Domain api.theprayerapp.net
United States
Software information
Kestrel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-22 12:31
Last seen 2026-01-09 12:46
Open for 79 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495e3e8ee92db1ac741e1ffb72e0312e5ee332fc22Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /v1.0/post-list/category/{postListId} DELETE /v1.0/post-list/expiration/{postListId} GET /v1.0 GET /v1.0/auth/me GET /v1.0/invitation/by-code/{invitationCode} GET /v1.0/invitation/list/{listId} GET /v1.0/invitation/{invitationId} GET /v1.0/lists/by-invitation-code/{code} GET /v1.0/lists/by_member/{userId} GET /v1.0/lists/categories/{listId} GET /v1.0/lists/public GET /v1.0/lists/search GET /v1.0/lists/{listId} GET /v1.0/lookup/statuses GET /v1.0/post-list/{postListId} GET /v1.0/posts/by_list/{userId}/{listId} GET /v1.0/posts/{userId} GET /v1.0/posts/{userId}/comments GET /v1.0/posts/{userId}/{category}/{type} GET /v1.0/users/{userId} POST /v1.0/invitation POST /v1.0/lists POST /v1.0/lists/archive/{listId} POST /v1.0/lists/members/by-invitation/{userId}/{code} POST /v1.0/lists/members/{userId}/{listId} POST /v1.0/lists/posts/{postId}/{listId} POST /v1.0/lists/unarchive/{listId} POST /v1.0/posts/archive/{userId}/{postId} POST /v1.0/posts/pin/{userId}/{postId}/{pinned} POST /v1.0/posts/prayed/{userId}/{postId}/{prayed} POST /v1.0/posts/status/{userId}/{postId}/{status} POST /v1.0/posts/unarchive/{userId}/{postId} POST /v1.0/posts/viewed/{userId}/{postId}/{viewed} PUT /v1.0/post-list/category/{postListId}/{listCategoryId} PUT /v1.0/post-list/expiration/{postListId}/{expirationDate} PUT /v1.0/post-list/status/{postListId}/{status}Found on 2026-01-09 12:46 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-02 20:14
-
-
Open service 40.71.11.140:443 · api.theprayerapp.net
2026-01-09 12:46
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 09 Jan 2026 12:47:11 GMT Server: Kestrel
Found 2026-01-09 by HttpPluginCreate report
-
Open service 40.71.11.140:443 · api.theprayerapp.net
2026-01-02 20:14
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 02 Jan 2026 20:14:58 GMT Server: Kestrel
Found 2026-01-02 by HttpPluginCreate report
-
Open service 40.71.11.140:443 · api.theprayerapp.net
2025-12-23 06:51
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Tue, 23 Dec 2025 06:51:09 GMT Server: Kestrel
Found 2025-12-23 by HttpPluginCreate report
-
Open service 40.71.11.140:443 · api.theprayerapp.net
2025-12-21 06:24
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sun, 21 Dec 2025 06:24:11 GMT Server: Kestrel
Found 2025-12-21 by HttpPluginCreate report
-
Open service 40.71.11.140:443 · api.theprayerapp.net
2025-12-19 08:22
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 19 Dec 2025 08:22:34 GMT Server: Kestrel
Found 2025-12-19 by HttpPluginCreate report