LeakIX - Host api.trackittoo.com

Domain api.trackittoo.com

United States

RAILWAY

Software information

railway-edge

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 66.33.22.145
Domain: api.trackittoo.com
Port: 443
URL: https://api.trackittoo.com

First seen 2026-01-12 15:54
Last seen 2026-01-15 19:20
Open for 3 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-15 19:20
Create report

Open service 66.33.22.145:443 · api.trackittoo.com

2026-01-22 21:41

HTTP/1.1 404 Not Found
Content-Length: 101
Content-Type: application/json
Server: railway-edge
X-Railway-Edge: railway/europe-west4-drams3a
X-Railway-Fallback: true
X-Railway-Request-Id: vPtUBaHYS9qZUr30jUJq2g
Date: Thu, 22 Jan 2026 21:41:32 GMT
Connection: close


{"status":"error","code":404,"message":"Application not found","request_id":"vPtUBaHYS9qZUr30jUJq2g"}

Found 2026-01-22 by HttpPlugin

Create report

Open service 66.33.22.145:443 · api.trackittoo.com

2026-01-12 15:54

HTTP/1.1 404 Not Found
Content-Length: 18
Content-Type: text/plain
Date: Mon, 12 Jan 2026 15:54:25 GMT
Server: railway-edge
X-Railway-Edge: railway/europe-west4-drams3a
X-Railway-Request-Id: C4mvos6vRxWsoC4MrJsmnA
Connection: close


404 page not found

Found 2026-01-12 by HttpPlugin

Create report

Open service 66.33.22.145:80 · api.trackittoo.com

2026-01-12 15:54

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Location: https://api.trackittoo.com/
Server: railway-edge
X-Railway-Edge: railway/europe-west4-drams3a
X-Railway-Request-Id: -e9qjmhVT82060C5ss7a6g
Date: Mon, 12 Jan 2026 15:54:32 GMT
Content-Length: 62
Connection: close


<a href="https://api.trackittoo.com/">Moved Permanently</a>.

Found 2026-01-12 by HttpPlugin

Create report

*.up.railway.app

Fingerprint:

01ad41a287faf64bda89b18217d130c0074c2ec76c80e91f9acdde649937fde8

CN:

*.up.railway.app

Key:

RSA-4096

Issuer:

R12

Not before:

2025-12-06 14:06

Not after:

2026-03-06 14:06

api.trackittoo.com

Fingerprint:

5cd1244139b695d6eed33845476acd570231f6b2c7fdd9b0161618ed58672871

CN:

api.trackittoo.com

Key:

RSA-2048

Issuer:

R13

Not before:

2026-01-12 14:54

Not after:

2026-04-12 14:54

Domain summary

api.trackittoo.com 3

1 recorded

IP summary

66.33.22.145 2

1 recorded

Domain api.trackittoo.com

United States

Software information

Swagger API description is publicly available

Create report

Create report

Create report

*.up.railway.app

api.trackittoo.com

Domain summary

IP summary