Domain fileservice.egretail-test.cloud
The Netherlands
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 52.232.19.237
Domain: staging.fileservice.egretail-test.cloud
Port: 443
URL: https://staging.fileservice.egretail-test.cloudFirst seen 2026-01-02 17:01
Last seen 2026-02-09 17:35
Open for 38 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354937f8ceaeddd756be87846ca4342e89aedd87b769Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/filejournal GET /api/filejournal/details/{fileId} GET /api/filejournal/query POST /api/filejournal/log POST /api/fileupload/content POST /api/fileupload/initializeFound on 2026-02-09 17:35
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 52.232.19.237
Domain: fileservice.egretail-test.cloud
Port: 443
URL: https://fileservice.egretail-test.cloudFirst seen 2026-01-02 17:01
Last seen 2026-02-09 17:35
Open for 38 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354937f8ceaeddd756be87846ca4342e89aedd87b769Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/filejournal GET /api/filejournal/details/{fileId} GET /api/filejournal/query POST /api/filejournal/log POST /api/fileupload/content POST /api/fileupload/initializeFound on 2026-02-09 17:35
-
-
Open service 52.232.19.237:443 · staging.fileservice.egretail-test.cloud
2026-01-23 14:03
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 14:03:59 GMT Server: Microsoft-IIS/10.0 Location: /swagger/index.html Set-Cookie: ARRAffinity=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;Secure;Domain=staging.fileservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;SameSite=None;Secure;Domain=staging.fileservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:807a78f3-b61e-4ab5-8a5e-dcde715f7251 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-WfSdRYESPVUcOdyqNWmtGZ4afEP9tDQXszNIa3bbO58='; script-src 'self' 'nonce-WfSdRYESPVUcOdyqNWmtGZ4afEP9tDQXszNIa3bbO58='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 52.232.19.237:443 · fileservice.egretail-test.cloud
2026-01-23 14:03
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 14:03:59 GMT Server: Microsoft-IIS/10.0 Location: /swagger/index.html Set-Cookie: ARRAffinity=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;Secure;Domain=fileservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;SameSite=None;Secure;Domain=fileservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:807a78f3-b61e-4ab5-8a5e-dcde715f7251 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-ZRS/PyYfvTmNcKpb0/Hh6kDG4aexlbCYJTHBb9bARas='; script-src 'self' 'nonce-ZRS/PyYfvTmNcKpb0/Hh6kDG4aexlbCYJTHBb9bARas='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 52.232.19.237:80 · staging.fileservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:15:20 GMT Location: https://staging.fileservice.egretail-test.cloud/
Found 2026-01-10 by HttpPluginCreate report
-
Open service 52.232.19.237:443 · staging.fileservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:15:19 GMT Server: Microsoft-IIS/10.0 Location: /swagger/index.html Set-Cookie: ARRAffinity=7f7239abf5db7e95b2a9255d6ac069367692ee4f83addcdda7e3d2c6725b4272;Path=/;HttpOnly;Secure;Domain=staging.fileservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=7f7239abf5db7e95b2a9255d6ac069367692ee4f83addcdda7e3d2c6725b4272;Path=/;HttpOnly;SameSite=None;Secure;Domain=staging.fileservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:807a78f3-b61e-4ab5-8a5e-dcde715f7251 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-cpuXE6ewMwdJKyZsQdsLmD2kgvox9Weyyro1/VnhTcQ='; script-src 'self' 'nonce-cpuXE6ewMwdJKyZsQdsLmD2kgvox9Weyyro1/VnhTcQ='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-10 by HttpPluginCreate report
-
Open service 52.232.19.237:443 · fileservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:14:59 GMT Server: Microsoft-IIS/10.0 Location: /swagger/index.html Set-Cookie: ARRAffinity=7f7239abf5db7e95b2a9255d6ac069367692ee4f83addcdda7e3d2c6725b4272;Path=/;HttpOnly;Secure;Domain=fileservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=7f7239abf5db7e95b2a9255d6ac069367692ee4f83addcdda7e3d2c6725b4272;Path=/;HttpOnly;SameSite=None;Secure;Domain=fileservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:807a78f3-b61e-4ab5-8a5e-dcde715f7251 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-gM14o6ixwwyNxutKVp+nK0Vyzu3XINQZqwzZVa1fW3k='; script-src 'self' 'nonce-gM14o6ixwwyNxutKVp+nK0Vyzu3XINQZqwzZVa1fW3k='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-10 by HttpPluginCreate report
-
Open service 52.232.19.237:80 · fileservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:14:59 GMT Location: https://fileservice.egretail-test.cloud/
Found 2026-01-10 by HttpPluginCreate report