LeakIX - Host idp-admin-staging.artoosgroup.eu

Domain idp-admin-staging.artoosgroup.eu

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 40.118.101.67
Domain: idp-admin-staging.artoosgroup.eu
Port: 443
URL: https://idp-admin-staging.artoosgroup.eu

First seen 2026-01-09 08:31
Last seen 2026-02-16 15:34
Open for 38 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-16 15:34
Create report

Open service 40.118.101.67:443 · idp-admin-staging.artoosgroup.eu

2026-01-23 05:21

HTTP/1.1 200 OK
Content-Length: 2283
Connection: close
Content-Type: text/html
Date: Fri, 23 Jan 2026 05:21:43 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "1d8eacda4b5caeb"
Last-Modified: Fri, 28 Oct 2022 13:03:16 GMT
Set-Cookie: ARRAffinity=a89992dd869bf3932c0a105f99d1dba0b467bed06f03f84b92dbe30b8ecbd449;Path=/;HttpOnly;Secure;Domain=idp-admin-staging.artoosgroup.eu
Set-Cookie: ARRAffinitySameSite=a89992dd869bf3932c0a105f99d1dba0b467bed06f03f84b92dbe30b8ecbd449;Path=/;HttpOnly;SameSite=None;Secure;Domain=idp-admin-staging.artoosgroup.eu
Content-Security-Policy: default-src 'self';script-src 'self' 'sha256-m7vYZMioFjSZkBJ624LmmpHUkpOVeuunnlbXQ1LB0Mk=' 'sha256-Fp+pb/v+yuZCJgkm+swqlbikr47TxdSV0Xrlogi5FIA=' 'sha256-1VJjjKMY+X1Fyrp0kbWYQOQaEhz3c88e4r7rp2G580E=' 'sha256-Oe8bRaRSDq7Hj6XSvQDp87/mm5/wflOsW2zUorSRRh8=' 'sha256-qvXZB7r452onLl++wIonI3lmPV+QeDx3zyjVyboZGVA=' 'sha256-o4ANp0BtRtNUf4xg0UT9IcWf4ropIGXmSLXPPHsmV8U=' 'sha256-GBLm9DsOMe2OK7kvFZUpURBKSL6NInxJHuphx7oYeXc=' 'sha256-92oNc6FnRLeC7OVaOOD46fU/AjMcJibr9XIFcoOq9K4=' 'sha256-4aTp6nNi+md1utmsRVHog0Y7RfhnHobeQEqOWxdIb10=';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';frame-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu;frame-ancestors 'self';base-uri 'self';connect-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu https://www.identityserver.com/rss;sandbox allow-downloads allow-forms allow-popups allow-same-origin allow-scripts;
X-Content-Security-Policy: default-src 'self';script-src 'self' 'sha256-m7vYZMioFjSZkBJ624LmmpHUkpOVeuunnlbXQ1LB0Mk=' 'sha256-Fp+pb/v+yuZCJgkm+swqlbikr47TxdSV0Xrlogi5FIA=' 'sha256-1VJjjKMY+X1Fyrp0kbWYQOQaEhz3c88e4r7rp2G580E=' 'sha256-Oe8bRaRSDq7Hj6XSvQDp87/mm5/wflOsW2zUorSRRh8=' 'sha256-qvXZB7r452onLl++wIonI3lmPV+QeDx3zyjVyboZGVA=' 'sha256-o4ANp0BtRtNUf4xg0UT9IcWf4ropIGXmSLXPPHsmV8U=' 'sha256-GBLm9DsOMe2OK7kvFZUpURBKSL6NInxJHuphx7oYeXc=' 'sha256-92oNc6FnRLeC7OVaOOD46fU/AjMcJibr9XIFcoOq9K4=' 'sha256-4aTp6nNi+md1utmsRVHog0Y7RfhnHobeQEqOWxdIb10=';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';frame-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu;frame-ancestors 'self';base-uri 'self';connect-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu https://www.identityserver.com/rss;sandbox allow-downloads allow-forms allow-popups allow-same-origin allow-scripts;
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-Powered-By: ASP.NET

Page title: AdminUI

<!DOCTYPE html>
<html lang="en" class="tw-bg-primary-500 tw-h-full">
<head>
    <base href="/">
    <title>AdminUI</title>
    <meta charset="UTF-8"/>
    <meta name="viewport" content="width=device-width, initial-scale=1"/>
    <link href="assets/styles/bootstrap.min.css" rel="stylesheet" type="text/css"/>
    <link href="assets/fonts/roboto/roboto.css" rel="stylesheet" type="text/css"/>
    <link href="assets/fonts/fontawesome/css/all.min.css" rel="stylesheet" type="text/css"/>
    <link href="assets/favicon.ico" rel="shortcut icon" type="image/x-icon"/>
    
