LeakIX - Host client.mediplus.co.ao

Domain client.mediplus.co.ao

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.126.135.158
Domain: client.mediplus.co.ao
Port: 443
URL: https://client.mediplus.co.ao

First seen 2025-11-07 08:03
Last seen 2026-02-02 09:33
Open for 87 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549f9c0e215a64d4ed6f59739aaef7dbaab1de524e3
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/AuxiliarApi/GetCountries
GET /api/AuxiliarApi/GetInsurers
GET /api/AuxiliarApi/GetSex
GET /api/Beneficiary/GetBeneficiary
GET /api/ClientPolicyApi/GetPlansByPolicyId
GET /api/ClientPolicyApi/GetPolicies
GET /api/ClientPolicyApi/GetPoliciesDocuments
GET /api/ClientPolicyApi/GetPolicyDependents
POST /api/ProviderAPI/SearchClinic
```
  Found on 2026-02-02 09:33
Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2026-01-23 10:18

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Fri, 23 Jan 2026 10:18:28 GMT
Connection: close

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2026-01-10 09:43

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Sat, 10 Jan 2026 09:43:37 GMT
Connection: close

Found 2026-01-10 by HttpPlugin

Create report

Open service 20.126.135.158:80 · client.mediplus.co.ao

2026-01-10 09:43

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 10 Jan 2026 09:43:37 GMT
Connection: close
Content-Length: 204

Page title: client.mediplus.co.ao - /

<html><head><title>client.mediplus.co.ao - /</title></head><body><H1>client.mediplus.co.ao - /</H1><hr>

<pre> 7/23/2025 10:21 PM        &lt;dir&gt; <A HREF="/kisl/">kisl</A><br></pre><hr></body></html>

Found 2026-01-10 by HttpPlugin

Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2026-01-09 12:49

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Fri, 09 Jan 2026 12:49:56 GMT
Connection: close

Found 2026-01-09 by HttpPlugin

Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2026-01-02 08:03

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Fri, 02 Jan 2026 08:03:17 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 20.126.135.158:80 · client.mediplus.co.ao

2026-01-02 08:03

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 02 Jan 2026 08:03:16 GMT
Connection: close
Content-Length: 204

Page title: client.mediplus.co.ao - /

<html><head><title>client.mediplus.co.ao - /</title></head><body><H1>client.mediplus.co.ao - /</H1><hr>

<pre> 7/23/2025 10:21 PM        &lt;dir&gt; <A HREF="/kisl/">kisl</A><br></pre><hr></body></html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2026-01-02 06:48

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Fri, 02 Jan 2026 06:48:05 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 20.126.135.158:443 · client.mediplus.co.ao

2025-12-23 08:59

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Location: https://client.mediplus.co.ao/Account/Login?ReturnUrl=%2F
Server: Microsoft-IIS/10.0
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET
Date: Tue, 23 Dec 2025 08:59:19 GMT
Connection: close

Found 2025-12-23 by HttpPlugin

Create report

client.mediplus.co.ao

Fingerprint:

48ff66c743ae3b051acb7611bc0f8d52804ebe1d37f51ae124f66c35a5206385

CN:

client.mediplus.co.ao

Key:

RSA-3072

Issuer:

R12

Not before:

2026-01-02 07:03

Not after:

2026-04-02 07:03

client.mediplus.co.ao

Fingerprint:

9cf200aa9cf81f6fd08523521489a255f087b7f1aac0972492e519c498fc882c

CN:

client.mediplus.co.ao

Key:

RSA-3072

Issuer:

R13

Not before:

2025-11-07 07:03

Not after:

2026-02-05 07:03

Domain summary

client.mediplus.co.ao 8

1 recorded

IP summary

20.126.135.158 2

1 recorded

Domain client.mediplus.co.ao

The Netherlands

Software information

Swagger API description is publicly available

client.mediplus.co.ao

client.mediplus.co.ao

Domain summary

IP summary