LeakIX - Host dev.monashalfmarathon.com

Domain dev.monashalfmarathon.com

Indonesia

INDO Internet, PT

Ubuntu

Software information

nginx nginx 1.18.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 202.159.30.243
Domain: dev.monashalfmarathon.com
Port: 8443
URL: https://dev.monashalfmarathon.com:8443

First seen 2025-10-13 21:17
Last seen 2026-01-12 14:48
Open for 90 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-12 14:48
Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2026-01-12 14:48

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Mon, 12 Jan 2026 14:48:09 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2 days ago by HttpPlugin

Create report

Open service 202.159.30.243:80 · dev.monashalfmarathon.com

2026-01-12 14:48

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 12 Jan 2026 14:48:09 GMT
Content-Type: text/html
Content-Length: 180
Connection: close
Location: https://dev.monashalfmarathon.com/

Page title: 307 Temporary Redirect

<html>
<head><title>307 Temporary Redirect</title></head>
<body>
<center><h1>307 Temporary Redirect</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 202.159.30.243:443 · dev.monashalfmarathon.com

2026-01-12 14:48

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 12 Jan 2026 14:48:10 GMT
Transfer-Encoding: chunked
Connection: close
link: <https://dev.monashalfmarathon.com/en>; rel="alternate"; hreflang="en", <https://dev.monashalfmarathon.com/id>; rel="alternate"; hreflang="id", <https://dev.monashalfmarathon.com/>; rel="alternate"; hreflang="x-default"
location: /en
set-cookie: NEXT_LOCALE=en; Path=/; Expires=Tue, 12 Jan 2027 14:48:10 GMT; Max-Age=31536000; SameSite=lax


/en

Found 2 days ago by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2026-01-09 11:41

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Fri, 09 Jan 2026 11:41:25 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2026-01-09 by HttpPlugin

Create report

Open service 202.159.30.243:80 · dev.monashalfmarathon.com

2026-01-03 16:36

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 03 Jan 2026 16:36:55 GMT
Content-Type: text/html
Content-Length: 180
Connection: close
Location: https://dev.monashalfmarathon.com/

Page title: 307 Temporary Redirect

<html>
<head><title>307 Temporary Redirect</title></head>
<body>
<center><h1>307 Temporary Redirect</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Found 2026-01-03 by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2026-01-03 16:36

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Sat, 03 Jan 2026 16:36:54 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2026-01-03 by HttpPlugin

Create report

Open service 202.159.30.243:443 · dev.monashalfmarathon.com

2026-01-03 16:36

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 03 Jan 2026 16:36:55 GMT
Transfer-Encoding: chunked
Connection: close
link: <https://dev.monashalfmarathon.com/en>; rel="alternate"; hreflang="en", <https://dev.monashalfmarathon.com/id>; rel="alternate"; hreflang="id", <https://dev.monashalfmarathon.com/>; rel="alternate"; hreflang="x-default"
location: /en
set-cookie: NEXT_LOCALE=en; Path=/; Expires=Sun, 03 Jan 2027 16:36:55 GMT; Max-Age=31536000; SameSite=lax


/en

Found 2026-01-03 by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2026-01-01 19:38

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Thu, 01 Jan 2026 19:38:13 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2026-01-01 by HttpPlugin

Create report

Open service 202.159.30.243:80 · dev.monashalfmarathon.com

2025-12-29 15:49

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 29 Dec 2025 15:49:19 GMT
Content-Type: text/html
Content-Length: 180
Connection: close
Location: https://dev.monashalfmarathon.com/

Page title: 307 Temporary Redirect

<html>
<head><title>307 Temporary Redirect</title></head>
<body>
<center><h1>307 Temporary Redirect</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Found 2025-12-29 by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2025-12-22 22:02

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Mon, 22 Dec 2025 22:02:52 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2025-12-22 16:19

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Mon, 22 Dec 2025 16:19:09 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 202.159.30.243:443 · dev.monashalfmarathon.com

2025-12-22 16:19

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Dec 2025 16:19:10 GMT
Transfer-Encoding: chunked
Connection: close
link: <https://dev.monashalfmarathon.com/en>; rel="alternate"; hreflang="en", <https://dev.monashalfmarathon.com/id>; rel="alternate"; hreflang="id", <https://dev.monashalfmarathon.com/>; rel="alternate"; hreflang="x-default"
location: /en
set-cookie: NEXT_LOCALE=en; Path=/; Expires=Tue, 22 Dec 2026 16:19:10 GMT; Max-Age=31536000; SameSite=lax


/en

Found 2025-12-22 by HttpPlugin

Create report

Open service 202.159.30.243:8443 · dev.monashalfmarathon.com

2025-12-19 11:01

HTTP/1.1 302 Found
location: http://dev.monashalfmarathon.com/manager
content-length: 0
date: Fri, 19 Dec 2025 11:01:05 GMT
strict-transport-security: max-age=15768000
x-robots-tag: noindex
connection: close

Found 2025-12-19 by HttpPlugin

Create report

localhost

Fingerprint:

1bf2c5323b3abfe26935f03c021f98596c3b92fc50a1d1f161f43aa8fefc7448

CN:

OpenRemote Demo Cert

Key:

RSA-2048

Issuer:

OpenRemote Demo Cert

Not before:

2020-06-08 19:17

Not after:

2050-06-01 19:17

dev.monashalfmarathon.com

Fingerprint:

88a9b3147bcba5dd1ade2ef8556a3dfb08a3eede89b21f6a0ffacf3000dc3291

CN:

dev.monashalfmarathon.com

Key:

RSA-2048

Issuer:

R12

Not before:

2026-01-12 13:49

Not after:

2026-04-12 13:49

dev.monashalfmarathon.com

Fingerprint:

446bb7512cc649e4bb1748c3eb976a793b4b3d6132602ef119ef3797955d9712

CN:

dev.monashalfmarathon.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-12-29 14:49

Not after:

2026-03-29 14:49

dev.monashalfmarathon.com

Fingerprint:

61bc933d3d55c1c69ccfb53b030a947492c6433bf4790b1506b3d8ac5abd2e40

CN:

dev.monashalfmarathon.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-22 15:19

Not after:

2026-03-22 15:19

Domain summary

dev.monashalfmarathon.com 13

1 recorded

IP summary

202.159.30.243 2

1 recorded

Domain dev.monashalfmarathon.com

Indonesia

Software information

Swagger API description is publicly available

localhost

dev.monashalfmarathon.com

dev.monashalfmarathon.com

dev.monashalfmarathon.com

Domain summary

IP summary