Domain hist16450-slas.syndev.dnv.com
The Netherlands
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 20.105.216.40
Domain: hist16450-slas.syndev.dnv.com
Port: 443
URL: https://hist16450-slas.syndev.dnv.comFirst seen 2025-12-08 07:27
Last seen 2026-01-16 06:53
Open for 38 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549abefabaabd61a02a001e57080516f740e6451acePublic Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/adminUsers/current GET /api/clients GET /api/clients/{id} GET /api/identityProviders/oidc GET /api/identityProviders/oidc/{scheme} GET /api/identityProviders/wsfed GET /api/identityProviders/wsfed/{scheme} GET /api/resources GET /api/resources/{name} GET /api/scopes GET /api/scopes/{name} GET /api/totpKeys/status PUT /api/adminUsers/passwordFound on 2026-01-16 06:53 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-09 01:21
-
-
Open service 20.105.216.40:443 · hist16450-slas.syndev.dnv.com
2026-01-09 01:21
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Fri, 09 Jan 2026 01:22:31 GMT Cache-Control: no-store, no-cache, must-revalidate Location: /grants Pragma: no-cache Set-Cookie: ARRAffinity=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;Secure;Domain=hist16450-slas.syndev.dnv.com Set-Cookie: ARRAffinitySameSite=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;SameSite=None;Secure;Domain=hist16450-slas.syndev.dnv.com Strict-Transport-Security: max-age=31536000; includeSubDomains Request-Context: appId=cid-v1:4a141165-e706-427a-94f4-ee4cf61a07de X-Frame-Options: DENY Referrer-Policy: no-referrer X-Content-Type-Options: nosniff X-Download-Options: noopen X-Robots-Tag: noindex, nofollow Content-Security-Policy: default-src 'none'; img-src 'self'; script-src 'none'; style-src 'none'; base-uri 'none'; object-src 'none'; connect-src 'none'; font-src 'none'; frame-src 'none'; form-action 'none'; manifest-src 'none'; media-src 'none'; worker-src 'none' X-Permitted-Cross-Domain-Policies: none Permissions-Policy: accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),sync-xhr=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()
Found 2026-01-09 by HttpPluginCreate report
-
Open service 20.105.216.40:443 · hist16450-slas.syndev.dnv.com
2026-01-01 22:39
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Thu, 01 Jan 2026 22:39:04 GMT Cache-Control: no-store, no-cache, must-revalidate Location: /grants Pragma: no-cache Set-Cookie: ARRAffinity=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;Secure;Domain=hist16450-slas.syndev.dnv.com Set-Cookie: ARRAffinitySameSite=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;SameSite=None;Secure;Domain=hist16450-slas.syndev.dnv.com Strict-Transport-Security: max-age=31536000; includeSubDomains Request-Context: appId=cid-v1:4a141165-e706-427a-94f4-ee4cf61a07de X-Frame-Options: DENY Referrer-Policy: no-referrer X-Content-Type-Options: nosniff X-Download-Options: noopen X-Robots-Tag: noindex, nofollow Content-Security-Policy: default-src 'none'; img-src 'self'; script-src 'none'; style-src 'none'; base-uri 'none'; object-src 'none'; connect-src 'none'; font-src 'none'; frame-src 'none'; form-action 'none'; manifest-src 'none'; media-src 'none'; worker-src 'none' X-Permitted-Cross-Domain-Policies: none Permissions-Policy: accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),sync-xhr=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()
Found 2026-01-01 by HttpPluginCreate report
-
Open service 20.105.216.40:443 · hist16450-slas.syndev.dnv.com
2025-12-22 06:48
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Mon, 22 Dec 2025 06:48:21 GMT Cache-Control: no-store, no-cache, must-revalidate Location: /grants Pragma: no-cache Set-Cookie: ARRAffinity=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;Secure;Domain=hist16450-slas.syndev.dnv.com Set-Cookie: ARRAffinitySameSite=f5c6c911f7848d3dac0ab02432c452e24c750420b00c500e02db159e43d4a071;Path=/;HttpOnly;SameSite=None;Secure;Domain=hist16450-slas.syndev.dnv.com Strict-Transport-Security: max-age=31536000; includeSubDomains Request-Context: appId=cid-v1:4a141165-e706-427a-94f4-ee4cf61a07de X-Frame-Options: DENY Referrer-Policy: no-referrer X-Content-Type-Options: nosniff X-Download-Options: noopen X-Robots-Tag: noindex, nofollow Content-Security-Policy: default-src 'none'; img-src 'self'; script-src 'none'; style-src 'none'; base-uri 'none'; object-src 'none'; connect-src 'none'; font-src 'none'; frame-src 'none'; form-action 'none'; manifest-src 'none'; media-src 'none'; worker-src 'none' X-Permitted-Cross-Domain-Policies: none Permissions-Policy: accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),sync-xhr=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()
Found 2025-12-22 by HttpPluginCreate report