LeakIX - Host prod-j1-shield.junecomet.com

Domain prod-j1-shield.junecomet.com

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Kestrel Kestrel

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.80.19.74
Domain: prod-j1-shield.junecomet.com
Port: 80
URL: http://prod-j1-shield.junecomet.com

First seen 2025-11-27 00:54
Last seen 2026-01-16 16:46
Open for 50 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549239cbd2455fce825f4a7b19a76a5ab1d60b74713

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /permissions
GET /permissions/{id}
GET /permissions/{id}/events
GET /permissions/{id}/relations
GET /roles
GET /roles/{id}
GET /roles/{id}/events
GET /roles/{id}/relations
GET /users
GET /users/{id}
GET /users/{id}/events
GET /users/{id}/logins
GET /users/{id}/relations
POST /permissions/{id}/actions/{action}
POST /permissions/{id}/changestate
POST /permissions/{id}/relations/{relationName}
POST /roles/{id}/actions/{action}
POST /roles/{id}/changestate
POST /roles/{id}/relations/{relationName}
POST /users/{id}/actions/{action}
POST /users/{id}/changestate
POST /users/{id}/relations/{relationName}
PUT /permissions/{id}/relations/{relationId}
PUT /roles/{id}/relations/{relationId}
PUT /users/{id}/relations/{relationId}

Found on 2026-01-16 16:46

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60dbce8b9d6f76071aed76b25164178d9c2da72572

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /permissions
GET /permissions/{id}
GET /permissions/{id}/events
GET /permissions/{id}/relations
GET /roles
GET /roles/{id}
GET /roles/{id}/events
GET /roles/{id}/relations
GET /users
GET /users/{id}
GET /users/{id}/events
GET /users/{id}/logins
GET /users/{id}/relations
POST /permissions/{id}/actions/{action}
POST /permissions/{id}/changestate
POST /permissions/{id}/relations/{relationName}
POST /roles/{id}/actions/{action}
POST /roles/{id}/changestate
POST /roles/{id}/relations/{relationName}
POST /users/{id}/actions/{action}
POST /users/{id}/changestate
POST /users/{id}/relations/{relationName}
PUT /permissions/{id}/relations/{relationId}
PUT /roles/{id}/relations/{relationId}
PUT /users/{id}/relations/{relationId}

Found on 2025-12-24 06:44

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.80.19.74
Domain: prod-j1-shield.junecomet.com
Port: 443
URL: https://prod-j1-shield.junecomet.com

First seen 2025-11-11 13:30
Last seen 2026-01-16 13:41
Open for 66 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549239cbd2455fce825f4a7b19a76a5ab1d60b74713
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /permissions
GET /permissions/{id}
GET /permissions/{id}/events
GET /permissions/{id}/relations
GET /roles
GET /roles/{id}
GET /roles/{id}/events
GET /roles/{id}/relations
GET /users
GET /users/{id}
GET /users/{id}/events
GET /users/{id}/logins
GET /users/{id}/relations
POST /permissions/{id}/actions/{action}
POST /permissions/{id}/changestate
POST /permissions/{id}/relations/{relationName}
POST /roles/{id}/actions/{action}
POST /roles/{id}/changestate
POST /roles/{id}/relations/{relationName}
POST /users/{id}/actions/{action}
POST /users/{id}/changestate
POST /users/{id}/relations/{relationName}
PUT /permissions/{id}/relations/{relationId}
PUT /roles/{id}/relations/{relationId}
PUT /users/{id}/relations/{relationId}
```
  Found on 2026-01-16 13:41
Create report

Open service 13.80.19.74:80 · prod-j1-shield.junecomet.com

2026-01-23 09:11

HTTP/1.1 403 Site Disabled
Content-Length: 1148
Connection: close
Content-Type: text/html
Date: Fri, 23 Jan 2026 09:11:53 GMT

Page title: Web App - Unavailable

<!DOCTYPE html><html><head><title>Web App - Unavailable</title><style type="text/css">html{height:100%;width:100%;}#feature{width:960px;margin:95px auto 0 auto;overflow:auto;}#content{font-family:"Segoe UI";font-weight:normal;font-size:22px;color:#fff;float:left;width:460px;margin-top:68px;margin-left:0px;vertical-align:middle;}#content h1{font-family:"Segoe UI Light";color:#fff;font-weight:normal;font-size:60px;line-height:48pt;width:800px;}p a,p a:visited,p a:active,p a:hover{color:#fff;}</style></head><body bgcolor="#00abec"><div id="feature"><div id="content"><h1 id="unavailable">Error 403 - This web app is stopped.</h1><p id="tryAgain">The web app you have attempted to reach is currently stopped and does not accept any requests. Please try to reload the page or visit it again soon.</p><p id="toAdmin">If you are the web app administrator, please find the common 403 error scenarios and resolution <a href="https://go.microsoft.com/fwlink/?linkid=2095007" target="_blank">here</a>. For further troubleshooting tools and recommendations, please visit <a href="https://portal.azure.com/">Azure Portal</a>.</p></div></div></body></html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 13.80.19.74:80 · prod-j1-shield.junecomet.com

2026-01-09 18:53

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 18:54:39 GMT
Server: Kestrel
Location: https://prod-j1-shield.junecomet.com/
X-Powered-By: ASP.NET

Found 2026-01-09 by HttpPlugin

Create report

Open service 13.80.19.74:443 · prod-j1-shield.junecomet.com

2026-01-09 05:12

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 05:13:02 GMT
Server: Kestrel
X-Powered-By: ASP.NET

Found 2026-01-09 by HttpPlugin

Create report

Open service 13.80.19.74:443 · prod-j1-shield.junecomet.com

2026-01-02 08:04

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 02 Jan 2026 08:04:42 GMT
Server: Kestrel
X-Powered-By: ASP.NET

Found 2026-01-02 by HttpPlugin

Create report

Open service 13.80.19.74:80 · prod-j1-shield.junecomet.com

2026-01-02 04:21

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 02 Jan 2026 04:21:15 GMT
Server: Kestrel
Location: https://prod-j1-shield.junecomet.com/
X-Powered-By: ASP.NET

Found 2026-01-02 by HttpPlugin

Create report

Open service 13.80.19.74:443 · prod-j1-shield.junecomet.com

2025-12-23 02:29

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Tue, 23 Dec 2025 02:29:52 GMT
Server: Kestrel
X-Powered-By: ASP.NET

Found 2025-12-23 by HttpPlugin

Create report

Open service 13.80.19.74:80 · prod-j1-shield.junecomet.com

2025-12-22 08:06

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Mon, 22 Dec 2025 08:06:51 GMT
Server: Kestrel
Location: https://prod-j1-shield.junecomet.com/
X-Powered-By: ASP.NET

Found 2025-12-22 by HttpPlugin

Create report

prod-j1-shield.junecomet.com

Fingerprint:

2f82c6951e836af6e735c003eb15759f7c2bbab2f672f7c7d110d47877bc5b0f

CN:

prod-j1-shield.junecomet.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-11-11 00:00

Not after:

2026-04-14 23:59

Domain summary

prod-j1-shield.junecomet.com 9

1 recorded

IP summary

13.80.19.74 2

1 recorded