LeakIX - Host profile-api.workroom.cloud

Domain profile-api.workroom.cloud

Italy

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Kestrel Kestrel

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 4.232.99.1
Domain: profile-api.workroom.cloud
Port: 443
URL: https://profile-api.workroom.cloud

First seen 2025-12-09 05:35
Last seen 2026-01-09 01:26
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549e64842815422c9c434d07d464571074080ee3f8e
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /my
GET /agent/status
GET /apiserver/logs
GET /apiserver/roles
GET /apiserver/status
GET /health
GET /my/preferences
GET /my/profile
GET /my/sessions
GET /my/sessions/details
GET /my/tokens
GET /my/validation
POST /agent/start
POST /agent/stop
POST /apiserver/shutdown
POST /cache/purge
POST /my/sessions/bind
POST /my/sessions/enable
POST /my/sessions/keepalive
POST /my/sessions/kill
PUT /my/label
```
  Found on 2026-01-09 01:26
Create report

Open service 4.232.99.1:443 · profile-api.workroom.cloud

2026-01-09 01:26
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Fri, 09 Jan 2026 01:27:28 GMT
Server: Kestrel
```
Found 2026-01-09 by HttpPlugin
Create report
Open service 4.232.99.1:443 · profile-api.workroom.cloud

2026-01-01 22:12
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Thu, 01 Jan 2026 22:12:23 GMT
Server: Kestrel
```
Found 2026-01-01 by HttpPlugin
Create report
Open service 4.232.99.1:443 · profile-api.workroom.cloud

2025-12-30 05:47
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Tue, 30 Dec 2025 05:47:27 GMT
Server: Kestrel
```
Found 2025-12-30 by HttpPlugin
Create report
Open service 4.232.99.1:443 · profile-api.workroom.cloud

2025-12-22 18:51
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Mon, 22 Dec 2025 18:51:05 GMT
Server: Kestrel
```
Found 2025-12-22 by HttpPlugin
Create report
Open service 4.232.99.1:443 · profile-api.workroom.cloud

2025-12-20 21:01
```
HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Sat, 20 Dec 2025 21:01:05 GMT
Server: Kestrel
```
Found 2025-12-20 by HttpPlugin
Create report

profile-api.workroom.cloud

Fingerprint:

341f443ef1d64bf746fd657d1996f1a1dd808fb150c01543f0d72f3621f8df25

CN:

profile-api.workroom.cloud

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-09 00:00

Not after:

2026-04-14 23:59

Domain summary

profile-api.workroom.cloud 5

1 recorded

IP summary

1 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice