Domain plus-dev-api.asset-expert.de
Germany
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 20.79.107.1
Domain: plus-dev-api.asset-expert.de
Port: 443
URL: https://plus-dev-api.asset-expert.deFirst seen 2025-11-30 13:58
Last seen 2026-02-01 22:35
Open for 63 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035498db859491cc4b339de2befec16d29ced106eb8d0Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /notifications/{id} DELETE /storage/{storageId} GET /addresses GET /addresses/{id} GET /calibrations/{calibrationId}/certificateFile GET /customers/by-customer-number/{customerNumber} GET /dataLoad/validation/order GET /delivery-notes GET /delivery-notes/{id} GET /delivery-notes/{id}/number GET /devices/details/{eszId} GET /devices/due GET /devices/latestCalibrationDetails/{deviceGroupId} GET /devices/scheduled/count GET /devices/search GET /devices/undercalibration/count GET /devices/{eszId}/certificateFile GET /devices/{eszId}/storages GET /files/excel/device/{eszId} GET /files/excel/deviceOverview GET /files/excel/dueDevices GET /files/outgoingDeliveryNote/byDeliveryNoteNumber/{deliveryNoteNumber} GET /files/pdf/deliveryNote/{id} GET /files/pdf/deviceOverview GET /files/pdf/dueDevices GET /isHealthy GET /notification-configurations GET /notification-configurations/{id} GET /notifications GET /notifications/session GET /notifications/types GET /notifications/unread-count GET /orders GET /orders/Shipping/Details GET /orders/active-count GET /orders/{orderNumber}/certificates GET /orders/{orderNumber}/order-details GET /quotation-requests GET /quotation-requests/default-settings GET /quotation-requests/{id} GET /quotation-requests/{id}/request-number GET /storage/download-url GET /storage/upload-url GET /system-notifications/latest GET /tracking-links/by-order-number/{orderNumber} GET /tracking-links/calibrations/{calibrationId}/certificateFile GET /tracking-links/{trackingId}/certificates GET /tracking-links/{trackingId}/order-details GET /user-roles GET /users GET /users/current-user GET /users/{id} GET /users/{userId}/customers/{customerId}/permissions POST /addresses/{id}/set-default POST /auth/authenticate POST /auth/passwordReset/change POST /auth/passwordReset/changeByUserId POST /auth/passwordReset/forgot POST /auth/refresh POST /auth/register POST /auth/sendVerificationEmail POST /auth/verifyUser POST /dataLoad/validation POST /delivery-notes/{id}/notify POST /jobs/customer-access-link-updater POST /jobs/due-devices-notification POST /jobs/loaded-orders-updater POST /jobs/notification-configurations POST /load-data/accessLink POST /load-data/orderDetails POST /logs/errors POST /logs/info POST /notifications/mark-all-read POST /notifications/{id}/mark-read POST /notifications/{id}/mark-unread POST /orders/Shipped/Devices POST /quotation-requests/{id}/notify POST /storage POST /support/message POST /system-notifications POST /tracking-links PUT /load-data/updateFound on 2026-02-01 22:35 -
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035498db859491cc4b339de2befec16d29cedb821dad2Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /notifications/{id} DELETE /storage/{storageId} GET /addresses GET /addresses/{id} GET /calibrations/{calibrationId}/certificateFile GET /customers/by-customer-number/{customerNumber} GET /dataLoad/validation/order GET /delivery-notes GET /delivery-notes/{id} GET /delivery-notes/{id}/number GET /devices/details/{eszId} GET /devices/due GET /devices/latestCalibrationDetails/{deviceGroupId} GET /devices/scheduled/count GET /devices/search GET /devices/undercalibration/count GET /devices/{eszId}/storages GET /files/excel/device/{eszId} GET /files/excel/dueDevices GET /files/outgoingDeliveryNote/byDeliveryNoteNumber/{deliveryNoteNumber} GET /files/pdf/deliveryNote/{id} GET /files/pdf/dueDevices GET /isHealthy GET /notification-configurations GET /notification-configurations/{id} GET /notifications GET /notifications/session GET /notifications/types GET /notifications/unread-count GET /orders GET /orders/Shipping/Details GET /orders/active-count GET /orders/{orderNumber}/certificates GET /orders/{orderNumber}/order-details GET /quotation-requests GET /quotation-requests/default-settings GET /quotation-requests/{id} GET /quotation-requests/{id}/request-number GET /storage/download-url GET /storage/upload-url GET /system-notifications/latest GET /tracking-links/by-order-number/{orderNumber} GET /tracking-links/{trackingId}/certificates GET /tracking-links/{trackingId}/order-details GET /user-roles GET /users GET /users/current-user GET /users/{id} GET /users/{userId}/customers/{customerId}/permissions POST /addresses/{id}/set-default POST /auth/authenticate POST /auth/passwordReset/change POST /auth/passwordReset/changeByUserId POST /auth/passwordReset/forgot POST /auth/refresh POST /auth/register POST /auth/sendVerificationEmail POST /auth/verifyUser POST /certificates POST /dataLoad/validation POST /delivery-notes/{id}/notify POST /jobs/customer-access-link-updater POST /jobs/due-devices-notification POST /jobs/loaded-orders-updater POST /jobs/notification-configurations POST /load-data/accessLink POST /load-data/orderDetails POST /logs/errors POST /logs/info POST /notifications/mark-all-read POST /notifications/{id}/mark-read POST /notifications/{id}/mark-unread POST /orders/Shipped/Devices POST /quotation-requests/{id}/notify POST /storage POST /support/message POST /system-notifications POST /tracking-links PUT /load-data/updateFound on 2026-01-23 08:56
-
-
Open service 20.79.107.1:443 · plus-dev-api.asset-expert.de
2026-01-23 08:56
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 08:57:16 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=c4f39cdc9e60e94a820cf9116124a1be5e60e9c0bb488366d10abb699972b797;Path=/;HttpOnly;Secure;Domain=plus-dev-api.asset-expert.de Set-Cookie: ARRAffinitySameSite=c4f39cdc9e60e94a820cf9116124a1be5e60e9c0bb488366d10abb699972b797;Path=/;HttpOnly;SameSite=None;Secure;Domain=plus-dev-api.asset-expert.de X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.79.107.1:443 · plus-dev-api.asset-expert.de
2026-01-09 09:51
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 09 Jan 2026 09:52:40 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;Secure;Domain=plus-dev-api.asset-expert.de Set-Cookie: ARRAffinitySameSite=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;SameSite=None;Secure;Domain=plus-dev-api.asset-expert.de X-Powered-By: ASP.NET
Found 2026-01-09 by HttpPluginCreate report
-
Open service 20.79.107.1:443 · plus-dev-api.asset-expert.de
2026-01-02 15:11
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 02 Jan 2026 15:11:36 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;Secure;Domain=plus-dev-api.asset-expert.de Set-Cookie: ARRAffinitySameSite=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;SameSite=None;Secure;Domain=plus-dev-api.asset-expert.de X-Powered-By: ASP.NET
Found 2026-01-02 by HttpPluginCreate report
-
Open service 20.79.107.1:443 · plus-dev-api.asset-expert.de
2025-12-22 20:36
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Mon, 22 Dec 2025 20:36:29 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;Secure;Domain=plus-dev-api.asset-expert.de Set-Cookie: ARRAffinitySameSite=05158e7bca19751822759cc0926dd1eb53292620e9da7f4dbfc144b733e2b415;Path=/;HttpOnly;SameSite=None;Secure;Domain=plus-dev-api.asset-expert.de X-Powered-By: ASP.NET
Found 2025-12-22 by HttpPluginCreate report