    <script src="assets/scripts/tether.min.js"></script>
    <script src="assets/scripts/jquery.min.js"></script>
    <script src="assets/scripts/bootstrap.min.js"></script>
    
    <meta name="theme-color" content="#4C5C68"/>
    <meta name="format-detection" content="telephone=no"/>
    <meta name="robots" content="noindex">
    <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate">
    <meta http-equiv="pragma" content="no-cache">
    <meta http-equiv="expires" content="0">
<link rel="stylesheet" href="styles.a7a9c85552815f4a.css"></head>
<body class="tw-bg-grey-100 tw-text-body tw-font-sans tw-text-base tw-leading-normal tw-min-h-full tw-pb-24 tw-relative no-focus-outline">
    <app-root></app-root>
    <div id="pre-loader" class="tw-flex tw-items-center tw-justify-center tw-bg-primary-500 tw-text-white tw-fixed tw-inset-0 tw-z-50 trans-slowest">
        <div class="tw-text-center">
            <div class="tw-flex tw-items-center tw-justify-center">
                <img class="tw-block tw-w-8 tw-mr-3" src="assets/img/logo-white.png" alt="" aria-hidden="true"/>
                <span class="tw-text-xl tw-font-bold">AdminUI</span>
            </div>
            <span class="tw-block tw-text-sm tw-opacity-50 tw-mt-4">
                <span class="fad fa-spinner-third fa-spin" aria-hidden="true"></span>
            </span>
        </div> 
    </div>
    <script src="assets/scripts/index.js"></script>
<script src="runtime.2518e06fed705b56.js" type="module"></script><script src="polyfills.7ab5103ca8e3abc7.js" type="module"></script><script src="scripts.c88876a39328d70b.js" defer></script><script src="main.7c7589b767907096.js" type="module"></script></body>
</html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 40.118.101.67:443 · idp-admin-staging.artoosgroup.eu

2026-01-09 08:31

HTTP/1.1 200 OK
Content-Length: 2283
Connection: close
Content-Type: text/html
Date: Fri, 09 Jan 2026 08:32:53 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "1d8eacda4b5caeb"
Last-Modified: Fri, 28 Oct 2022 13:03:16 GMT
Set-Cookie: ARRAffinity=414688911d296664bb8b298447cd648e91e966b07507f658ba7d33773b5782c5;Path=/;HttpOnly;Secure;Domain=idp-admin-staging.artoosgroup.eu
Set-Cookie: ARRAffinitySameSite=414688911d296664bb8b298447cd648e91e966b07507f658ba7d33773b5782c5;Path=/;HttpOnly;SameSite=None;Secure;Domain=idp-admin-staging.artoosgroup.eu
Content-Security-Policy: default-src 'self';script-src 'self' 'sha256-m7vYZMioFjSZkBJ624LmmpHUkpOVeuunnlbXQ1LB0Mk=' 'sha256-Fp+pb/v+yuZCJgkm+swqlbikr47TxdSV0Xrlogi5FIA=' 'sha256-1VJjjKMY+X1Fyrp0kbWYQOQaEhz3c88e4r7rp2G580E=' 'sha256-Oe8bRaRSDq7Hj6XSvQDp87/mm5/wflOsW2zUorSRRh8=' 'sha256-qvXZB7r452onLl++wIonI3lmPV+QeDx3zyjVyboZGVA=' 'sha256-o4ANp0BtRtNUf4xg0UT9IcWf4ropIGXmSLXPPHsmV8U=' 'sha256-GBLm9DsOMe2OK7kvFZUpURBKSL6NInxJHuphx7oYeXc=' 'sha256-92oNc6FnRLeC7OVaOOD46fU/AjMcJibr9XIFcoOq9K4=' 'sha256-4aTp6nNi+md1utmsRVHog0Y7RfhnHobeQEqOWxdIb10=';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';frame-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu;frame-ancestors 'self';base-uri 'self';connect-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu https://www.identityserver.com/rss;sandbox allow-downloads allow-forms allow-popups allow-same-origin allow-scripts;
X-Content-Security-Policy: default-src 'self';script-src 'self' 'sha256-m7vYZMioFjSZkBJ624LmmpHUkpOVeuunnlbXQ1LB0Mk=' 'sha256-Fp+pb/v+yuZCJgkm+swqlbikr47TxdSV0Xrlogi5FIA=' 'sha256-1VJjjKMY+X1Fyrp0kbWYQOQaEhz3c88e4r7rp2G580E=' 'sha256-Oe8bRaRSDq7Hj6XSvQDp87/mm5/wflOsW2zUorSRRh8=' 'sha256-qvXZB7r452onLl++wIonI3lmPV+QeDx3zyjVyboZGVA=' 'sha256-o4ANp0BtRtNUf4xg0UT9IcWf4ropIGXmSLXPPHsmV8U=' 'sha256-GBLm9DsOMe2OK7kvFZUpURBKSL6NInxJHuphx7oYeXc=' 'sha256-92oNc6FnRLeC7OVaOOD46fU/AjMcJibr9XIFcoOq9K4=' 'sha256-4aTp6nNi+md1utmsRVHog0Y7RfhnHobeQEqOWxdIb10=';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';frame-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu;frame-ancestors 'self';base-uri 'self';connect-src https://idp-staging.artoosgroup.eu https://idp-admin-staging.artoosgroup.eu https://www.identityserver.com/rss;sandbox allow-downloads allow-forms allow-popups allow-same-origin allow-scripts;
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-Powered-By: ASP.NET

