LeakIX - Host recapexpense.com

Domain recapexpense.com

Germany

Akamai International B.V.

Ubuntu

Software information

Apache Apache 2.4.52

tcp/443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 2.23.7.10
Domain: recapexpense.com
Port: 443
URL: https://recapexpense.com

First seen 2025-12-10 12:37
Last seen 2026-02-08 23:15
Open for 60 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfccaa17eea4720b6136f01bf236c564a74
```
Found 4 files trough .DS_Store spidering:

/40x.html
/50x.html
/css
/images
```
  Found on 2026-02-08 23:15
Create report

Open service 2.23.7.10:443 · recapexpense.com

2026-01-23 15:22

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
x-frame-options: SAMEORIGIN
x-trace: 2BC2525E63FBE0D19D6AD0EDE37555DF663D47C347000000000000000000
x-ua-compatible: IE=Edge
Content-Language: en-US
x-host: yatra-apache-598dd6ffb4-mp767
Expires: Fri, 23 Jan 2026 15:22:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 23 Jan 2026 15:22:46 GMT
Alt-Svc: h3=":443"; ma=93600
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: SessionVX=c4d3c095-c936-48fe-8001-5639d477b243; Domain=.yatra.com; Expires=Sat, 23-Jan-2027 15:22:45 GMT; Path=/
Set-Cookie: currencyId=1; Domain=.yatra.com; Expires=Sat, 23-Jan-2027 15:22:45 GMT; Path=/
Set-Cookie: JSESSIONID=4A35E36399E6257A484531CA621DFA7B; Path=/fresco; HttpOnly

Found 2026-01-23 by HttpPlugin

Create report

Open service 34.49.9.109:80 · app.recapexpense.com

2026-01-12 22:53

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: https://app.recapexpense.com:443/
Content-Length: 0
Date: Mon, 12 Jan 2026 22:54:16 GMT
Content-Type: text/html; charset=UTF-8
Connection: close

Found 2026-01-12 by HttpPlugin

Create report

Open service 34.49.9.109:443 · app.recapexpense.com

2026-01-12 22:53

HTTP/1.1 200 OK
Date: Mon, 12 Jan 2026 22:53:18 GMT
Server: Apache/2.4.52 (Ubuntu)
Set-Cookie: csrf_cookie_name=2c52cca0ea1ce93133bf53dbb3e3200c; expires=Tue, 13-Jan-2026 00:53:18 GMT; Max-Age=7200; path=/
Set-Cookie: ci_session=5a0amdll1rh06j86iiiln13oo2qeeann; expires=Tue, 13-Jan-2026 00:53:18 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Connection: close
Transfer-Encoding: chunked

Page title: Yatra Expense Management Solution

<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml">

<head>
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <title>Yatra Expense Management Solution</title>
    <link rel="shortcut icon" type="image/x-icon" href="https://app.recapexpense.com/assets/img/favicon.ico" />
    <!-- BOOTSTRAP STYLES 5-->
    <link href="https://app.recapexpense.com/assets/css_new/bootstrap.min.css" rel="stylesheet" />
    <!-- FONTAWESOME STYLES-->
    <link href="https://app.recapexpense.com/assets/css_new/font-awesome.css" rel="stylesheet" />
    <!-- CUSTOM STYLES-->
    <link href="https://app.recapexpense.com/assets/css_new/custom.css" rel="stylesheet" />
    <!-- responsive STYLES-->
    <link href="https://app.recapexpense.com/assets/css_new/responsive.css" rel="stylesheet" />
</head>

