LeakIX - Host ichtysprebillerprotocols.alpha-cr.com

Domain ichtysprebillerprotocols.alpha-cr.com

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Kestrel Kestrel

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.40.202.29
Domain: ichtysprebillerprotocols.alpha-cr.com
Port: 443
URL: https://ichtysprebillerprotocols.alpha-cr.com

First seen 2026-01-13 05:29
Last seen 2026-01-23 15:36
Open for 10 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494b47c58ff8980400f2ed18dcf776f06fba7f443a

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /consumers
GET /consumers/{consumerId}/services
GET /consumers/{id}
GET /info
GET /practitioners/consumptions/sync/{PractitionerConsumptionSyncProcessId}
GET /practitioners/consumptions/{PractitionerConsumptionId}
GET /practitioners/{PractitionerId}/consumptions
GET /practitioners/{PractitionerId}/consumptions/status/{status}
GET /practitioners/{PractitionerId}/consumptions/sync
GET /practitioners/{PractitionerId}/consumptions/sync/last
GET /practitioners/{practitionerId}/consumptions/export
GET /protocols
GET /protocols/consumptions/movements/{ServiceConsumedMovementId}
GET /protocols/consumptions/provider/{ProviderId}
GET /protocols/consumptions/sync/{ProtocolConsumptionSyncProcessId}
GET /protocols/consumptions/visit/totals/{VisitTotalId}
GET /protocols/consumptions/visit/{ProtocolVisitId}/totals
GET /protocols/consumptions/visit/{visitId}
GET /protocols/consumptions/{ProtocolConsumptionId}
GET /protocols/consumptions/{ProtocolConsumptionId}/movements
GET /protocols/contracts/{ProtocolContractId}
GET /protocols/patients
GET /protocols/practitioners/{PractitionerId}/visits
GET /protocols/practitioners/{PractitionerId}/visits/excel
GET /protocols/practitioners/{PractitionerId}/visits/pdf
GET /protocols/studytasks
GET /protocols/studytasks/{StudyTaskId}
GET /protocols/visits/{VisitId}
GET /protocols/{ProtocolId}
GET /protocols/{ProtocolId}/consumptions
GET /protocols/{ProtocolId}/consumptions/export
GET /protocols/{ProtocolId}/consumptions/stage/{StageId}
GET /protocols/{ProtocolId}/consumptions/status/{StatusId}
GET /protocols/{ProtocolId}/consumptions/sync
GET /protocols/{ProtocolId}/consumptions/sync/last
GET /protocols/{ProtocolId}/consumptions/totals
GET /protocols/{ProtocolId}/consumptions/visit
GET /protocols/{ProtocolId}/consumptions/visit/{stageId}
GET /protocols/{ProtocolId}/consumptions/withholding
GET /protocols/{ProtocolId}/contracts
GET /protocols/{ProtocolId}/patients
GET /protocols/{ProtocolId}/patients/{MedicalRecordNumber}
GET /protocols/{ProtocolId}/patients/{NumberInProtocol}
GET /protocols/{ProtocolId}/practitioners
GET /protocols/{ProtocolId}/practitioners/{PractitionerId}
GET /protocols/{ProtocolId}/practitioners/{PractitionerId}/visits
GET /protocols/{ProtocolId}/practitionersStudyTasks
GET /protocols/{ProtocolId}/practitionersStudyTasks/{PractitionerId}
GET /protocols/{ProtocolId}/sponsorId
GET /protocols/{ProtocolId}/visits
GET /protocols/{ProtocolId}/visits-full
GET /protocols/{ProtocolId}/visits/excel
GET /protocols/{protocolId}/visits/{crossVersionId}/patient/{numberInProtocol}/concepts
GET /service-categories
GET /service-categories/{id}
GET /services
GET /services/{id}
GET /visits/export
GET /visits/patient/{PatientId}
GET /visits/protocol/{ProtocolId}
GET /visits/{PatientVisitId}
PATCH /practitioners/consumptions/unlink-settlement/{SettlementId}
PATCH /practitioners/consumptions/{PractitionerConsumptionId}/link-settlement
PATCH /practitioners/consumptions/{PractitionerConsumptionId}/practitioner/{practitionerId}
PATCH /practitioners/consumptions/{ProtocolConsumptionId}/amount
PATCH /practitioners/consumptions/{ProtocolConsumptionId}/type/{newType}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/additional
PATCH /protocols/consumptions/{ProtocolConsumptionId}/amount
PATCH /protocols/consumptions/{ProtocolConsumptionId}/concept/{ConceptId}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/medicalService/{MedicalServiceId}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/procedure
PATCH /protocols/consumptions/{ProtocolConsumptionId}/producer/{ProducerId}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/provider/{ProviderId}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/type/{newType}
PATCH /protocols/consumptions/{ProtocolConsumptionId}/visit/{StageId}
POST /practitioners/consumptions
POST /practitioners/consumptions/sync
POST /protocols/consumptions
POST /protocols/consumptions/movements
POST /protocols/consumptions/sync
POST /protocols/consumptions/visit
POST /protocols/consumptions/visit/totals
POST /protocols/consumptions/{ConsumptionId}/visit/{ConsumptionVisitId}/link
POST /protocols/consumptions/{ConsumptionId}/visit/{ConsumptionVisitId}/unlink
POST /protocols/contracts

Found on 2026-01-23 15:36

Create report

Open service 20.40.202.29:443 · ichtysprebillerprotocols.alpha-cr.com

2026-01-23 15:36
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 15:37:04 GMT
Server: Kestrel
```
Found 2026-01-23 by HttpPlugin
Create report

ichtysprebillerprotocols.alpha-cr.com

Fingerprint:

730bf9d2af8cc6ae2d76cc45f00a33ec70049bad4f98e507c476bc3dbc214ce0

CN:

ichtysprebillerprotocols.alpha-cr.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-13 00:00

Not after:

2026-04-14 23:59

Domain summary

ichtysprebillerprotocols.alpha-cr.com 1

1 recorded

IP summary

20.40.202.29 2

1 recorded