Domain api.remotest.pro
United States
Software information
Heroku
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-25 00:05
Last seen 2026-01-09 16:25
Open for 45 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1a8bcc6e55fcba56f174bf48b174bf48b174bf48b174bf48bPublic Swagger UI/API detected at path: /webjars/swagger-ui/index.html - sample paths: GET /api/measurements/ssn/{ssn}/report POST /api/measurements/ssn/initiateFound on 2026-01-09 16:25
-
-
Open service 99.83.185.157:443 · api.remotest.pro
2026-01-09 16:25
HTTP/1.1 404 Not Found Backend-Version: 3670 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Length: 0 Date: Fri, 09 Jan 2026 16:25:56 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=eKqUu2H9EGWrcOzPLY17pr9Q47uMxX3SrNugw69953U%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767975956"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=eKqUu2H9EGWrcOzPLY17pr9Q47uMxX3SrNugw69953U%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767975956" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Connection: closeFound 2026-01-09 by HttpPluginCreate report
-
Open service 99.83.185.157:443 · api.remotest.pro
2026-01-02 21:37
HTTP/1.1 404 Not Found Backend-Version: 3657 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Length: 0 Date: Fri, 02 Jan 2026 21:37:32 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=auTKFyDn23Plb9sB32tYlKbOHkEMbcM4m%2FogGIN0pmY%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767389852"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=auTKFyDn23Plb9sB32tYlKbOHkEMbcM4m%2FogGIN0pmY%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767389852" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Connection: closeFound 2026-01-02 by HttpPluginCreate report
-
Open service 99.83.185.157:443 · api.remotest.pro
2025-12-22 22:50
HTTP/1.1 404 Not Found Backend-Version: 3646 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Length: 0 Date: Mon, 22 Dec 2025 22:50:18 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=fJndAh2xyt%2FuoRooIeVLCM9i45J8ZKDHuoyzrYF0qM8%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766443818"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=fJndAh2xyt%2FuoRooIeVLCM9i45J8ZKDHuoyzrYF0qM8%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766443818" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Connection: closeFound 2025-12-22 by HttpPluginCreate report
-
Open service 99.83.185.157:443 · api.remotest.pro
2025-12-21 04:38
HTTP/1.1 404 Not Found Backend-Version: 3646 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Length: 0 Date: Sun, 21 Dec 2025 04:38:49 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=EcIyriQWfnti9oyQr9e02GERUVR%2BSmo1zhdMkvnP7tQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766291929"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=EcIyriQWfnti9oyQr9e02GERUVR%2BSmo1zhdMkvnP7tQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766291929" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Connection: closeFound 2025-12-21 by HttpPluginCreate report