LeakIX - Host api.sysdelivery.com

Domain api.sysdelivery.com

United States

RAILWAY

Software information

railway-edge

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 66.33.22.145
Domain: api.sysdelivery.com
Port: 443
URL: https://api.sysdelivery.com

First seen 2025-12-03 20:26
Last seen 2026-02-01 19:26
Open for 59 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549108b15ee73abe94667029c7f44b1f25d7af3f1fd

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /delivery-zones
GET /financial-advances
GET /financial-advances/export
GET /hello-world
GET /modalities
GET /pix-keys/{userId}
GET /users
GET /users/export
GET /users/{id}
GET /users/{userId}/financial-advance/{entryDate}
POST /access/authenticate
POST /access/confirm-email
POST /access/recover-password
POST /access/refresh
POST /access/reset-password
POST /access/revoke
POST /delivery-workers/register
POST /financial-advances/import
POST /financial-advances/request
POST /pix-keys
POST /referrals
POST /users/import

Found on 2026-02-01 19:26

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549108b15ee1ed5bc3ca80c560a74decc4ea1510d1a

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /delivery-zones
GET /hello-world
GET /modalities
GET /pix-keys/{userId}
GET /users
GET /users/export
GET /users/{id}
POST /access/authenticate
POST /access/confirm-email
POST /access/recover-password
POST /access/refresh
POST /access/reset-password
POST /access/revoke
POST /delivery-financial-entry/import
POST /delivery-workers/register
POST /pix-keys
POST /referrals
POST /users/import

Found on 2026-01-16 09:41

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549108b15ee1ed5bc3ca80c560a74decc4e066b37be

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /delivery-zones
GET /hello-world
GET /modalities
GET /pix-keys/{userId}
GET /users
GET /users/export
GET /users/{id}
POST /access/authenticate
POST /access/confirm-email
POST /access/recover-password
POST /access/refresh
POST /access/reset-password
POST /access/revoke
POST /delivery-workers/register
POST /pix-keys
POST /referrals
POST /users/import

Found on 2025-12-16 19:14

Create report

Open service 66.33.22.145:80 · api.sysdelivery.com

2026-01-25 11:26

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Location: https://api.sysdelivery.com/
Server: railway-edge
X-Railway-Edge: railway/us-east4-eqdc4a
X-Railway-Request-Id: 7TymVMLJS5qOfySQAax-fw
Date: Sun, 25 Jan 2026 11:26:07 GMT
Content-Length: 63
Connection: close


<a href="https://api.sysdelivery.com/">Moved Permanently</a>.

Found 2026-01-25 by HttpPlugin

Create report

Open service 66.33.22.145:443 · api.sysdelivery.com

2026-01-25 11:26

HTTP/1.1 404 Not Found
Content-Length: 0
Date: Sun, 25 Jan 2026 11:26:03 GMT
Server: railway-edge
X-Railway-Edge: railway/us-east4-eqdc4a
X-Railway-Request-Id: dcU-n-rqTlSZvNN8woOzXw
Connection: close

Found 2026-01-25 by HttpPlugin

Create report

api.sysdelivery.com

Fingerprint:

ae1c05f5fb2b9d8e23fb6f0e1a60be44b4d7c23a5fb270f705823f0785be84b2

CN:

api.sysdelivery.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-11-26 11:22

Not after:

2026-02-24 11:22

Domain summary

api.sysdelivery.com 4

1 recorded

IP summary

66.33.22.145 2

1 recorded