<body>
    <main>
        <section>
            <div class="login-page bg-light">
                <div class="container">
                    <div class="row">
                        <div class="col-lg-10 offset-lg-1">
                          <h3 class="mb-3 text-center fs-1"></h3>
                            <div class="bg-white shadow rounded">
                                <div class="row">
                                    <div class="col-md-7 pe-0">
                                        <div class="form-left h-100 py-5 px-5">
                                                                                    <div class="row" id="error_message">  
    <div Class="col-md-12 text-capitalize">
            </div>
</div>
<div class="row" id="ajax-error-message" style="display: none;">  
    <div Class="col-md-12 text-capitalize">
        <div class="alert alert-success" id="success-alert-ajax" style="display: none;" role="alert"></div>
        <div class="alert alert-danger" id="error-alert-ajax" style="display: none;" role="alert" style="color: red;"></div>
        <div class="alert alert-warning" id="warning-alert-ajax" style="display: none;" role="alert"></div>
        <div class="alert alert-info" id="info-alert-ajax" style="display: none;" role="alert"></div>
    </div>
</div>											<span class="error_invalid mb-2 d-flex justify-content-center" id="error_invalid" style="color:red;margin-left: 100px;"><b>                                                                                    </b></span>
                                            <form action="https://app.recapexpense.com/login" class="row g-4" id="form" name="form" method="post">
											<span class="form-errors  mb-2 d-flex justify-content-center">
                                                <b></b>
                                                       </span>
                                            <INPUT TYPE="hidden" NAME="hidPgRefRan" VALUE="598414853">
                                                <input type="hidden" class="txt_csrfname" name="token" value="2c52cca0ea1ce93133bf53dbb3e3200c">
												<INPUT TYPE="hidden" NAME="action" VALUE="login">
                                                    <div class="col-12">
                                                        <!--label>Email ID<span class="text-danger">*</span></label>
                                                        <div class="input-group">
                                                            <div class="input-group-text"><i class="fa fa-user"></i></div>
                                                            <input type="text" class="form-control" placeholder="Enter Username" name="email_id" id="email_id" value="" maxlength="30">
                                                        </div>
														<div id="error_emailid" style="display:none;"></div-->
														<div class="form-floating mb-4">
															<input type="text" class="form-control" placeholder="Enter Username or Email ID " name="email_id" id="email_id" value="" maxlength="100">
															<label for="floatingInput"> <i class="fa fa-user"></i>
																Email ID</label>
															<div id="error_emailid" st

Found 2026-01-12 by HttpPlugin

Create report

Open service 2.23.7.10:443 · recapexpense.com

2026-01-09 13:08

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
x-frame-options: SAMEORIGIN
x-trace: 2B07172763829BC137F517589CC02325A105CC8CB3000000000000000000
x-ua-compatible: IE=Edge
Content-Language: en-US
x-host: yatra-apache-598dd6ffb4-slg4q
Expires: Fri, 09 Jan 2026 13:08:49 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 13:08:49 GMT
Alt-Svc: h3=":443"; ma=93600
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: SessionVX=5b69989b-0fc4-42d5-a37b-a21eec5acc94; Domain=.yatra.com; Expires=Sat, 09-Jan-2027 13:08:49 GMT; Path=/
Set-Cookie: currencyId=1; Domain=.yatra.com; Expires=Sat, 09-Jan-2027 13:08:49 GMT; Path=/
Set-Cookie: JSESSIONID=1CCC2B656CB1E8151EDCD57E48F53BD4; Path=/fresco; HttpOnly

Found 2026-01-09 by HttpPlugin

Create report

Open service 107.178.250.77:443 · delivery.recapexpense.com

2026-01-04 02:08

HTTP/1.1 404 Not Found
content-type: text/html
x-cloud-trace-context: e36e414eb3bd2f3b87593474f78e46ef
date: Sun, 04 Jan 2026 02:08:19 GMT
server: Google Frontend
Content-Length: 110
Via: 1.1 google
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: no-referrer-when-downgrade
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0, max-age=0
X-Permitted-Cross-Domain-Policies: none
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Content-Security-Policy: default-src 'self'; form-action 'self'; object-src 'none'; frame-ancestors 'none'; upgrade-insecure-requests; block-all-mixed-content; base-uri 'none'; require-trusted-types-for 'script'; style-src 'self' https://app1.falconide.com/css/unsubscribe.css; script-src 'self' https://app1.falconide.com/js/jquery.js; img-src 'nonce-ABC' strict-dynamic;
X-Content-Security-Policy: default-src 'self'; script-src 'self'
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Connection: close

Page title: 404 Not Found

<html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1><hr></center></body></html>

