LeakIX - Host dev.electrification.coursefinder.abb.com

Domain dev.electrification.coursefinder.abb.com

Germany

Akamai International B.V.

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 2.20.142.74
Domain: api.dev.electrification.coursefinder.abb.com
Port: 443
URL: https://api.dev.electrification.coursefinder.abb.com

First seen 2025-11-18 06:28
Last seen 2026-02-06 11:38
Open for 80 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b59f45cf23d9172477e5b22321d5ebbc7eb84a75

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Cache
GET /api/Cache/getKeys
GET /api/CircuitBreaker
GET /api/CircuitBreaker/{id}
GET /api/Country
GET /api/Country/country-by-learning-path
GET /api/Country/country-by-pmdi-learning-path
GET /api/Country/country-name-by-iso-code/{isoCode}
GET /api/CustomLearningPath
GET /api/CustomLearningPath/online-courses/{id}
GET /api/CustomLearningPath/{id}
GET /api/DomainOfExpertise/get-electrical-standards-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-channels-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-products-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-profiles-by-domain-of-expertise-learning-path
GET /api/ElectricalStandard
GET /api/Image/image/{id}
GET /api/Image/thumb/{id}
GET /api/Language
GET /api/Language/languagebycountry
GET /api/Language/languagebydomainofexpertiselearningpath
GET /api/Language/languagebylearningpath
GET /api/Language/languagebypmdilearningpath
GET /api/LearningPath/learningpath-by-id
GET /api/OnlineCourse
GET /api/OnlineCourse/GetAllOnlineCourses
GET /api/OnlineCourse/any/{id}
GET /api/OnlineCourse/course-curation
GET /api/OnlineCourse/electrical-standard-by-learning-path
GET /api/OnlineCourse/online-course-by-country-and-language
GET /api/OnlineCourse/online-course-by-domain-of-expertise-learning-path-id
GET /api/OnlineCourse/online-course-by-learning-path-id
GET /api/OnlineCourse/online-course-by-pmdi-learning-path-id
GET /api/OnlineCourse/service-training-lab-courses
GET /api/OnlineCourse/skill-level-by-course-curation
GET /api/OnlineCourse/skill-level-domain-of-expertise-paths
GET /api/OnlineCourse/skill-level-pmdi-paths
GET /api/OnlineCourse/skill-level-scdi-paths
GET /api/OnlineCourse/topic-path-by-learning-path
GET /api/OnlineCourse/topic-path-by-pmdi-learning-path
GET /api/OnlineCourse/{id}
GET /api/Owner
GET /api/Owner/{code}
GET /api/PMDI/all_paths
GET /api/PartnerHub/companies
GET /api/PartnerHub/countries
GET /api/PartnerHub/languages
GET /api/PartnerHub/policies/{email}
GET /api/PartnerHub/roles
GET /api/PartnerHub/translations
GET /api/PartnerHub/user-info/{email}
GET /api/PartnerHub/user-sidebar
GET /api/Product
GET /api/Product/filters
GET /api/Roles
GET /api/SCDI/all_paths
GET /api/SCDI/application_solution_paths
GET /api/SCDI/channel_sales_paths
GET /api/SCDI/segment_business_dev_paths
GET /api/SCDI/service_paths
GET /api/ServiceTrainingFilters
GET /api/ServiceTrainingFilters/category
GET /api/SwitchGear
GET /api/SwitchGear/{id}
GET /api/Tutorial
GET /api/User
GET /api/User/image
GET /api/UserFavoriteCourse
GET /api/Version
POST /api/CircuitBreaker/delete
POST /api/CustomLearningPath/create
POST /api/CustomLearningPath/{id}/delete
POST /api/CustomLearningPath/{id}/delete-course/{courseId}
POST /api/CustomLearningPath/{id}/edit
POST /api/LearningPath
POST /api/LearningPath/domain-of-expertise
POST /api/LearningPath/pmdi
POST /api/Notification/receivers
POST /api/Notification/send-email
POST /api/OnlineCourse/online-course-by-path-items
POST /api/SwitchGear/delete
POST /api/Tracking
POST /api/User/return_user_detail
POST /api/User/store_user_token
POST /api/UserFavoriteCourse/{id}
POST /api/UserFavoriteCourse/{id}/delete

Found on 2026-02-06 11:38

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b59f45cf23d9172477e5b22321d5ebbc172bddb5

