Domain bookit-api-d.crax.it
The Netherlands
Software information
Kestrel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2026-01-11 00:10
Last seen 2026-02-02 05:32
Open for 22 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-02-02 05:32
-
-
Open service 20.105.232.44:443 · bookit-api-d.crax.it
2026-01-23 01:34
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 01:35:21 GMT Server: Kestrel x-ms-middleware-request-id: 00000000-0000-0000-0000-000000000000
Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.105.232.44:443 · bookit-api-d.crax.it
2026-01-11 00:10
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sun, 11 Jan 2026 00:11:20 GMT Server: Kestrel x-ms-middleware-request-id: 00000000-0000-0000-0000-000000000000
Found 2026-01-11 by HttpPluginCreate report
-
Open service 20.105.232.44:80 · bookit-api-d.crax.it
2026-01-11 00:10
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sun, 11 Jan 2026 00:11:19 GMT Location: https://bookit-api-d.crax.it/
Found 2026-01-11 by HttpPluginCreate report