LeakIX - Host api.enlight.apptoku.com

Domain api.enlight.apptoku.com

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.43.161
Domain: api.enlight.apptoku.com
Port: 80
URL: http://api.enlight.apptoku.com

First seen 2025-10-17 00:31
Last seen 2026-01-09 05:56
Open for 84 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff431ce6ac208ff9edfad6c4ca4fb986a8a6cb87b40b
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /events/
GET /events/archive/
GET /events/filter_options/
GET /events/{slug}/{id}/
GET /ideas/
GET /ideas/{id}/
GET /logout/
GET /user/
POST /events/{id}/attachments/
POST /events/{id}/participate/
POST /events/{id}/vote/
POST /ideas/{id}/vote/
POST /token/refresh/
```
  Found on 2026-01-09 05:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.217.1
Domain: api.enlight.apptoku.com
Port: 443
URL: https://api.enlight.apptoku.com

First seen 2025-10-17 00:31
Last seen 2026-01-09 01:45
Open for 84 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff431ce6ac208ff9edfad6c4ca4fb986a8a6cb87b40b
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /events/
GET /events/archive/
GET /events/filter_options/
GET /events/{slug}/{id}/
GET /ideas/
GET /ideas/{id}/
GET /logout/
GET /user/
POST /events/{id}/attachments/
POST /events/{id}/participate/
POST /events/{id}/vote/
POST /ideas/{id}/vote/
POST /token/refresh/
```
  Found on 2026-01-09 01:45
Create report

Open service 75.2.43.161:80 · api.enlight.apptoku.com

2026-01-09 05:56

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Fri, 09 Jan 2026 05:57:16 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=q86KbQ7YzoxhxYJVv77KgophYDMmSmbpBVjldLKcHRA%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767938236"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=q86KbQ7YzoxhxYJVv77KgophYDMmSmbpBVjldLKcHRA%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767938236"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.enlight.apptoku.com

2026-01-09 01:45

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Fri, 09 Jan 2026 01:45:21 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=6oP6x02Dff988RPyHJK%2BUAvffCOpFDbBcRJOfuZOIYA%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767923121"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=6oP6x02Dff988RPyHJK%2BUAvffCOpFDbBcRJOfuZOIYA%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767923121"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 75.2.43.161:80 · api.enlight.apptoku.com

2026-01-02 04:40

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Fri, 02 Jan 2026 04:40:09 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2FMV1rMeAVKlZxb69uBTZ5OvpfPJwXH07MK%2BloanVt9U%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767328809"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2FMV1rMeAVKlZxb69uBTZ5OvpfPJwXH07MK%2BloanVt9U%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767328809"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.enlight.apptoku.com

2026-01-01 19:50

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Thu, 01 Jan 2026 19:50:54 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=tE4zVm0F3NHbu90vsWcK7dD3ViNwh4npFrW0HSNgSus%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767297054"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=tE4zVm0F3NHbu90vsWcK7dD3ViNwh4npFrW0HSNgSus%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767297054"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2026-01-01 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.enlight.apptoku.com

2025-12-23 09:40

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Tue, 23 Dec 2025 09:40:53 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2B04wJ1nAf3TEfC0jqBNK4e4D0ynjKOecZhLQWmaWOQs%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766482853"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2B04wJ1nAf3TEfC0jqBNK4e4D0ynjKOecZhLQWmaWOQs%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766482853"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2025-12-23 by HttpPlugin

Create report

Open service 75.2.43.161:80 · api.enlight.apptoku.com

2025-12-22 09:21

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Mon, 22 Dec 2025 09:21:30 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=XwgzwRRbSe46fNmkv4W3QRa%2BH2mRcAalKGUZu6l2w4s%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766395290"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=XwgzwRRbSe46fNmkv4W3QRa%2BH2mRcAalKGUZu6l2w4s%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766395290"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.enlight.apptoku.com

2025-12-21 04:41

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Sun, 21 Dec 2025 04:41:27 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=aN01Z%2B371J7DiRgNFT8VN9REYwCrnLjcQJEKSvsLSeY%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766292087"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=aN01Z%2B371J7DiRgNFT8VN9REYwCrnLjcQJEKSvsLSeY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766292087"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 75.2.43.161:80 · api.enlight.apptoku.com

2025-12-20 08:59

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Sat, 20 Dec 2025 08:59:52 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=qCEp3zmIE1lQlfpS3QK2wM3RJpXSOgOtjUwt2eIwrvw%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766221192"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=qCEp3zmIE1lQlfpS3QK2wM3RJpXSOgOtjUwt2eIwrvw%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766221192"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2025-12-20 by HttpPlugin

Create report

Open service 99.83.217.1:443 · api.enlight.apptoku.com

2025-12-19 02:36

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/html; charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Fri, 19 Dec 2025 02:36:28 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: same-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=R4OsHexA0QdocdHBrJytvaDtNS%2F83iszrRXi5GW%2FFeY%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766111788"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=R4OsHexA0QdocdHBrJytvaDtNS%2F83iszrRXi5GW%2FFeY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766111788"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Connection: close

Page title: Enlight

<!doctype html><html lang="en"><head><meta charset="utf-8"/><link rel="icon" href="/static/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><meta name="description" content="Web site created using create-react-app"/><link rel="apple-touch-icon" sizes="180x180" href="/static/apple-touch-icon.png"/><link rel="icon" type="image/png" href="/static/favicon-32x32.png" sizes="32x32"/><link rel="icon" type="image/png" href="/static/favicon-16x16.png" sizes="16x16"/><link rel="mask-icon" href="/static/safari-pinned-tab.svg" color="#5bbad5"/><link rel="manifest" href="/static/manifest.json"/><title>Enlight</title><script defer="defer" src="/static/static/js/main.7235cf84.js"></script><link href="/static/static/css/main.02769bfd.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div></body></html>

Found 2025-12-19 by HttpPlugin

Create report

api.enlight.apptoku.com

Fingerprint:

408aa5acf3bd1de39f934a3aa1c12dc73813e55aa61315547df31d2703118a1e

CN:

api.enlight.apptoku.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-16 01:23

Not after:

2026-03-16 01:23

Domain summary

api.enlight.apptoku.com 10

1 recorded

IP summary

75.2.43.161 1 99.83.217.1 1

2 recorded

Domain api.enlight.apptoku.com

United States

Software information

Swagger API description is publicly available

Swagger API description is publicly available

api.enlight.apptoku.com

Domain summary

IP summary