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Cache
GET /api/Cache/getKeys
GET /api/CircuitBreaker
GET /api/CircuitBreaker/{id}
GET /api/Country
GET /api/Country/country-by-learning-path
GET /api/Country/country-by-pmdi-learning-path
GET /api/Country/country-name-by-iso-code/{isoCode}
GET /api/CustomLearningPath/online-courses/{id}
GET /api/CustomLearningPath/{id}
GET /api/DomainOfExpertise/get-electrical-standards-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-channels-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-products-by-domain-of-expertise-learning-path
GET /api/DomainOfExpertise/get-target-profiles-by-domain-of-expertise-learning-path
GET /api/ElectricalStandard
GET /api/Image/image/{id}
GET /api/Image/thumb/{id}
GET /api/Language
GET /api/Language/languagebycountry
GET /api/Language/languagebydomainofexpertiselearningpath
GET /api/Language/languagebylearningpath
GET /api/Language/languagebypmdilearningpath
GET /api/LearningPath/learningpath-by-id
GET /api/OnlineCourse
GET /api/OnlineCourse/GetAllOnlineCourses
GET /api/OnlineCourse/any/{id}
GET /api/OnlineCourse/course-curation
GET /api/OnlineCourse/electrical-standard-by-learning-path
GET /api/OnlineCourse/online-course-by-country-and-language
GET /api/OnlineCourse/online-course-by-domain-of-expertise-learning-path-id
GET /api/OnlineCourse/online-course-by-learning-path-id
GET /api/OnlineCourse/online-course-by-pmdi-learning-path-id
GET /api/OnlineCourse/service-training-lab-courses
GET /api/OnlineCourse/skill-level-by-course-curation
GET /api/OnlineCourse/skill-level-domain-of-expertise-paths
GET /api/OnlineCourse/skill-level-pmdi-paths
GET /api/OnlineCourse/skill-level-scdi-paths
GET /api/OnlineCourse/topic-path-by-learning-path
GET /api/OnlineCourse/topic-path-by-pmdi-learning-path
GET /api/OnlineCourse/{id}
GET /api/Owner
GET /api/Owner/{code}
GET /api/PMDI/all_paths
GET /api/PartnerHub/companies
GET /api/PartnerHub/countries
GET /api/PartnerHub/languages
GET /api/PartnerHub/policies/{email}
GET /api/PartnerHub/roles
GET /api/PartnerHub/translations
GET /api/PartnerHub/user-info/{email}
GET /api/PartnerHub/user-sidebar
GET /api/Product
GET /api/Product/filters
GET /api/Roles
GET /api/SCDI/all_paths
GET /api/SCDI/application_solution_paths
GET /api/SCDI/channel_sales_paths
GET /api/SCDI/segment_business_dev_paths
GET /api/SCDI/service_paths
GET /api/ServiceTrainingFilters
GET /api/ServiceTrainingFilters/category
GET /api/SwitchGear
GET /api/SwitchGear/{id}
GET /api/Tutorial
GET /api/User
GET /api/User/image
GET /api/Version
POST /api/CircuitBreaker/delete
POST /api/CustomLearningPath
POST /api/CustomLearningPath/create
POST /api/CustomLearningPath/delete
POST /api/CustomLearningPath/delete-course
POST /api/CustomLearningPath/edit
POST /api/LearningPath
POST /api/LearningPath/domain-of-expertise
POST /api/LearningPath/pmdi
POST /api/Notification/receivers
POST /api/Notification/send-email
POST /api/OnlineCourse/online-course-by-path-items
POST /api/SwitchGear/delete
POST /api/Tracking
POST /api/User/return_user_detail
POST /api/User/store_user_token
POST /api/UserFavoriteCourse/courses
POST /api/UserFavoriteCourse/{id}
POST /api/UserFavoriteCourse/{id}/delete

Found on 2025-11-23 05:47

Create report

Open service 23.50.131.154:80 · dev.electrification.coursefinder.abb.com

2026-02-06 11:38

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://dev.electrification.coursefinder.abb.com/
Date: Fri, 06 Feb 2026 11:39:15 GMT
Connection: close

Found 2 days ago by HttpPlugin

Create report

Open service 2.20.142.74:443 · api.dev.electrification.coursefinder.abb.com

2026-01-22 12:01

HTTP/1.1 404 Not Found
Content-Length: 0
Content-Security-Policy: default-src 'self'script-src 'self'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: ''
Cache-Control: no-store, no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Date: Thu, 22 Jan 2026 12:01:22 GMT
Connection: close

Found 2026-01-22 by HttpPlugin

Create report

Open service 2.20.142.74:443 · api.dev.electrification.coursefinder.abb.com

2026-01-09 07:16

HTTP/1.1 404 Not Found
Content-Length: 0
Content-Security-Policy: default-src 'self'script-src 'self'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: ''
Cache-Control: no-store, no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Date: Fri, 09 Jan 2026 07:16:16 GMT
Connection: close

Found 2026-01-09 by HttpPlugin

Create report

Open service 2.20.142.74:443 · api.dev.electrification.coursefinder.abb.com

2026-01-02 07:54

HTTP/1.1 404 Not Found
Content-Length: 0
Content-Security-Policy: default-src 'self'script-src 'self'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: ''
Cache-Control: no-store, no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Date: Fri, 02 Jan 2026 07:54:52 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.20.142.74:443 · api.dev.electrification.coursefinder.abb.com

