LeakIX - Host arkhamcave.net

Domain arkhamcave.net

Latvia

CLOUDFLARENET

Software information

cloudflare

tcp/443 tcp/80 tcp/8443

openresty

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.80.1
Domain: arkhamcave.net
Port: 80
URL: http://arkhamcave.net

First seen 2025-09-08 19:42
Last seen 2025-09-23 08:12
Open for 14 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2025-09-23 08:12
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.112.1
Domain: arkhamcave.net
Port: 8443
URL: https://arkhamcave.net:8443

First seen 2025-09-08 19:42
Last seen 2025-11-16 22:09
Open for 69 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2025-11-16 22:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 91.105.107.131
Domain: kinopoisk.arkhamcave.net
Port: 443
URL: https://kinopoisk.arkhamcave.net

First seen 2025-11-10 03:13
Last seen 2026-01-16 06:20
Open for 67 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-16 06:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.80.1
Domain: arkhamcave.net
Port: 443
URL: https://arkhamcave.net

First seen 2025-09-08 19:42
Last seen 2025-11-16 03:03
Open for 68 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2025-11-16 03:03
Create report

Open service 91.105.107.131:443 · kinopoisk.arkhamcave.net

2026-01-09 05:01

HTTP/1.1 307 Temporary Redirect
Server: openresty
Date: Fri, 09 Jan 2026 05:01:22 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: Express
Location: /login
X-Served-By: kinopoisk.arkhamcave.net

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.21.112.1:8443 · arkhamcave.net

2026-01-09 01:03

HTTP/1.1 522 
Date: Fri, 09 Jan 2026 01:03:27 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
speculation-rules: "/cdn-cgi/speculation"
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 9bb003d63d7bd7d5-FRA
alt-svc: h3=":8443"; ma=86400


error code: 522

Found 2026-01-09 by HttpPlugin

Create report

Open service 91.105.107.131:443 · kinopoisk.arkhamcave.net

2026-01-09 00:52

HTTP/1.1 307 Temporary Redirect
Server: openresty
Date: Fri, 09 Jan 2026 00:52:58 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: Express
Location: /login
X-Served-By: kinopoisk.arkhamcave.net

Found 2026-01-09 by HttpPlugin

Create report

Open service 91.105.107.131:443 · getmovie.arkhamcave.net

2026-01-09 00:52

HTTP/1.1 400 Bad Request
Server: openresty
Date: Fri, 09 Jan 2026 00:52:58 GMT
Content-Type: text/html
Content-Length: 252
Connection: close

Page title: 400 The plain HTTP request was sent to HTTPS port

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>openresty</center>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 91.105.107.131:80 · getmovie.arkhamcave.net

2026-01-09 00:52

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 09 Jan 2026 00:52:58 GMT
Content-Type: text/html
Content-Length: 1033
Last-Modified: Wed, 09 Jul 2025 21:19:19 GMT
Connection: close
ETag: "686edcd7-409"
Accept-Ranges: bytes

Page title: Default Site

<!DOCTYPE html>
<html lang="en">
    <head>
        <meta charset="utf-8">
        <meta http-equiv="X-UA-Compatible" content="IE=edge">
        <meta name="viewport" content="width=device-width, initial-scale=1">
        <title>Default Site</title>
        <link href="https://maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css" rel="stylesheet">
        <style>
            .jumbotron { margin-top: 50px; }
        </style>
    </head>
    <body>
        <div class="container">
            <div class="jumbotron">
                <h1>Congratulations!</h1>
                <p>You've successfully started the Nginx Proxy Manager.</p>
                <p>If you're seeing this site then you're trying to access a host that isn't set up yet.</p>
                <p>Log in to the Admin panel to get started.</p>
            </div>
            <p class="text-center"><small>Powered by <a href="https://github.com/jc21/nginx-proxy-manager" target="_blank">Nginx Proxy Manager</a></small></p>
        </div>
    </body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 91.105.107.131:80 · kinopoisk.arkhamcave.net

2026-01-09 00:52

HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Fri, 09 Jan 2026 00:52:58 GMT
Content-Type: text/html
Content-Length: 166
Connection: close
Location: https://kinopoisk.arkhamcave.net/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>openresty</center>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.21.80.1:443 · arkhamcave.net

2026-01-08 19:16

HTTP/1.1 522 
Date: Thu, 08 Jan 2026 19:16:37 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
speculation-rules: "/cdn-cgi/speculation"
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 9bae07c79a819a21-FRA
alt-svc: h3=":443"; ma=86400


error code: 522

Found 2026-01-08 by HttpPlugin