LeakIX - Host ri.praedicorail.dev

Domain ri.praedicorail.dev

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.107.253.45
Domain: ri.praedicorail.dev
Port: 443
URL: https://ri.praedicorail.dev

First seen 2025-10-14 15:51
Last seen 2026-02-09 23:02
Open for 118 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:02
Create report

Open service 13.107.253.45:443 · ri.praedicorail.dev

2026-01-23 13:44

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 13:44:20 GMT
Content-Type: text/html
Content-Length: 4418
Connection: close
cache-control: no-cache, no-store, must-revalidate
etag: "691a5ff7-1142"
last-modified: Sun, 16 Nov 2025 23:36:23 GMT
request-context: appId=cid-v1:a2caba63-6fdd-48e1-8d4b-f1a2c17ecdba
strict-transport-security: max-age=2592000
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-security-policy: default-src 'unsafe-eval';        script-src 'unsafe-eval' 'self' https://static.zdassets.com https://cdn.mxpnl.com https://www.google-analytics.com https://*.segment.com https://*.segment.io https://*.arcgis.com https://services.arcgisonline.com https://*.bhp.com https://js.monitor.azure.com;        font-src 'self' https://*.arcgis.com https://services.arcgisonline.com;        img-src 'self' data: blob: https://*.bhp.com https://upload.wikimedia.org https://services.arcgisonline.nl https://www.google-analytics.com https://*.arcgis.com https://server.arcgisonline.com https://services.arcgisonline.com https://*.virtualearth.net https://*.openstreetmap.org;        connect-src 'self' https://cdn-global.configcat.com https://*.arcgis.com https://utility.arcgisonline.com https://services.arcgisonline.nl https://api-js.mixpanel.com https://ekr.zdassets.com https://api.mapbox.com https://events.mapbox.com https://*.b2clogin.com https://www.google-analytics.com https://services.arcgisonline.com https://*.bhp.com https://*.virtualearth.net https://*.openstreetmap.org https://*.in.applicationinsights.azure.com;        style-src 'self' 'unsafe-inline' https://*.arcgis.com;        worker-src 'self' blob:;        frame-ancestors 'self' https://app.segment.com;        frame-src 'self' https://praedicoidentitynonprod.b2clogin.com https://praedicoidentity.b2clogin.com https://login.microsoftonline.com;        base-uri 'none'; form-action 'none';
x-azure-ref: 20260123T134420Z-158456f5b74t5mnmhC1FRAmtwg0000001dpg000000005qr0
X-Cache: CONFIG_NOCACHE
Accept-Ranges: bytes

Page title: Praedico Rail

<!DOCTYPE html>
<html lang="en" xml:lang="en">
  <head>
    <meta charset="utf-8" />
    <title>Praedico Rail</title>
    <link rel="icon" type="image/x-icon" href="/favicon.png" />
    <meta name="viewport" content="width=device-width,initial-scale=1,minimum-scale=1,maximum-scale=1,user-scalable=no" />
    <meta name="apple-mobile-web-app-title" content="Praedico Rail" />
    <meta name="mobile-web-app-capable" content="yes" />
    <meta name="theme-color" content="#212121" />
    <meta name="google" content="notranslate" />
    <script type="text/javascript" src="/config.js"></script>
    <script type="module" crossorigin src="/assets/index-BOw7L6Kx.js"></script>
    <link rel="modulepreload" crossorigin href="/assets/lodash-DTzPs1YI.js">
    <link rel="modulepreload" crossorigin href="/assets/@kurkle-D8fDXNIl.js">
    <link rel="modulepreload" crossorigin href="/assets/chart.js-DY3r8GI1.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-plugin-annotation-C-jqnYb8.js">
    <link rel="modulepreload" crossorigin href="/assets/classnames-59klyA-I.js">
    <link rel="modulepreload" crossorigin href="/assets/scheduler-C323NY8X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-dom-ukbZf9Pe.js">
    <link rel="modulepreload" crossorigin href="/assets/@nevware21-CHbZy3co.js">
    <link rel="modulepreload" crossorigin href="/assets/@microsoft-DkerJt6-.js">
    <link rel="modulepreload" crossorigin href="/assets/@babel-CF3RwP-h.js">
    <link rel="modulepreload" crossorigin href="/assets/history-BwBJjyxP.js">
    <link rel="modulepreload" crossorigin href="/assets/lodash-es-BG0FXDj7.js">
    <link rel="modulepreload" crossorigin href="/assets/axios-C37WzBb4.js">
    <link rel="modulepreload" crossorigin href="/assets/color-name-Dju3oUBS.js">
    <link rel="modulepreload" crossorigin href="/assets/simple-swizzle-eild5XDT.js">
    <link rel="modulepreload" crossorigin href="/assets/color-string-BRNFdfrj.js">
    <link rel="modulepreload" crossorigin href="/assets/color-convert-CZ6UMrXX.js">
    <link rel="modulepreload" crossorigin href="/assets/color-BXbYqk9e.js">
    <link rel="modulepreload" crossorigin href="/assets/react-router-B_p9Aa1Z.js">
    <link rel="modulepreload" crossorigin href="/assets/@floating-ui-CQEOEa0X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-tooltip-B-okZ894.js">
    <link rel="modulepreload" crossorigin href="/assets/tslib-nmQMCw9a.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-common-BTyWxkMV.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-react-wlOIYMI5.js">
    <link rel="modulepreload" crossorigin href="/assets/numeral-CEakbS1j.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-DKsnZuve.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-react-CqIjvPGQ.js">
    <link rel="modulepreload" crossorigin href="/assets/luxon-DOXiyJsP.js">
    <link rel="modulepreload" crossorigin href="/assets/ui-CUWCUsZv.js">
    <link rel="modulepreload" crossorigin href="/assets/@stencil-B78S30NX.js">
    <link rel="modulepreload" crossorigin href="/assets/@esri-RyXRihya.js">
    <link rel="modulepreload" crossorigin href="/assets/@zip.js-CDhdb6do.js">
    <link rel="modulepreload" crossorigin href="/assets/@arcgis-2dSO0Mb_.js">
    <link rel="modulepreload" crossorigin href="/assets/react-table-BxJ7_He6.js">
    <link rel="modulepreload" crossorigin href="/assets/react-paginate-D7ks1J_x.js">
    <link rel="modulepreload" crossorigin href="/assets/core-js-BspeYR05.js">
    <link rel="modulepreload" crossorigin href="/assets/regenerator-runtime-CUZ7HfZv.js">
    <link rel="modulepreload" crossorigin href="/assets/mixpanel-browser-cbsWqqZH.js">
    <link rel="modulepreload" crossorigin href="/assets/react-mixpanel-browser-B1sOj16R.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-adapter-luxon-C69XinWG.js">
    <link rel="modulepreload" crossorigin href="/assets/happy-dom-Dpuf4pHv.js">
    <link rel="modulepreload" crossorigin href="/assets/index-B