2025-12-22 11:35

HTTP/1.1 404 Not Found
Content-Length: 0
Content-Security-Policy: default-src 'self'script-src 'self'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: ''
Cache-Control: no-store, no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Date: Mon, 22 Dec 2025 11:35:13 GMT
Connection: close

Found 2025-12-22 by HttpPlugin

Create report

waf-abb-cert19.abb.comapi.abby.abb.comapi.cloud.stg.connect.robotics.abb.comapi.coresolutions.abb.comapi.dev.customizing.busch-jaeger.deapi.dev.docweb.econfigure.abb.comapi.dev.electrification.coursefinder.abb.comapi.dev.otcweb.econfigure.abb.comapi.dev.products.electrificationtools.abb.comapi.dev.tripcurves.econfigure.abb.comapi.ordertracker.abb.comapi.products.electrificationtools.abb.comapi.qa.easyproweb.abb.comapi.smart-ip-configurator.mybuildings.abb.comapi.stage.electrification.coursefinder.abb.comapi.stage.ordertracker.abb.comapi.test.docweb.econfigure.abb.comapi.test.otcweb.econfigure.abb.comapi.test.tripcurves.econfigure.abb.comar.drivehub.abb.comauth.cloud.stg.connect.robotics.abb.combrand.busch-jaeger.dechatbotpa.abb.comcloud.stg.connect.robotics.abb.comdemo.api.aquamasterplus.measurementservice.abb.comdemo.api.onboardpro.aquamasterplus.measurementservice.abb.comdemo.aquamasterplus.measurementservice.abb.comdemo.onboardpro.aquamasterplus.measurementservice.abb.comdev-estserver.devicemanagement.motion.abb.comdev.admin.customizing.mybuildings.abb.comdev.api.admin.customizing.mybuildings.abb.comdev.api.easyproweb.abb.comdev.api.insite.abb.comdev.api.marketplace.ability.abbdev.be.easyproweb.abb.comdev.brand.busch-jaeger.dedev.customizing.busch-jaeger.dedev.customizing.mybuildings.abb.comdev.de.easyproweb.abb.comdev.docweb.econfigure.abb.comdev.econfigure.abb.comdev.electrification.coursefinder.abb.comdev.insite.abb.comdev.niessen.customizing.mybuildings.abb.comdev.plc.goselect.motion.abb.comdev.plcconfigurator.goselect.motion.abb.comdev.storage.traction.abb.comdev.tripcurves.econfigure.abb.comdiscountguidance.robotics.abb.comdrivehub.abb.comgmaochassieu.fr.abb.commaschinenbau.abb.commeasurement-care.abb.commondo.abbnew.fletch.abb.complm.robotics.abb.compowercore.abb.compreprod.ar.drivehub.abb.compreprod.drivehub.abb.comqa.easyproweb.abb.comqa.econfigure.abb.comqa.plc.goselect.motion.abb.comqa.plcconfigurator.goselect.motion.abb.comrap.abb.comremote-expertise.powertrain.abb.comrobotcare.abb.comseasons-greetings.abb.comsecureremote.abb.comstage.api.admin.customizing.mybuildings.abb.comstage.api.customizing.mybuildings.abb.comstage.api.easyproweb.abb.comstage.api.insite.abb.comstage.be.easyproweb.abb.comstage.customizing.busch-jaeger.destage.customizing.mybuildings.abb.comstage.discountguidance.robotics.abb.comstage.econfigure.abb.comstage.electrification.coursefinder.abb.comstage.insite.abb.comstage.measurement-care.abb.comstage.niessen.customizing.mybuildings.abb.comstage.robotcare.abb.comstage.seasons-greetings.abb.comstage.webapi.edcs.abb.comstorage.traction.abb.comstudio.drivehub.abb.comtest-estserver.devicemanagement.motion.abb.comtest.api.eapprove.us.abb.comtest.api.easyproweb.abb.comtest.ar.drivehub.abb.comtest.be.easyproweb.abb.comtest.bimagicdesigner.abb.comtest.docweb.econfigure.abb.comtest.drivehub.abb.comtest.econfigure.abb.comtest.otcweb.econfigure.abb.comtest.smarterpro.abb.comtest.tripcurves.econfigure.abb.comwww.mondo.abb

Fingerprint:

59087c9f6c3d9619270ab04306cc1779d47846e181adef715476825380eeeaa4

CN:

waf-abb-cert19.abb.com

Key:

ECDSA-256

Issuer:

DigiCert Global G3 TLS ECC SHA384 2020 CA1

Not before:

2025-12-10 00:00

Not after:

2026-05-12 23:59

Domain summary

api.dev.electrification.coursefinder.abb.com 5 dev.electrification.coursefinder.abb.com 0

2 recorded

IP summary

2.20.142.74 2 23.50.131.154 1 2.16.204.75 1

3 recorded