LeakIX - Host dev-tba-api.q-directories-dev.com

Domain dev-tba-api.q-directories-dev.com

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Kestrel Kestrel

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.50.2.43
Domain: dev-tba-api.q-directories-dev.com
Port: 443
URL: https://dev-tba-api.q-directories-dev.com

First seen 2025-12-06 09:57
Last seen 2026-01-09 10:29
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035490c303b8f686c10a8f6dc2cf3b71c7101f2776d48
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /apiinfos
GET /disclaimer/{language}
GET /v1/countries
GET /v1/cultures
GET /v1/lts/localization/languages
GET /v1/lts/resources
GET /v1/secrets/aiconnectionstring
GET /v1/secrets/googlemapskey
GET /v1/settings
GET /v1/truckBuddyAppInstances/{truckBuddyAppInstanceIdentifier}
GET /v1/userdisclaimer
POST /v1/userdisclaimer/hash
PUT /v1/truckBuddyAppInstances/{truckBuddyAppInstanceIdentifier}/preferences
```
  Found on 2026-01-09 10:29
Create report

Open service 20.50.2.43:443 · dev-tba-api.q-directories-dev.com

2026-01-09 10:29

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 10:30:30 GMT
Server: Kestrel
Location: /swagger/index.html
Set-Cookie: ARRAffinity=cb9a1e85b7f446b91cafd7e190ad73d52dcc97f1375ac71d21702bb4d90c19e0;Path=/;HttpOnly;Secure;Domain=dev-tba-api.q-directories-dev.com
Set-Cookie: ARRAffinitySameSite=cb9a1e85b7f446b91cafd7e190ad73d52dcc97f1375ac71d21702bb4d90c19e0;Path=/;HttpOnly;SameSite=None;Secure;Domain=dev-tba-api.q-directories-dev.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:eb736dad-6aaf-4b2c-a598-e22e0a9c2422

Found 2026-01-09 by HttpPlugin

Create report

Open service 20.50.2.43:443 · dev-tba-api.q-directories-dev.com

2026-01-02 11:03

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 02 Jan 2026 11:03:11 GMT
Server: Kestrel
Location: /swagger/index.html
Set-Cookie: ARRAffinity=b87c19a5269869f70deb7cc0a2ed190e1ca72b9babdcf5dd3634affeed69cbc1;Path=/;HttpOnly;Secure;Domain=dev-tba-api.q-directories-dev.com
Set-Cookie: ARRAffinitySameSite=b87c19a5269869f70deb7cc0a2ed190e1ca72b9babdcf5dd3634affeed69cbc1;Path=/;HttpOnly;SameSite=None;Secure;Domain=dev-tba-api.q-directories-dev.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:eb736dad-6aaf-4b2c-a598-e22e0a9c2422

Found 2026-01-02 by HttpPlugin

Create report

Open service 20.50.2.43:443 · dev-tba-api.q-directories-dev.com

2025-12-22 21:25

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 22 Dec 2025 21:25:48 GMT
Server: Kestrel
Location: /swagger/index.html
Set-Cookie: ARRAffinity=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;Secure;Domain=dev-tba-api.q-directories-dev.com
Set-Cookie: ARRAffinitySameSite=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;SameSite=None;Secure;Domain=dev-tba-api.q-directories-dev.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:eb736dad-6aaf-4b2c-a598-e22e0a9c2422

Found 2025-12-22 by HttpPlugin

Create report

Open service 20.50.2.43:443 · dev-tba-api.q-directories-dev.com

2025-12-20 22:55

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Sat, 20 Dec 2025 22:55:13 GMT
Server: Kestrel
Location: /swagger/index.html
Set-Cookie: ARRAffinity=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;Secure;Domain=dev-tba-api.q-directories-dev.com
Set-Cookie: ARRAffinitySameSite=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;SameSite=None;Secure;Domain=dev-tba-api.q-directories-dev.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:eb736dad-6aaf-4b2c-a598-e22e0a9c2422

Found 2025-12-20 by HttpPlugin

Create report

Open service 20.50.2.43:443 · dev-tba-api.q-directories-dev.com

2025-12-19 01:59

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 19 Dec 2025 01:59:32 GMT
Server: Kestrel
Location: /swagger/index.html
Set-Cookie: ARRAffinity=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;Secure;Domain=dev-tba-api.q-directories-dev.com
Set-Cookie: ARRAffinitySameSite=e5e65e80b466aaeb05b630ce4e72d24ce88f0da0e85596365c8c224a297b7ac2;Path=/;HttpOnly;SameSite=None;Secure;Domain=dev-tba-api.q-directories-dev.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:eb736dad-6aaf-4b2c-a598-e22e0a9c2422

Found 2025-12-19 by HttpPlugin

Create report

dev-tba-api.q-directories-dev.com

Fingerprint:

dfcabbc869df2e32561a6005e0a708e351f3ae93cc5c3b3a5f61ed4ca66162cc

CN:

dev-tba-api.q-directories-dev.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-06 00:00

Not after:

2026-04-14 23:59

Domain summary

dev-tba-api.q-directories-dev.com 5

1 recorded

IP summary

20.50.2.43 2

1 recorded

Domain dev-tba-api.q-directories-dev.com

The Netherlands

Software information

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

dev-tba-api.q-directories-dev.com

Domain summary

IP summary