Page title: AdminUI

<!DOCTYPE html>
<html lang="en" class="tw-bg-primary-500 tw-h-full">
<head>
    <base href="/">
    <title>AdminUI</title>
    <meta charset="UTF-8"/>
    <meta name="viewport" content="width=device-width, initial-scale=1"/>
    <link href="assets/styles/bootstrap.min.css" rel="stylesheet" type="text/css"/>
    <link href="assets/fonts/roboto/roboto.css" rel="stylesheet" type="text/css"/>
    <link href="assets/fonts/fontawesome/css/all.min.css" rel="stylesheet" type="text/css"/>
    <link href="assets/favicon.ico" rel="shortcut icon" type="image/x-icon"/>
    
    <script src="assets/scripts/tether.min.js"></script>
    <script src="assets/scripts/jquery.min.js"></script>
    <script src="assets/scripts/bootstrap.min.js"></script>
    
    <meta name="theme-color" content="#4C5C68"/>
    <meta name="format-detection" content="telephone=no"/>
    <meta name="robots" content="noindex">
    <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate">
    <meta http-equiv="pragma" content="no-cache">
    <meta http-equiv="expires" content="0">
<link rel="stylesheet" href="styles.a7a9c85552815f4a.css"></head>
<body class="tw-bg-grey-100 tw-text-body tw-font-sans tw-text-base tw-leading-normal tw-min-h-full tw-pb-24 tw-relative no-focus-outline">
    <app-root></app-root>
    <div id="pre-loader" class="tw-flex tw-items-center tw-justify-center tw-bg-primary-500 tw-text-white tw-fixed tw-inset-0 tw-z-50 trans-slowest">
        <div class="tw-text-center">
            <div class="tw-flex tw-items-center tw-justify-center">
                <img class="tw-block tw-w-8 tw-mr-3" src="assets/img/logo-white.png" alt="" aria-hidden="true"/>
                <span class="tw-text-xl tw-font-bold">AdminUI</span>
            </div>
            <span class="tw-block tw-text-sm tw-opacity-50 tw-mt-4">
                <span class="fad fa-spinner-third fa-spin" aria-hidden="true"></span>
            </span>
        </div> 
    </div>
    <script src="assets/scripts/index.js"></script>
<script src="runtime.2518e06fed705b56.js" type="module"></script><script src="polyfills.7ab5103ca8e3abc7.js" type="module"></script><script src="scripts.c88876a39328d70b.js" defer></script><script src="main.7c7589b767907096.js" type="module"></script></body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 40.118.101.67:80 · idp-admin-staging.artoosgroup.eu

2026-01-09 08:31

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 08:32:52 GMT
Location: https://idp-admin-staging.artoosgroup.eu/

Found 2026-01-09 by HttpPlugin

Create report

idp-admin-staging.artoosgroup.eu

Fingerprint:

3af4d681b3ce5bfeadb32f7de9b7f52bd762bd6a1d3976d025035e3dc4a4997b

CN:

idp-admin-staging.artoosgroup.eu

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-09 00:00

Not after:

2026-04-14 23:59

www.artoosgroup.eu.artoosgroup.eu.marcomfactory.eu.mooose.be.mooose.shop*.print.vlaanderen

Fingerprint:

353643f10fe5bb8b3d2cddbaf077175658e9f3870ab3138aadc929fe20a792b2

CN:

www.artoosgroup.eu

Key:

RSA-2048

Issuer:

Sectigo Public Server Authentication CA OV R36

Not before:

2025-06-18 00:00

Not after:

2026-07-18 23:59

Domain summary

idp-admin-staging.artoosgroup.eu 3

1 recorded

IP summary

40.118.101.67 2

1 recorded

Domain idp-admin-staging.artoosgroup.eu

The Netherlands

Software information

Swagger API description is publicly available

Create report

Create report

Create report

idp-admin-staging.artoosgroup.eu

www.artoosgroup.eu*.artoosgroup.eu*.marcomfactory.eu*.mooose.be*.mooose.shop*.print.vlaanderen

Domain summary

IP summary

www.artoosgroup.eu.artoosgroup.eu.marcomfactory.eu.mooose.be.mooose.shop*.print.vlaanderen