LeakIX - Host devnet.api.dlc.link

Domain devnet.api.dlc.link

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.220.108
Domain: devnet.api.dlc.link
Port: 443
URL: https://devnet.api.dlc.link

First seen 2025-10-31 00:19
Last seen 2026-01-09 16:41
Open for 70 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 16:41
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.220.108
Domain: devnet.api.dlc.link
Port: 80
URL: http://devnet.api.dlc.link

First seen 2025-10-31 00:19
Last seen 2026-01-09 04:59
Open for 70 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 04:59
Create report

Open service 99.83.220.108:443 · devnet.api.dlc.link

2026-01-09 16:41

HTTP/1.1 302 Found
Access-Control-Allow-Origin: *
Content-Length: 31
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 16:41:24 GMT
Location: /api-docs
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ETj3qLCXARLSLX%2Bj7D6BDNWqMmI4RjclnPBCl3OoxNE%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767976884"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ETj3qLCXARLSLX%2Bj7D6BDNWqMmI4RjclnPBCl3OoxNE%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767976884"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /api-docs

Found 2026-01-09 by HttpPlugin

Create report

Open service 99.83.220.108:80 · devnet.api.dlc.link

2026-01-09 04:59

HTTP/1.1 302 Found
Access-Control-Allow-Origin: *
Content-Length: 31
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 05:00:26 GMT
Location: /api-docs
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=8Fn%2Fr2FsryKB1XtvNxa7f9t2Fz3kZcNxSIqs6%2FvE1sE%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767934826"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=8Fn%2Fr2FsryKB1XtvNxa7f9t2Fz3kZcNxSIqs6%2FvE1sE%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767934826"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /api-docs

Found 2026-01-09 by HttpPlugin

Create report

Open service 99.83.220.108:443 · devnet.api.dlc.link

2026-01-02 23:57

HTTP/1.1 302 Found
Access-Control-Allow-Origin: *
Content-Length: 31
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 23:57:31 GMT
Location: /api-docs
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AiXJRVHDFHbvEV48V1eGUOCUB3Nr9830k3V6%2FV55Go4%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767398251"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AiXJRVHDFHbvEV48V1eGUOCUB3Nr9830k3V6%2FV55Go4%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767398251"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /api-docs

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.220.108:80 · devnet.api.dlc.link

2026-01-02 12:14

HTTP/1.1 302 Found
Access-Control-Allow-Origin: *
Content-Length: 31
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 12:14:34 GMT
Location: /api-docs
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=2ysPVflHiJw191IsurdpbPJlRo19PvZHK9HUujVFL24%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767356074"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=2ysPVflHiJw191IsurdpbPJlRo19PvZHK9HUujVFL24%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767356074"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /api-docs

Found 2026-01-02 by HttpPlugin