Domain api.retailaudittool.com
United States
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2026-01-12 20:40
Last seen 2026-01-23 00:36
Open for 10 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-23 00:36
-
-
Open service 20.118.48.5:443 · api.retailaudittool.com
2026-01-23 00:36
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 00:37:11 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=9711c419a659049fd2590cda84358b6b7fe4a165cdb6acbb6ef91d696e076af4;Path=/;HttpOnly;Secure;Domain=api.retailaudittool.com Set-Cookie: ARRAffinitySameSite=9711c419a659049fd2590cda84358b6b7fe4a165cdb6acbb6ef91d696e076af4;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.retailaudittool.com Strict-Transport-Security: max-age=2592000 Request-Context: appId=cid-v1:2ac87a9a-7dac-4fd9-930e-a34c3d3330a5 api-code-version: 1.6.0+7ea1cd8e03483d7def603ad1d1fba3c1c6b64999 api-code-build-number: not set api-environment: Production X-Rate-Limit-Limit: 1s X-Rate-Limit-Remaining: 99 X-Rate-Limit-Reset: 2026-01-23T00:37:12.4498782Z X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.118.48.5:80 · api.retailaudittool.com
2026-01-12 20:40
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 20:41:15 GMT Location: https://api.retailaudittool.com/
Found 2026-01-12 by HttpPluginCreate report
-
Open service 20.118.48.5:443 · api.retailaudittool.com
2026-01-12 20:40
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 20:41:16 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=cba0048d1feb11abf4fb03a49ea21751fb1ae996b47e13d8e4bad89d0f470668;Path=/;HttpOnly;Secure;Domain=api.retailaudittool.com Set-Cookie: ARRAffinitySameSite=cba0048d1feb11abf4fb03a49ea21751fb1ae996b47e13d8e4bad89d0f470668;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.retailaudittool.com Strict-Transport-Security: max-age=2592000 Request-Context: appId=cid-v1:2ac87a9a-7dac-4fd9-930e-a34c3d3330a5 api-code-version: 1.6.0+7ea1cd8e03483d7def603ad1d1fba3c1c6b64999 api-code-build-number: not set api-environment: Production X-Rate-Limit-Limit: 1s X-Rate-Limit-Remaining: 99 X-Rate-Limit-Reset: 2026-01-12T20:41:17.4226323Z X-Powered-By: ASP.NET
Found 2026-01-12 by HttpPluginCreate report