LeakIX - Host api.fairos.com

Domain api.fairos.com

Germany

Akamai International B.V.

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 23.50.131.149
Domain: api.fairos.com
Port: 443
URL: https://api.fairos.com

First seen 2025-11-19 14:41
Last seen 2026-01-15 21:05
Open for 57 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354905a88260e8915dfbb6ef63f67f5a3fae1c0e4fd9

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /users
GET /users/roles
POST /balance-bills/recent-uploads
POST /balance-bills/recent-uploads/by-query
POST /balance-bills/update/blob-collection/by-hash
POST /balance-bills/upload-bill
POST /balance-bills/upload-bill-portal
POST /balance-bills/upload/attachment-data
POST /balance-bills/upload/cover-sheet
POST /client-group/create
POST /client-group/delete
POST /client-group/get/all
POST /client-group/get/all/paged
POST /client-group/get/by-ids
POST /client-group/get/by-picker
POST /client-group/get/by-search
POST /client-group/update
POST /client-set-mitchell-policy/create
POST /client-set-mitchell-policy/delete
POST /client-set-mitchell-policy/get/all
POST /client-set-mitchell-policy/get/all/paged
POST /client-set-mitchell-policy/get/by-client-set
POST /client-set-mitchell-policy/get/by-ids
POST /client-set-mitchell-policy/get/by-picker
POST /client-set-mitchell-policy/get/by-search
POST /client-set-mitchell-policy/update
POST /client-set-option/create
POST /client-set-option/delete
POST /client-set-option/get/all
POST /client-set-option/get/all/paged
POST /client-set-option/get/by-client-set
POST /client-set-option/get/by-ids
POST /client-set-option/get/by-picker
POST /client-set-option/get/by-search
POST /client-set-option/get/by-user-client-set
POST /client-set-option/update
POST /client-set-pipeline-term/create
POST /client-set-pipeline-term/delete
POST /client-set-pipeline-term/get/all
POST /client-set-pipeline-term/get/all/paged
POST /client-set-pipeline-term/get/by-ids
POST /client-set-pipeline-term/get/by-picker
POST /client-set-pipeline-term/get/by-search
POST /client-set-pipeline-term/update
POST /client-set/create
POST /client-set/delete
POST /client-set/get/all
POST /client-set/get/all/paged
POST /client-set/get/by-ids
POST /client-set/get/by-picker
POST /client-set/get/by-search
POST /client-set/update
POST /member-group-onpoint-policy/create
POST /member-group-onpoint-policy/delete
POST /member-group-onpoint-policy/get/all
POST /member-group-onpoint-policy/get/all/paged
POST /member-group-onpoint-policy/get/by-ids
POST /member-group-onpoint-policy/get/by-picker
POST /member-group-onpoint-policy/get/by-search
POST /member-group-onpoint-policy/update
POST /messaging/help-me
POST /provider/safe-harbor/get/by-search/paged/restricted
POST /provider/safe-harbor/get/provider-lookup-options
POST /provider/safe-harbor/get/specialty-list
POST /provider/safe-harbor/get/summary-pdf/by-search
POST /user-client-set/create
POST /user-client-set/delete
POST /user-client-set/get/all
POST /user-client-set/get/all/paged
POST /user-client-set/get/by-ids
POST /user-client-set/get/by-picker
POST /user-client-set/get/by-search
POST /user-client-set/get/by-user
POST /user-client-set/update
POST /user-patient/create
POST /user-patient/delete
POST /user-patient/get/all
POST /user-patient/get/all/paged
POST /user-patient/get/by-ids
POST /user-patient/get/by-picker
POST /user-patient/get/by-search
POST /user-patient/update
POST /users/accept
POST /users/get/by-client-set
POST /users/invite

Found on 2026-01-15 21:05

Create report

Open service 2a02:26f0:3500:14::1724:a248:443 · api.fairos.com

2026-01-29 23:42

HTTP/1.1 404 Not Found
Content-Length: 0
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:67f252ec-3aa2-49c5-97a8-603d1806ad83
X-Powered-By: ASP.NET
Expires: Thu, 29 Jan 2026 23:42:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 29 Jan 2026 23:42:44 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=84
Server-Timing: origin; dur=62
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Akamai-GRN: 0.19a02417.1769730164.470d9256
Server-Timing: ak_p; desc="1769730164491_388276249_1192071766_14509_814_160_288_-";dur=1

Found 2026-01-29 by HttpPlugin

Create report

Open service 23.50.131.149:443 · api.fairos.com

2026-01-08 22:23

HTTP/1.1 404 Not Found
Content-Length: 0
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:67f252ec-3aa2-49c5-97a8-603d1806ad83
X-Powered-By: ASP.NET
Expires: Thu, 08 Jan 2026 22:23:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 08 Jan 2026 22:23:41 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=83
Server-Timing: origin; dur=61
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Akamai-GRN: 0.15173317.1767911021.fdfd1194
Server-Timing: ak_p; desc="1767911021009_389224213_4261220756_14341_583_100_104_-";dur=1

Found 2026-01-08 by HttpPlugin

Create report

Open service 23.50.131.149:443 · api.fairos.com

2026-01-02 11:29

HTTP/1.1 404 Not Found
Content-Length: 0
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:67f252ec-3aa2-49c5-97a8-603d1806ad83
X-Powered-By: ASP.NET
Expires: Fri, 02 Jan 2026 11:29:58 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Jan 2026 11:29:58 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=398
Server-Timing: origin; dur=60
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Akamai-GRN: 0.15173317.1767353398.9d7eba6c
Server-Timing: ak_p; desc="1767353398133_389224213_2642328172_45671_565_145_166_-";dur=1

Found 2026-01-02 by HttpPlugin

Create report

Open service 23.50.131.149:443 · api.fairos.com

2025-12-22 21:41

HTTP/1.1 404 Not Found
Content-Length: 0
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:67f252ec-3aa2-49c5-97a8-603d1806ad83
X-Powered-By: ASP.NET
Expires: Mon, 22 Dec 2025 21:41:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 22 Dec 2025 21:41:07 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=294
Server-Timing: origin; dur=61
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Akamai-GRN: 0.04173317.1766439667.4fa6ca12
Server-Timing: ak_p; desc="1766439667047_389224196_1336330770_35493_778_89_117_-";dur=1

Found 2025-12-22 by HttpPlugin

Create report

api.fairos.comapi.fairosrx.comapi.occunet.comfailover-api.fairos.comfailover-api.fairosrx.comfailover-api.occunet.comfailover-www.fairos.comfailover-www.fairosrx.comfailover-www.occunet.comfailover.fairos.comfailover.fairosrx.comfailover.occunet.comfairos.comfairosrx.comhealthohionetwork.comhonphysicianonly.cominspireamarillo.comoccunet.comwww.fairos.comwww.fairosrx.comwww.healthohionetwork.comwww.honphysicianonly.comwww.inspireamarillo.comwww.occunet.com

Fingerprint:

d76146cf5c8c35aa0b4a991234d5f8b9f6101799b12d1a57861d8c0e0607f6ce

CN:

www.occunet.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-19 13:41

Not after:

2026-02-17 13:41

Domain summary

api.fairos.com 4

1 recorded

IP summary

2a02:26f0:3500:14::1724:a248 1 23.50.131.149 1

2 recorded