LeakIX - Host api.guito.software

Domain api.guito.software

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

heroku-router

tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.248.132.87
Domain: api.guito.software
Port: 80
URL: http://api.guito.software

First seen 2025-11-19 13:00
Last seen 2025-12-22 22:23
Open for 33 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2025-12-22 22:23
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.97.79
Domain: api.guito.software
Port: 443
URL: https://api.guito.software

First seen 2025-11-19 13:00
Last seen 2025-12-22 15:39
Open for 33 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2025-12-22 15:39
Create report

Open service 13.248.132.87:80 · api.guito.software

2026-01-09 06:27

HTTP/1.1 404 Not Found
Content-Length: 548
Cache-Control: no-cache, no-store
Content-Type: text/html; charset=utf-8
Date: 2026-01-09 06:28:30.875140301 +0000 UTC
Server: heroku-router

Page title: No such app

<!DOCTYPE html>
<html>
  <head>
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta charset="utf-8">
    <title>No such app</title>
    <style media="screen">
      html,body,iframe {
        margin: 0;
        padding: 0;
      }
      html,body {
        height: 100%;
        overflow: hidden;
      }
      iframe {
        width: 100%;
        height: 100%;
        border: 0;
      }
    </style>
  </head>
  <body>
    <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe>
  </body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 13.248.132.87:80 · api.guito.software

2026-01-02 05:46

HTTP/1.1 404 Not Found
Content-Length: 548
Cache-Control: no-cache, no-store
Content-Type: text/html; charset=utf-8
Date: 2026-01-02 05:46:58.239913069 +0000 UTC
Server: heroku-router

Page title: No such app

<!DOCTYPE html>
<html>
  <head>
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta charset="utf-8">
    <title>No such app</title>
    <style media="screen">
      html,body,iframe {
        margin: 0;
        padding: 0;
      }
      html,body {
        height: 100%;
        overflow: hidden;
      }
      iframe {
        width: 100%;
        height: 100%;
        border: 0;
      }
    </style>
  </head>
  <body>
    <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe>
  </body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 13.248.132.87:80 · api.guito.software

2025-12-22 22:23

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 113
Content-Type: application/json; charset=utf-8
Date: Mon, 22 Dec 2025 22:23:25 GMT
Etag: W/"71-gxyqpnJUr11x9B8FihTO9VE0JLk"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 200
Ratelimit-Policy: 200;w=900
Ratelimit-Remaining: 199
Ratelimit-Reset: 900
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=kxBSNK84NL8Pz34HbJAs4IuURG1bId7JGEarfsWxZ2U%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766442205"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=kxBSNK84NL8Pz34HbJAs4IuURG1bId7JGEarfsWxZ2U%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766442205"
Server: Heroku
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"status":"OK","message":"GUITO Finance API is running","version":"1.0.0","timestamp":"2025-12-22T22:23:25.077Z"}

Found 2025-12-22 by HttpPlugin

Create report

Open service 75.2.97.79:443 · api.guito.software

2025-12-22 15:39

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 113
Content-Type: application/json; charset=utf-8
Date: Mon, 22 Dec 2025 15:39:50 GMT
Etag: W/"71-iLfhHjC2L83ehtuaVVf07YLJvlA"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 200
Ratelimit-Policy: 200;w=900
Ratelimit-Remaining: 199
Ratelimit-Reset: 900
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2F%2Bw5CHMCxzJd7fOIa7ttNS%2FxVRqp8PwCX4kJ3YJyEEY%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766417990"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2F%2Bw5CHMCxzJd7fOIa7ttNS%2FxVRqp8PwCX4kJ3YJyEEY%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766417990"
Server: Heroku
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"status":"OK","message":"GUITO Finance API is running","version":"1.0.0","timestamp":"2025-12-22T15:39:50.876Z"}

Found 2025-12-22 by HttpPlugin

Create report

Open service 13.248.132.87:80 · api.guito.software

2025-12-21 03:02

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 113
Content-Type: application/json; charset=utf-8
Date: Sun, 21 Dec 2025 03:02:53 GMT
Etag: W/"71-oyfOS+crYoEXGIN/jDtAfTskJ+k"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 200
Ratelimit-Policy: 200;w=900
Ratelimit-Remaining: 199
Ratelimit-Reset: 900
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=e%2Fn0Thaz3Hvk9sqbYWN6InPc2U7v7qv7OqMMcwE22Tc%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766286173"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=e%2Fn0Thaz3Hvk9sqbYWN6InPc2U7v7qv7OqMMcwE22Tc%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766286173"
Server: Heroku
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"status":"OK","message":"GUITO Finance API is running","version":"1.0.0","timestamp":"2025-12-21T03:02:53.696Z"}

Found 2025-12-21 by HttpPlugin

Create report

Open service 75.2.97.79:443 · api.guito.software

2025-12-20 16:14

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 113
Content-Type: application/json; charset=utf-8
Date: Sat, 20 Dec 2025 16:14:41 GMT
Etag: W/"71-xrE6vGob+D6qDy6Erz/eDgT+3rw"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 200
Ratelimit-Policy: 200;w=900
Ratelimit-Remaining: 199
Ratelimit-Reset: 900
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=KpeLi7WO7DOCY%2Ftv4FVOEiQsHKDEkE7ErCNW6x4IGeQ%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766247281"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=KpeLi7WO7DOCY%2Ftv4FVOEiQsHKDEkE7ErCNW6x4IGeQ%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766247281"
Server: Heroku
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"status":"OK","message":"GUITO Finance API is running","version":"1.0.0","timestamp":"2025-12-20T16:14:41.634Z"}

Found 2025-12-20 by HttpPlugin

Create report

Open service 13.248.132.87:80 · api.guito.software

2025-12-19 03:20

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 113
Content-Type: application/json; charset=utf-8
Date: Fri, 19 Dec 2025 03:20:41 GMT
Etag: W/"71-dSD3gtGzm9i8WTdOZBTrNcI9rOo"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Ratelimit-Limit: 200
Ratelimit-Policy: 200;w=900
Ratelimit-Remaining: 199
Ratelimit-Reset: 900
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lfjAKrBMvcJmkAI8wxqbbxl0hiHVol0%2BUTJlPan6020%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766114441"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lfjAKrBMvcJmkAI8wxqbbxl0hiHVol0%2BUTJlPan6020%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766114441"
Server: Heroku
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


{"status":"OK","message":"GUITO Finance API is running","version":"1.0.0","timestamp":"2025-12-19T03:20:41.854Z"}

Found 2025-12-19 by HttpPlugin

Create report

api.guito.software

Fingerprint:

6836470252f33ade8c9077f77d73236ccd8c0017e60079a3b3a39d534dd5ba38

CN:

api.guito.software

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-04 00:36

Not after:

2026-02-02 00:35

Domain summary

api.guito.software 8

1 recorded

IP summary

13.248.132.87 2 75.2.97.79 1

2 recorded

Domain api.guito.software

United States

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Create report

Create report

api.guito.software

Domain summary

IP summary