Domain autodesk.databand.ai
Germany
Akamai International B.V.
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-28 07:30
Last seen 2026-02-01 18:55
Open for 65 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-02-01 18:55
-
-
Open service 2.23.7.8:443 · autodesk.databand.ai
2026-01-23 02:37
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-0000000000000000fa4995259b82def1-fa4995259b82def1-01 tracestate: in=fa4995259b82def1;fa4995259b82def1 X-INSTANA-T: fa4995259b82def1 X-INSTANA-S: fa4995259b82def1 Server-Timing: intid;desc=fa4995259b82def1 Expires: Fri, 23 Jan 2026 02:37:12 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 23 Jan 2026 02:37:12 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=IjE5MGJjNzdmMGFiOTgwMjU1N2ZmMjEzODFlMTQ4ZDhkNjNkNWY3NzAi.aXLe2A.thYIcHx8-v0HnNBq153SA1NneWE; Expires=Fri, 23 Jan 2026 03:37:12 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=6497cf2f-c694-4948-bf62-3f9181f9d0ba; Expires=Fri, 23 Jan 2026 03:37:12 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-23 by HttpPluginCreate report
-
Open service 2.23.7.8:443 · autodesk.databand.ai
2026-01-09 23:19
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-00000000000000002a1e344fbbc44534-2a1e344fbbc44534-01 tracestate: in=2a1e344fbbc44534;2a1e344fbbc44534 X-INSTANA-T: 2a1e344fbbc44534 X-INSTANA-S: 2a1e344fbbc44534 Server-Timing: intid;desc=2a1e344fbbc44534 Expires: Fri, 09 Jan 2026 23:19:10 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 09 Jan 2026 23:19:10 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=ImU4MzQ4YmRlMTc2MGQ3YWVjMjVjMWNiMGFlYTIxZjk5YTJjYTI0NWUi.aWGM7g.aow5A8UEoMFb_SpVmM3byTeO2aQ; Expires=Sat, 10 Jan 2026 00:19:10 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=956ab804-aba4-4088-8c6b-ebb179db88f6; Expires=Sat, 10 Jan 2026 00:19:10 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-09 by HttpPluginCreate report
-
Open service 2.23.7.8:443 · autodesk.databand.ai
2026-01-02 12:42
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-00000000000000003a377a616d35e74d-3a377a616d35e74d-01 tracestate: in=3a377a616d35e74d;3a377a616d35e74d X-INSTANA-T: 3a377a616d35e74d X-INSTANA-S: 3a377a616d35e74d Server-Timing: intid;desc=3a377a616d35e74d Expires: Fri, 02 Jan 2026 12:42:22 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 02 Jan 2026 12:42:22 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=IjI1N2E4YjhjMWU4NmZkYmMyNTZiOGY1ODlhMWQ5Nzg5OWY4ODk0ZTIi.aVe9Lg.D1gLF97rbrF_w2zP7g_aAn_JsVE; Expires=Fri, 02 Jan 2026 13:42:22 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=00a9e60a-0832-4a93-8d40-6c03e256fe7d; Expires=Fri, 02 Jan 2026 13:42:22 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-02 by HttpPluginCreate report
-
Open service 2.23.7.8:443 · autodesk.databand.ai
2025-12-22 17:58
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-000000000000000006075eb7fbda1ab7-06075eb7fbda1ab7-01 tracestate: in=06075eb7fbda1ab7;06075eb7fbda1ab7 X-INSTANA-T: 06075eb7fbda1ab7 X-INSTANA-S: 06075eb7fbda1ab7 Server-Timing: intid;desc=06075eb7fbda1ab7 Expires: Mon, 22 Dec 2025 17:58:33 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Mon, 22 Dec 2025 17:58:33 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=IjMwY2ZmNjdiY2IxOTY2OWEyNmM5ZmJkNTU0MDFmYTVhZGE3MDRiNmYi.aUmGyQ.2fYYtcAQqee9rBCup6WrEl4MfYE; Expires=Mon, 22 Dec 2025 18:58:33 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=80d4d5ac-9a7c-414c-b1f6-9ebd24786d0a; Expires=Mon, 22 Dec 2025 18:58:33 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2025-12-22 by HttpPluginCreate report
*.databand.aidataband.ai
CN:
*.databand.ai
Not before:
2025-11-30 00:00
Not after:
2026-12-01 23:59