Domain api.policygenius.com
United States
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-28 04:06
Last seen 2026-01-09 22:38
Open for 42 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-09 22:38
-
-
Open service 151.101.130.132:443 · api.policygenius.com
2026-01-09 22:38
HTTP/1.1 404 Not Found Connection: close Content-Length: 18 X-Frame-Options: deny Content-Security-Policy: frame-ancestors none X-Kong-Upstream-Latency: 4 X-Kong-Proxy-Latency: 10 Via: kong/2.8.4, 1.1 google, 1.1 varnish Content-Type: text/plain; charset=UTF-8 Accept-Ranges: bytes Date: Fri, 09 Jan 2026 22:38:35 GMT Age: 2 X-Served-By: cache-rtm-ehrd2290052-RTM X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1767998315.203917,VS0,VE1 Vary: Accept-Encoding Strict-Transport-Security: max-age=300 404 page not found
Found 2026-01-09 by HttpPluginCreate report
-
Open service 151.101.130.132:443 · api.policygenius.com
2025-12-30 12:25
HTTP/1.1 404 Not Found Connection: close Content-Length: 18 Content-Type: text/plain; charset=UTF-8 X-Frame-Options: deny Content-Security-Policy: frame-ancestors none X-Kong-Upstream-Latency: 2 X-Kong-Proxy-Latency: 16 Via: kong/2.8.4, 1.1 google, 1.1 varnish Accept-Ranges: bytes Date: Tue, 30 Dec 2025 12:25:45 GMT Age: 0 X-Served-By: cache-fra-eddf8230075-FRA X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1767097546.518780,VS0,VE1 Vary: Accept-Encoding Strict-Transport-Security: max-age=300 404 page not found
Found 2025-12-30 by HttpPluginCreate report
-
Open service 151.101.130.132:443 · api.policygenius.com
2025-12-22 21:22
HTTP/1.1 404 Not Found Connection: close Content-Length: 18 X-Frame-Options: deny Content-Security-Policy: frame-ancestors none X-Kong-Upstream-Latency: 4 X-Kong-Proxy-Latency: 12 Via: kong/2.8.4, 1.1 google, 1.1 varnish Content-Type: text/plain; charset=UTF-8 Accept-Ranges: bytes Date: Mon, 22 Dec 2025 21:22:22 GMT Age: 0 X-Served-By: cache-rtm-ehrd2290046-RTM X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1766438542.860833,VS0,VE339 Vary: Accept-Encoding Strict-Transport-Security: max-age=300 404 page not found
Found 2025-12-22 by HttpPluginCreate report
-
Open service 151.101.130.132:443 · api.policygenius.com
2025-12-20 21:35
HTTP/1.1 404 Not Found Connection: close Content-Length: 18 X-Frame-Options: deny Content-Security-Policy: frame-ancestors none X-Kong-Upstream-Latency: 3 X-Kong-Proxy-Latency: 8 Via: kong/2.8.4, 1.1 google, 1.1 varnish Content-Type: text/plain; charset=UTF-8 Accept-Ranges: bytes Date: Sat, 20 Dec 2025 21:35:12 GMT Age: 0 X-Served-By: cache-fra-eddf8230192-FRA X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1766266513.718348,VS0,VE2 Vary: Accept-Encoding Strict-Transport-Security: max-age=300 404 page not found
Found 2025-12-20 by HttpPluginCreate report