LeakIX - Host psws-dev.tengizchevroil.com

Domain psws-dev.tengizchevroil.com

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 40.114.210.78
Domain: psws-dev.tengizchevroil.com
Port: 443
URL: https://psws-dev.tengizchevroil.com

First seen 2025-12-26 09:52
Last seen 2026-02-09 22:08
Open for 45 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a478ccf7e10d2ccd2bf9184385e97f3d5f3884

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/company
GET /api/costCenter
GET /api/costCenter/all
GET /api/costCenter/child
GET /api/location/areas
GET /api/location/buildings
GET /api/location/countries
GET /api/location/facilities
GET /api/organization/department
GET /api/organization/department/all
GET /api/organization/division
GET /api/organization/division/all
GET /api/organization/group/all
GET /api/organization/position/all
GET /api/person
GET /api/person/approvers
GET /api/person/citizenship
GET /api/person/ctsTraining
GET /api/person/doa
GET /api/person/dob
GET /api/person/extended
GET /api/person/gender
GET /api/person/homeAddress
GET /api/person/payStatus
GET /api/person/personDirectReports
GET /api/person/related
GET /api/person/searchFields
GET /api/person/smartSearch
GET /api/service/enum
GET /api/user
GET /api/user/checkRole
POST /api/service/updateSharedEmail

Found on 2026-02-09 22:08

Create report

Open service 40.114.210.78:443 · psws-dev.tengizchevroil.com

2026-01-23 12:09

HTTP/1.1 401 Unauthorized
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 12:09:39 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=e9e81f2ac2a4bf9f7313a0e23d048c6ea80e4c5057f6a319743189af4f90b5c7;Path=/;HttpOnly;Secure;Domain=psws-dev.tengizchevroil.com
Set-Cookie: ARRAffinitySameSite=e9e81f2ac2a4bf9f7313a0e23d048c6ea80e4c5057f6a319743189af4f90b5c7;Path=/;HttpOnly;SameSite=None;Secure;Domain=psws-dev.tengizchevroil.com
WWW-Authenticate: Bearer
X-Powered-By: ASP.NET

Found 2026-01-23 by HttpPlugin

Create report

psws-dev.tengizchevroil.com

Fingerprint:

70f2b4c4242e1729b5c516954923a2aecfa3f1f7445726fc3a8704416f4b84c7

CN:

psws-dev.tengizchevroil.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-26 00:00

Not after:

2026-04-14 23:59

Domain summary

psws-dev.tengizchevroil.com 1

1 recorded

IP summary

40.114.210.78 2

1 recorded