Domain pyzo.top
United States
Software information
cloudflare
tcp/80
openresty
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-24 16:02-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-11-24 16:02
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-24 16:02
Last seen 2025-11-30 17:47
Open for 6 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-11-30 17:47
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-27 09:52
Last seen 2025-11-27 09:52-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-11-27 09:52
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-24 16:02
Last seen 2025-12-02 04:55
Open for 7 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-12-02 04:55
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-24 16:02
Last seen 2025-12-01 14:40
Open for 6 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-12-01 14:40
-
-
Open service 38.47.119.67:443 · pyzo.top
2026-01-25 11:24
HTTP/1.1 400 Bad Request Server: openresty Date: Sun, 25 Jan 2026 11:24:30 GMT Content-Type: text/html Content-Length: 252 Connection: close Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>openresty</center> </body> </html>
Found 2026-01-25 by HttpPluginCreate report
-
Open service 38.47.119.67:80 · pyzo.top
2026-01-25 11:24
HTTP/1.1 200 OK Server: openresty Date: Sun, 25 Jan 2026 11:24:31 GMT Content-Type: text/html Content-Length: 130 Last-Modified: Tue, 11 Nov 2025 10:31:18 GMT Connection: close ETag: "69131076-82" Accept-Ranges: bytes Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body> <center><h1>404 Not Found</h1></center> <hr><center>nginx</center> </body>
Found 2026-01-25 by HttpPluginCreate report
-
Open service 172.67.206.235:80 · pyzo.top
2026-01-22 19:08
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 19:08:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 11 Nov 2025 10:31:18 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Uxfvempz1fdZhBytScOAmSkjQw4x5%2BiLY9ADhJMT1LRz3wCCo6dGiFjyuoz46VXj0RhsCdGXnaSZTJ6Mks90SY9qZjOTfS%2FT"}]} Accept-Ranges: bytes cf-cache-status: DYNAMIC CF-RAY: 9c2157080fe9e854-FRA alt-svc: h3=":443"; ma=86400 Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body> <center><h1>404 Not Found</h1></center> <hr><center>nginx</center> </body>Found 2026-01-22 by HttpPluginCreate report