Domain inventoryservice.egretail-test.cloud
The Netherlands
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 52.232.19.237
Domain: inventoryservice.egretail-test.cloud
Port: 443
URL: https://inventoryservice.egretail-test.cloudFirst seen 2026-01-02 17:01
Last seen 2026-02-09 18:27
Open for 38 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f3a3323c994ed6a847921e0a9d92b351d2d7d94Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/CountGroups/{storeNumber} GET /api/CountGroups/{storeNumber}/{countGroupId}/items GET /api/ReasonCodes GET /api/RecountGroups/store/{storeNumber} GET /api/RecountGroups/{groupId}/items GET /api/SeasonalStorages GET /api/SeasonalStorages/{identifier} GET /api/Storages GET /api/Storages/categories GET /api/Storages/categories/{categoryId} GET /api/Storages/{storageId} PATCH /api/CountGroups/{storeNumber}/{countGroupId}/status/{status} PATCH /api/Storages/{storeNumber}/multiClearOut PATCH /api/Storages/{storeNumber}/multiUnpack PATCH /api/Storages/{storeNumber}/{storageId}/clearOut PATCH /api/Storages/{storeNumber}/{storageId}/lines/clearOut PATCH /api/Storages/{storeNumber}/{storageId}/lines/unpack PATCH /api/Storages/{storeNumber}/{storageId}/unpack POST /api/Inventory/stockBalance POST /api/SeasonalStorages/{identifier}/unpack POST /api/Storages/{storeNumber} POST /api/Storages/{storeNumber}/{storageId}Found on 2026-02-09 18:27
-
-
Open service 52.232.19.237:443 · inventoryservice.egretail-test.cloud
2026-01-23 10:24
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 10:24:52 GMT Server: Microsoft-IIS/10.0 Location: /swagger/ Set-Cookie: ARRAffinity=dab6317d12927f95a984092890bdf8d883b89a1829bd2edd351c319b04afd824;Path=/;HttpOnly;Secure;Domain=inventoryservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=dab6317d12927f95a984092890bdf8d883b89a1829bd2edd351c319b04afd824;Path=/;HttpOnly;SameSite=None;Secure;Domain=inventoryservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:f0a9e484-6d3a-49c3-89e0-b782732723f2 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-WqbyKvdxKzkkB1wbAAUIX4blinRpbYxVjgH+sh4mBis='; script-src 'self' 'nonce-WqbyKvdxKzkkB1wbAAUIX4blinRpbYxVjgH+sh4mBis='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 52.232.19.237:443 · inventoryservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 302 Found Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:16:00 GMT Server: Microsoft-IIS/10.0 Location: /swagger/ Set-Cookie: ARRAffinity=fbb4eba32680e6cf5d183f1c3ecb0c33fb696cefc25dc7b1e847d702ee0bd87c;Path=/;HttpOnly;Secure;Domain=inventoryservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=fbb4eba32680e6cf5d183f1c3ecb0c33fb696cefc25dc7b1e847d702ee0bd87c;Path=/;HttpOnly;SameSite=None;Secure;Domain=inventoryservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:f0a9e484-6d3a-49c3-89e0-b782732723f2 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-UwqfD9r27UY2hQEKbwabuwlTTlm4ailTByK6Az088Vg='; script-src 'self' 'nonce-UwqfD9r27UY2hQEKbwabuwlTTlm4ailTByK6Az088Vg='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-10 by HttpPluginCreate report
-
Open service 52.232.19.237:80 · inventoryservice.egretail-test.cloud
2026-01-10 19:14
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:15:58 GMT Location: https://inventoryservice.egretail-test.cloud/
Found 2026-01-10 by HttpPluginCreate report