Domain auth0-api.nextech.com
Software information
cloudflare
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-01 23:47
Last seen 2026-01-08 23:22
Open for 37 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6063b63dfef34e08c3f6d5e574d66721a2a33e5742Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths: DELETE /api/Session/{organizationId}/End DELETE /api/Session/{userId}/EndUserSession DELETE /api/User/DeleteUserIpException DELETE /api/User/{email}/Bounce DELETE /api/User/{id}/MFA DELETE /api/User/{id}/Metadata/{key} DELETE /api/User/{id}/Passkeys/{passkeyId} DELETE /api/User/{id}/UnlinkExternal/{provider}/{externalUserId} GET /api/FeatureFlag GET /api/FeatureFlag/GetFeatureFlagValue GET /api/FeatureFlag/{flagKey} GET /api/Health GET /api/Health/Badge GET /api/IpRestriction GET /api/IpRestriction/{ipRestrictionId} GET /api/OrgAkaReference GET /api/OrgAkaReference/{organizationId} GET /api/Organization GET /api/Organization/{orgId}/Members GET /api/Organization/{orgId}/orgsetting GET /api/Organization/{organizationId} GET /api/Organization/{organizationId}/OrgAkaReference GET /api/Role GET /api/Role/{name} GET /api/Session/ExpirationSettings GET /api/Ticket/AccountUpdate/Acknowledge/{ticketId} GET /api/Ticket/AccountUpdate/{email} GET /api/User GET /api/User/External GET /api/User/GetUserIpException GET /api/User/SearchUserIpExceptions GET /api/User/{email}/Bounce/Status GET /api/User/{email}/Messages GET /api/User/{id} GET /api/User/{id}/Block GET /api/User/{id}/EnrolledDevices GET /api/User/{id}/Organization GET /api/User/{id}/Organization/{orgId} GET /api/User/{id}/Organization/{orgId}/Role GET /api/User/{id}/Organization/{orgId}/Role/{roleId} GET /api/User/{id}/Passkeys GET /api/User/{id}/PasswordResetRequest/Log POST /api/Limit/OrgChange POST /api/Organization/UpdateCache POST /api/Organization/{orgId}/UpdateDefaultProductForUsers/{productId} POST /api/Role/UpdateCache POST /api/Session/CheckForExpiration POST /api/Session/End POST /api/Session/KeepAlive POST /api/Session/Register POST /api/Ticket/AccountUpdate POST /api/Ticket/AccountUpdate/AcknowledgeMultiple/{ticketIds} POST /api/Ticket/AccountUpdate/{ticketId}/ExtendExpiredTicket POST /api/Ticket/AccountUpdate/{ticketId}/Resend POST /api/User/PasswordResetRequest POST /api/User/PasswordResetRequest/Log POST /api/User/{id}/ForcePasswordReset POST /api/User/{id}/Link/{provider} POST /api/User/{id}/LinkExternal POST /api/User/{id}/LoginPreference POST /api/User/{id}/Metadata POST /api/User/{id}/Organization/{orgId}/Roles POST /api/User/{userId}/Organization/{orgId}/AddUserIpException PUT /api/Ticket/AccountUpdate/{ticketId}/CancelTicketFound on 2026-01-08 23:22 -
Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6063b63dfef34e08c3f6d5e574d66721a2a7badd95Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths: DELETE /api/Session/{organizationId}/End DELETE /api/Session/{userId}/EndUserSession DELETE /api/User/DeleteUserIpException DELETE /api/User/{email}/Bounce DELETE /api/User/{id}/MFA DELETE /api/User/{id}/Metadata/{key} DELETE /api/User/{id}/Passkeys/{passkeyId} DELETE /api/User/{id}/UnlinkExternal/{provider}/{externalUserId} GET /api/FeatureFlag GET /api/FeatureFlag/GetFeatureFlagValue GET /api/FeatureFlag/{flagKey} GET /api/Health GET /api/Health/Badge GET /api/IpRestriction GET /api/IpRestriction/{ipRestrictionId} GET /api/OrgAkaReference GET /api/OrgAkaReference/{organizationId} GET /api/Organization GET /api/Organization/{orgId}/Members GET /api/Organization/{orgId}/orgsetting GET /api/Organization/{organizationId} GET /api/Role GET /api/Role/{name} GET /api/Session/ExpirationSettings GET /api/Ticket/AccountUpdate/Acknowledge/{ticketId} GET /api/Ticket/AccountUpdate/{email} GET /api/User GET /api/User/External GET /api/User/GetUserIpException GET /api/User/SearchUserIpExceptions GET /api/User/{email}/Bounce/Status GET /api/User/{email}/Messages GET /api/User/{id} GET /api/User/{id}/Block GET /api/User/{id}/EnrolledDevices GET /api/User/{id}/Organization GET /api/User/{id}/Organization/{orgId} GET /api/User/{id}/Organization/{orgId}/Role GET /api/User/{id}/Organization/{orgId}/Role/{roleId} GET /api/User/{id}/Passkeys GET /api/User/{id}/PasswordResetRequest/Log POST /api/Limit/OrgChange POST /api/Organization/UpdateCache POST /api/Organization/{orgId}/UpdateDefaultProductForUsers/{productId} POST /api/Role/UpdateCache POST /api/Session/CheckForExpiration POST /api/Session/End POST /api/Session/KeepAlive POST /api/Session/Register POST /api/Ticket/AccountUpdate POST /api/Ticket/AccountUpdate/AcknowledgeMultiple/{ticketIds} POST /api/Ticket/AccountUpdate/{ticketId}/ExtendExpiredTicket POST /api/Ticket/AccountUpdate/{ticketId}/Resend POST /api/User/PasswordResetRequest POST /api/User/PasswordResetRequest/Log POST /api/User/{id}/ForcePasswordReset POST /api/User/{id}/Link/{provider} POST /api/User/{id}/LinkExternal POST /api/User/{id}/LoginPreference POST /api/User/{id}/Metadata POST /api/User/{id}/Organization/{orgId}/Roles POST /api/User/{userId}/Organization/{orgId}/AddUserIpException PUT /api/Ticket/AccountUpdate/{ticketId}/CancelTicketFound on 2025-12-01 23:47
-
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2026-01-08 23:22
HTTP/1.1 200 OK Date: Thu, 08 Jan 2026 23:22:58 GMT Content-Length: 0 Connection: close CF-RAY: 9baf70a3aae0985c-EWR Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=s_mU07AV6M3AMTN0JlnIvjeY53SNTRWbuQJ2A27uo.E-1767914578-1.0.1.1-i14pPGC5pYezjWsaEou3gFOjV3Hd5GCFQZfJsDXsRAKOozhj4nNIyeZalKQgWp6egkGLwq_hZXD8tyDCNlUY6N6ctkT6vuSnkj5Y.Q32m.4; path=/; expires=Thu, 08-Jan-26 23:52:58 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2026-01-08 by HttpPluginCreate report
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2026-01-01 22:13
HTTP/1.1 200 OK Date: Thu, 01 Jan 2026 22:13:10 GMT Content-Length: 0 Connection: close CF-RAY: 9b755cc1bf5b0f01-YYZ Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=dXegtfnkht0bDEXzLr1tnjvaSvbnEQ13hhv.xOTbmTY-1767305590-1.0.1.1-IVMr7dZ.FCFFdOBZGCW97XE25tcFHelx5bq4S6UVLFN7VImm6FqQo6SSrl3DobAhWID9igZJ2H2ipVTEVreRYIGgKd80RBGjrh6P4UnRmX0; path=/; expires=Thu, 01-Jan-26 22:43:10 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2026-01-01 by HttpPluginCreate report
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2025-12-30 05:46
HTTP/1.1 200 OK Date: Tue, 30 Dec 2025 05:46:32 GMT Content-Length: 0 Connection: close CF-RAY: 9b5f3cc29b750f79-EWR Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=5loQB.dfZxjN9PQtm1vqwWz6QFwDVLdG7tBf_HYn23E-1767073592-1.0.1.1-sWnjba0HD6FgqZATM6brA44rjEVYlIbBOGvb35O__i1KFk1pykcZsoc0sCxCpOVj98q.FsoxQZYOpoCHjNrV8819xf0CAn5Y1_J16VCA_1Y; path=/; expires=Tue, 30-Dec-25 06:16:32 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2025-12-30 by HttpPluginCreate report
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2025-12-22 19:01
HTTP/1.1 200 OK Date: Mon, 22 Dec 2025 19:01:26 GMT Content-Length: 0 Connection: close CF-RAY: 9b21de232c97dcb0-FRA Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=seByfiCzWeyprMn_ucuNtWSa.ScNTz5OS8b3aaOMDXI-1766430086-1.0.1.1-JZ1az3Mv1Ln.pDizE8DpubfvWrSrZ__efWSy6Hp0cPDhfcdxDoeEybd11U15SYc4YyRwHiUfJbCBZCuZDw5g5HU9pmeoChBkZmFJ50MEW5w; path=/; expires=Mon, 22-Dec-25 19:31:26 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2025-12-22 by HttpPluginCreate report
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2025-12-20 20:09
HTTP/1.1 200 OK Date: Sat, 20 Dec 2025 20:09:41 GMT Content-Length: 0 Connection: close CF-RAY: 9b11c75e88e79480-LHR Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=fBLck9nTwUE0nI9rrWpkyvl6Hj3_Q9GYBSsadKp2ip4-1766261381-1.0.1.1-a4BJfWjnsKHG.lyTonJ.L0E9PNJDqQ99wa3XDfmhDNyRAQ3.LwjQb0_6arzUHfbc9R3_en6kh1ikbyk76Z08BcTNjN0lPGyGcZVi8uRsLJQ; path=/; expires=Sat, 20-Dec-25 20:39:41 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2025-12-20 by HttpPluginCreate report
-
Open service 104.18.1.230:443 · auth0-api.nextech.com
2025-12-19 00:53
HTTP/1.1 200 OK Date: Fri, 19 Dec 2025 00:53:31 GMT Content-Length: 0 Connection: close CF-RAY: 9b02ec677f0c0f78-EWR Strict-Transport-Security: max-age=2592000 X-Powered-By: ASP.NET cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=aQNv09GEqiOTbOHhoFh4F0yUubYG.hZc1jT8WFj3jOw-1766105611-1.0.1.1-wxrxGdkK92ZNfM1_hYCIq6YHsLAucGVnhAZ4M3YoxTzr1GHxbj9waSxNfCDiB7_IMxHi0PASLDyUuMXjZK1_uzHDYJ8uf.zZ6SayyEyx_D4; path=/; expires=Fri, 19-Dec-25 01:23:31 GMT; domain=.nextech.com; HttpOnly; Secure; SameSite=None Server: cloudflare
Found 2025-12-19 by HttpPluginCreate report