LeakIX - Host nativeappsdk.sb.action247.com

Domain nativeappsdk.sb.action247.com

Germany

Akamai International B.V.

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.126.37.48
Domain: nativeappsdk.sb.action247.com
Port: 443
URL: https://nativeappsdk.sb.action247.com

First seen 2025-12-09 09:20
Last seen 2026-02-09 06:22
Open for 61 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60e0777c23850e5f650110d022ca4605094a462e64

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/metadata/currentServerTime
GET /api/players/{id}/favoriteGames
GET /api/statistics/topWinners
GET /api/v1/certificates/public-keys
GET /api/v1/configurations
GET /api/v1/metadata/currentServerTime
GET /api/v1/players/{id}/configurations
GET /api/v1/players/{id}/favoriteGames
GET /api/v1/players/{id}/geoLocations
GET /api/v1/players/{id}/loyaltyPoints
GET /api/v1/players/{id}/payments/apple-pay/client-token
GET /api/v1/players/{id}/wallet
GET /api/v1/statistics/topWinners
PATCH /api/v1/sessions
POST /api/v1/logs
POST /api/v1/sessions/logout

Found on 2026-02-09 06:22

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b3cde7047228433831cf194f4072699c3cbdcbfb

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/metadata/currentServerTime
GET /api/players/{id}/favoriteGames
GET /api/statistics/topWinners
GET /api/v1/certificates/public-keys
GET /api/v1/configurations
GET /api/v1/metadata/currentServerTime
GET /api/v1/players/{id}/configurations
GET /api/v1/players/{id}/favoriteGames
GET /api/v1/players/{id}/geoLocations
GET /api/v1/players/{id}/loyaltyPoints
GET /api/v1/players/{id}/payments/apple-pay/client-token
GET /api/v1/players/{id}/wallet
GET /api/v1/statistics/topWinners
PATCH /api/v1/sessions
POST /api/v1/logs
POST /api/v1/sessions/logout

Found on 2026-01-16 09:14

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b3cde7047228433831cf194f4bfe8a906a170816

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/metadata/currentServerTime
GET /api/players/{id}/favoriteGames
GET /api/statistics/topWinners
GET /api/v1/configurations
GET /api/v1/metadata/currentServerTime
GET /api/v1/players/{id}/configurations
GET /api/v1/players/{id}/favoriteGames
GET /api/v1/players/{id}/geoLocations
GET /api/v1/players/{id}/loyaltyPoints
GET /api/v1/players/{id}/payments/apple-pay/client-token
GET /api/v1/players/{id}/wallet
GET /api/v1/statistics/topWinners
PATCH /api/v1/sessions
POST /api/v1/logs
POST /api/v1/sessions/logout

Found on 2026-01-02 12:30

Create report

Open service 104.126.37.48:443 · nativeappsdk.sb.action247.com

2026-01-09 14:57

HTTP/1.1 404 Not Found
Content-Security-Policy: frame-ancestors 'none'
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Length: 0
Expires: Fri, 09 Jan 2026 14:57:55 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 14:57:55 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=105
Server-Timing: origin; dur=24
Alt-Svc: h3=":443"; ma=93600
Server-Timing: ak_p; desc="1767970675347_1753097501_2006832992_12857_7198_0_5_-";dur=1

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.126.37.48:443 · nativeappsdk.sb.action247.com

2026-01-02 12:30

HTTP/1.1 404 Not Found
Content-Security-Policy: frame-ancestors 'none'
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Length: 0
Expires: Fri, 02 Jan 2026 12:30:18 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Jan 2026 12:30:18 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=100
Server-Timing: origin; dur=23
Alt-Svc: h3=":443"; ma=93600
Server-Timing: ak_p; desc="1767357018634_1753097501_1219935593_12308_5678_93_102_-";dur=1

Found 2026-01-02 by HttpPlugin

Create report

Open service 104.126.37.48:443 · nativeappsdk.sb.action247.com

2025-12-22 16:10

HTTP/1.1 404 Not Found
Content-Security-Policy: frame-ancestors 'none'
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Length: 0
Expires: Mon, 22 Dec 2025 16:10:18 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 22 Dec 2025 16:10:18 GMT
Connection: close
Server-Timing: cdn-cache; desc=MISS
Server-Timing: edge; dur=414
Server-Timing: origin; dur=40
Alt-Svc: h3=":443"; ma=93600
Server-Timing: ak_p; desc="1766419818067_1753097516_432130165_45422_9297_0_45_-";dur=1

Found 2025-12-22 by HttpPlugin

Create report

asg-webapi.sb.action247.comasgusa-restapi.sb.action247.comfileservices.sb.action247.comgamesrv1.sb.action247.cominfo.sb.action247.comnativeappsdk.sb.action247.compaymentprocessorswebapi.sb.action247.comsb.action247.comwebapi.sb.action247.com

Fingerprint:

955a225bc3af461fb838974df1d6a951eaeb1ade326f92b909ccfedbbbc2cb03

CN:

sb.action247.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-12-10 03:57

Not after:

2026-03-10 03:57

Domain summary

nativeappsdk.sb.action247.com 5

1 recorded

IP summary

104.126.37.48 2

1 recorded