Found 2026-01-04 by HttpPlugin

Create report

Open service 107.178.250.77:80 · delivery.recapexpense.com

2026-01-04 02:08

HTTP/1.1 404 Not Found
content-type: text/html
x-cloud-trace-context: 1a372560d17acb796651f8fda5756eda
date: Sun, 04 Jan 2026 02:08:20 GMT
server: Google Frontend
Content-Length: 110
Via: 1.1 google
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: no-referrer-when-downgrade
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0, max-age=0
X-Permitted-Cross-Domain-Policies: none
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Content-Security-Policy: default-src 'self'; form-action 'self'; object-src 'none'; frame-ancestors 'none'; upgrade-insecure-requests; block-all-mixed-content; base-uri 'none'; require-trusted-types-for 'script'; style-src 'self' https://app1.falconide.com/css/unsubscribe.css; script-src 'self' https://app1.falconide.com/js/jquery.js; img-src 'nonce-ABC' strict-dynamic;
X-Content-Security-Policy: default-src 'self'; script-src 'self'
Connection: close

Page title: 404 Not Found

<html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1><hr></center></body></html>

Found 2026-01-04 by HttpPlugin

Create report

Open service 2.23.7.10:443 · recapexpense.com

2026-01-02 14:59

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
x-frame-options: SAMEORIGIN
x-trace: 2B3922DAD31F85AE517A7AE2B9E46D2E06B52AA05F000000000000000000
x-ua-compatible: IE=Edge
Content-Language: en-US
x-host: yatra-apache-598dd6ffb4-nl62l
Expires: Fri, 02 Jan 2026 14:59:48 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Jan 2026 14:59:48 GMT
Alt-Svc: h3=":443"; ma=93600
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: SessionVX=84d4c661-4b5b-4303-aec0-b35fd1f6e6e2; Domain=.yatra.com; Expires=Sat, 02-Jan-2027 14:59:47 GMT; Path=/
Set-Cookie: currencyId=1; Domain=.yatra.com; Expires=Sat, 02-Jan-2027 14:59:47 GMT; Path=/
Set-Cookie: JSESSIONID=5CFB5899075F09BA3DCEC9AC1D3D741B; Path=/fresco; HttpOnly

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.23.7.10:443 · recapexpense.com

2025-12-23 04:00

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
x-frame-options: SAMEORIGIN
x-trace: 2B45956A019463BFA9EB705166BF59281AE9521A88000000000000000000
x-ua-compatible: IE=Edge
Content-Language: en-US
x-host: yatra-apache-598dd6ffb4-slg4q
Expires: Tue, 23 Dec 2025 04:00:58 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 23 Dec 2025 04:00:58 GMT
Alt-Svc: h3=":443"; ma=93600
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: SessionVX=cc4518da-6153-42ab-9dcc-752ef5787233; Domain=.yatra.com; Expires=Wed, 23-Dec-2026 04:00:57 GMT; Path=/
Set-Cookie: currencyId=1; Domain=.yatra.com; Expires=Wed, 23-Dec-2026 04:00:57 GMT; Path=/
Set-Cookie: JSESSIONID=DFC7BFBFB0D80CBDAB2FEF729376D968; Path=/fresco; HttpOnly

Found 2025-12-23 by HttpPlugin

Create report

www.yatra.comagent.globeindia.inagent.yatra.comagentadmin.yatra.comanalytics.yatra.comapi.yatrafreight.comapi3.travelguru.comassets.travelguru.comb2b.yatra.comb2badmin.yatra.combudget.yatra.combus.yatra.comchat.yatra.comchatbot.yatra.comcorpdash.yatra.comcorpmo.yatra.comcorporate.globeindia.indemo.easehaul.comdevelopers.travelguru.comeasehaul.comexpense.yatra.comfortune-admin.travelpartnerweb.comgiftexpress.yatra.comhol.yatra.comholidayindia.comimages.travelguru.cominsider.yatra.comir.yatra.commpa.desiya.comnew-static.yatra.comnewvpn.yatra.comns.easehaul.compartner.travelguru.compay.yatra.compayment.yatra.complex.yatra.comrailtourpackages.yatra.comrecap.yatra.comrecapexpense.comresources.desiya.comsecure.rfs.yatra.comsecure.travelguru.comsecuregcp.yatra.comservices.yatra.comsrf.easehaul.comstage-destranet.desiya.comstage-external.travelguru.comstage-secure.travelguru.comstagingapi.yatra.comstatic.travelpartnerweb.comtgapi.yatra.comtgcrm.yatra.comtravelguru.co.intravelpartnerweb.comtsi.yatra.comwww.easehaul.comwww.globeindia.inwww.recapexpense.comwww.travelguru.co.inwww.travelpartnerweb.comxchange.yatra.comyatra-holidays.yatra.comyatra.easehaul.comytauth.yatra.comytcrm.yatra.com

