU%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767077141"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=DrUrPhTB7ksTtj41rOf2KeBdb7P%2FWU%2B3eORnQHAgcTU%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767077141"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-30 by HttpPlugin

Create report

Open service 15.197.129.158:80 · api.dev.gocore.gg

2025-12-23 03:54

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Tue, 23 Dec 2025 03:54:17 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=6N2x856vV1O75ozMFPuJnF5Od%2FBUKsRw6dsk40z74%2FQ%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766462057"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=6N2x856vV1O75ozMFPuJnF5Od%2FBUKsRw6dsk40z74%2FQ%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766462057"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-23 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2025-12-22 10:10

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Mon, 22 Dec 2025 10:10:39 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=efancO%2BIrsWWXpIWjqLIfekmGxJ7PIHBrjmfMvGVZhg%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766398240"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=efancO%2BIrsWWXpIWjqLIfekmGxJ7PIHBrjmfMvGVZhg%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766398240"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2025-12-21 06:11

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Sun, 21 Dec 2025 06:11:03 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=VfBVhgVZdFUIQUscnYmhpjlex1UxP3UIxzQDjZjeW64%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766297464"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=VfBVhgVZdFUIQUscnYmhpjlex1UxP3UIxzQDjZjeW64%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766297464"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-21 by HttpPlugin

Create report

Open service 15.197.129.158:80 · api.dev.gocore.gg

2025-12-20 16:37

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Sat, 20 Dec 2025 16:37:17 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=slO3qiJiuyXjOzByI7K3Wjx4Vi%2FmID1JkIL6Xrn3IbA%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766248638"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=slO3qiJiuyXjOzByI7K3Wjx4Vi%2FmID1JkIL6Xrn3IbA%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766248638"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-20 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.dev.gocore.gg

2025-12-19 07:50

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Fri, 19 Dec 2025 07:50:35 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=DgsvAUoOVmpt13EtBdwqCbNhjhumVYEgf4xHt6Dsgac%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766130636"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=DgsvAUoOVmpt13EtBdwqCbNhjhumVYEgf4xHt6Dsgac%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766130636"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2025-12-19 by HttpPlugin

Create report

api.dev.gocore.gg

Fingerprint:

5801946f0c0012a44863ee24baa485fbdda6c62216b1d1eecc9f4211ae8df11f

CN:

api.dev.gocore.gg

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-15 00:01

Not after:

2026-02-13 00:01

Domain summary

api.dev.gocore.gg 11

1 recorded

IP summary

15.197.129.158 1 99.83.217.1 1

2 recorded