Domain dev.api.kr.daro.so
Software information
cloudflare
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-25 18:56
Last seen 2026-01-09 05:40
Open for 44 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-09 05:40
-
-
Open service 104.26.7.89:443 · dev.api.kr.daro.so
2026-01-09 05:40
HTTP/1.1 404 Not Found Date: Fri, 09 Jan 2026 05:40:54 GMT Content-Type: application/json Content-Length: 56 Connection: close x-xss-protection: 0 x-content-type-options: nosniff x-frame-options: SAMEORIGIN cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 referrer-policy: no-referrer x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none vary: Origin strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=D99PitHDZbRk%2F7Qf%2Blpza%2BINK9qhUb0r39NdG74xwFDy3RaJL43xi4mLm1ONn6Ekswmfo6UJ2nKnyv0I9dY8QtT0MJzjBx3OQ015wBTqCaUG"}]} Server: cloudflare CF-RAY: 9bb19a3d2e4fdc54-FRA {"code":404,"error":"NotFound","message":"Cannot GET /"}Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.26.7.89:443 · dev.api.kr.daro.so
2026-01-02 04:56
HTTP/1.1 404 Not Found Date: Fri, 02 Jan 2026 04:56:05 GMT Content-Type: application/json Content-Length: 56 Connection: close x-xss-protection: 0 x-content-type-options: nosniff x-frame-options: SAMEORIGIN cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 referrer-policy: no-referrer x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none vary: Origin strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UgLxPYr7e56NZ%2Fvk9l3pEm1TQuXgY5IRsbg%2FzRc2frNX8YeC035YaXz5b%2B3b0H%2F6QmjfjuN6q20PBZufOGVw%2Fo0vtSjark0q83YYRe0ouMZJ"}]} Server: cloudflare CF-RAY: 9b77aaf72d0dc8b1-YYZ {"code":404,"error":"NotFound","message":"Cannot GET /"}Found 2026-01-02 by HttpPluginCreate report
-
Open service 104.26.7.89:443 · dev.api.kr.daro.so
2025-12-22 17:13
HTTP/1.1 404 Not Found Date: Mon, 22 Dec 2025 17:13:57 GMT Content-Type: application/json Content-Length: 56 Connection: close x-xss-protection: 0 x-content-type-options: nosniff x-frame-options: SAMEORIGIN cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 referrer-policy: no-referrer x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none vary: Origin strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FpG8OvFHgNDyW9IblhryqJTwo%2BnIUqDOExeacXzz8SLu8OdgCsozpuTZFREak32Y4%2FoSipMabVIFMm8ELCuGoLsQtVBe%2FfxHZpI8WN5aj%2FWZ"}]} Server: cloudflare CF-RAY: 9b2140b12a5f97ed-EWR {"code":404,"error":"NotFound","message":"Cannot GET /"}Found 2025-12-22 by HttpPluginCreate report
-
Open service 104.26.7.89:443 · dev.api.kr.daro.so
2025-12-20 14:08
HTTP/1.1 404 Not Found Date: Sat, 20 Dec 2025 14:08:36 GMT Content-Type: application/json Content-Length: 56 Connection: close x-xss-protection: 0 x-content-type-options: nosniff x-frame-options: SAMEORIGIN cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 referrer-policy: no-referrer x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none vary: Origin strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FzxCZRP852AkUZE4gRZuwVz1Jpz%2FPtod8j2OPxNwslS%2BRW3zZ3dDHjUfZjx%2BB5fx2J4Oaf%2F%2Bm1S50AJhAlYNQX1iIGWADzvmIcLVhJcd4GSj"}]} Server: cloudflare CF-RAY: 9b0fb6711d0b4219-EWR {"code":404,"error":"NotFound","message":"Cannot GET /"}Found 2025-12-20 by HttpPluginCreate report