LeakIX - Host api.dropper.ai

Domain api.dropper.ai

Germany

AMAZON-02

Software information

nginx nginx 1.24.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.70.187.245
Domain: api.dropper.ai
Port: 443
URL: https://api.dropper.ai

First seen 2025-11-12 06:32
Last seen 2026-01-11 12:53
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-11 12:53
Create report

Open service 3.70.187.245:80 · api.dropper.ai

2026-01-11 12:53

HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0
Date: Sun, 11 Jan 2026 12:53:13 GMT
Content-Type: text/html
Content-Length: 169
Connection: close
Location: https://api.dropper.ai/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0</center>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 3.70.187.245:443 · api.dropper.ai

2026-01-11 12:53

HTTP/1.1 404 Not Found
Server: nginx/1.24.0
Date: Sun, 11 Jan 2026 12:53:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: close
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 3.70.187.245:443 · api.dropper.ai

2026-01-09 23:24

HTTP/1.1 404 Not Found
Server: nginx/1.24.0
Date: Fri, 09 Jan 2026 23:24:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: close
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 3.70.187.245:443 · api.dropper.ai

2025-12-30 10:40

HTTP/1.1 404 Not Found
Server: nginx/1.24.0
Date: Tue, 30 Dec 2025 10:40:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: close
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-30 by HttpPlugin

Create report

Open service 3.70.187.245:443 · api.dropper.ai

2025-12-23 08:11

HTTP/1.1 404 Not Found
Server: nginx/1.24.0
Date: Tue, 23 Dec 2025 08:11:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: close
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-23 by HttpPlugin

Create report

Open service 3.70.187.245:443 · api.dropper.ai

2025-12-21 01:20

HTTP/1.1 404 Not Found
Server: nginx/1.24.0
Date: Sun, 21 Dec 2025 01:20:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: close
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

api-prod-dropper.avrean.netapi.dropper.ai

Fingerprint:

07ad2f9d8f2cc8569d40b8109cacb32338942e01d86ecbb2c7e97029ce3c7418

CN:

api-prod-dropper.avrean.net

Key:

RSA-2048

Issuer:

R13

Not before:

2025-11-13 02:39

Not after:

2026-02-11 02:39

Domain summary

api.dropper.ai 6

1 recorded

IP summary

3.70.187.245 2

1 recorded

Domain api.dropper.ai

Germany

Software information

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Create report

api-prod-dropper.avrean.netapi.dropper.ai

Domain summary

IP summary