Fingerprint:

272ce6140ef297cf0416ef5c00fd7ca447d6fe7940c58503364319f58e3b9706

CN:

www.yatra.com

Key:

ECDSA-256

Issuer:

DigiCert Global G3 TLS ECC SHA384 2020 CA1

Not before:

2026-01-21 00:00

Not after:

2027-01-21 23:59

app.recapexpense.com

Fingerprint:

b909be1cd0d7b342dd179be41cd772dca17ed73b4b73c0afc599a048f5dce035

CN:

app.recapexpense.com

Key:

RSA-2048

Issuer:

WR3

Not before:

2025-11-20 20:31

Not after:

2026-02-18 21:26

www.yatra.comagent.globeindia.inagent.yatra.comagentadmin.yatra.comanalytics.yatra.comapi.yatrafreight.comapi3.travelguru.comassets.travelguru.comb2b.yatra.comb2badmin.yatra.combudget.yatra.combus.yatra.comchat.yatra.comchatbot.yatra.comcorpdash.yatra.comcorpmo.yatra.comcorporate.globeindia.indemo.easehaul.comdevelopers.travelguru.comeasehaul.comexpense.yatra.comfortune-admin.travelpartnerweb.comhol.yatra.comholidayindia.comimages.travelguru.cominsider.yatra.comir.yatra.commpa.desiya.comnew-static.yatra.comnewvpn.yatra.comns.easehaul.compartner.travelguru.compay.yatra.compayment.yatra.complex.yatra.comrailtourpackages.yatra.comrecap.yatra.comrecapexpense.comresources.desiya.comsecure.rfs.yatra.comsecure.travelguru.comservices.yatra.comsrf.easehaul.comstage-destranet.desiya.comstage-external.travelguru.comstage-secure.travelguru.comstagingapi.yatra.comstatic.travelpartnerweb.comtgapi.yatra.comtgcrm.yatra.comtravelguru.co.intravelpartnerweb.comtsi.yatra.comwww.easehaul.comwww.globeindia.inwww.recapexpense.comwww.travelguru.co.inwww.travelpartnerweb.comxchange.yatra.comyatra-holidays.yatra.comyatra.easehaul.comytauth.yatra.comytcrm.yatra.com

Fingerprint:

5a82d3077107e70faa11ab035858d2a2b93824700e9363d1295d603dbbb963e1

CN:

www.yatra.com

Key:

ECDSA-256

Issuer:

DigiCert TLS Hybrid ECC SHA384 2020 CA1

Not before:

2025-02-27 00:00

Not after:

2026-02-27 23:59

delivery.recapexpense.com

Fingerprint:

1340832b15e57f489b879a641b01a8f27c5613c6f8a2b1eced5c780d70fd0aa7

CN:

delivery.recapexpense.com

Key:

RSA-2048

Issuer:

WR3

Not before:

2025-11-11 22:15

Not after:

2026-02-09 23:10

Domain summary

recapexpense.com 4 app.recapexpense.com 1 delivery.recapexpense.com 1

3 recorded

IP summary

2.23.7.10 2 34.49.9.109 2 107.178.250.77 2

3 recorded

Domain recapexpense.com

Germany

Software information

MacOS file listing through .DS_Store file

app.recapexpense.com

delivery.recapexpense.com

Domain summary

IP summary