Found 2026-01-23 by HttpPlugin

Create report

Open service 13.107.253.45:443 · ri.praedicorail.dev

2026-01-23 09:13

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 09:13:43 GMT
Content-Type: text/html
Content-Length: 4418
Connection: close
cache-control: no-cache, no-store, must-revalidate
etag: "691a5ff7-1142"
last-modified: Sun, 16 Nov 2025 23:36:23 GMT
request-context: appId=cid-v1:a2caba63-6fdd-48e1-8d4b-f1a2c17ecdba
strict-transport-security: max-age=2592000
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-security-policy: default-src 'unsafe-eval';        script-src 'unsafe-eval' 'self' https://static.zdassets.com https://cdn.mxpnl.com https://www.google-analytics.com https://*.segment.com https://*.segment.io https://*.arcgis.com https://services.arcgisonline.com https://*.bhp.com https://js.monitor.azure.com;        font-src 'self' https://*.arcgis.com https://services.arcgisonline.com;        img-src 'self' data: blob: https://*.bhp.com https://upload.wikimedia.org https://services.arcgisonline.nl https://www.google-analytics.com https://*.arcgis.com https://server.arcgisonline.com https://services.arcgisonline.com https://*.virtualearth.net https://*.openstreetmap.org;        connect-src 'self' https://cdn-global.configcat.com https://*.arcgis.com https://utility.arcgisonline.com https://services.arcgisonline.nl https://api-js.mixpanel.com https://ekr.zdassets.com https://api.mapbox.com https://events.mapbox.com https://*.b2clogin.com https://www.google-analytics.com https://services.arcgisonline.com https://*.bhp.com https://*.virtualearth.net https://*.openstreetmap.org https://*.in.applicationinsights.azure.com;        style-src 'self' 'unsafe-inline' https://*.arcgis.com;        worker-src 'self' blob:;        frame-ancestors 'self' https://app.segment.com;        frame-src 'self' https://praedicoidentitynonprod.b2clogin.com https://praedicoidentity.b2clogin.com https://login.microsoftonline.com;        base-uri 'none'; form-action 'none';
x-azure-ref: 20260123T091343Z-15f8bd58b946tc97hC1FRAxcx800000013kg000000002261
X-Cache: CONFIG_NOCACHE
Accept-Ranges: bytes

Page title: Praedico Rail

<!DOCTYPE html>
<html lang="en" xml:lang="en">
  <head>
    <meta charset="utf-8" />
    <title>Praedico Rail</title>
    <link rel="icon" type="image/x-icon" href="/favicon.png" />
    <meta name="viewport" content="width=device-width,initial-scale=1,minimum-scale=1,maximum-scale=1,user-scalable=no" />
    <meta name="apple-mobile-web-app-title" content="Praedico Rail" />
    <meta name="mobile-web-app-capable" content="yes" />
    <meta name="theme-color" content="#212121" />
    <meta name="google" content="notranslate" />
    <script type="text/javascript" src="/config.js"></script>
    <script type="module" crossorigin src="/assets/index-BOw7L6Kx.js"></script>
    <link rel="modulepreload" crossorigin href="/assets/lodash-DTzPs1YI.js">
    <link rel="modulepreload" crossorigin href="/assets/@kurkle-D8fDXNIl.js">
    <link rel="modulepreload" crossorigin href="/assets/chart.js-DY3r8GI1.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-plugin-annotation-C-jqnYb8.js">
    <link rel="modulepreload" crossorigin href="/assets/classnames-59klyA-I.js">
    <link rel="modulepreload" crossorigin href="/assets/scheduler-C323NY8X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-dom-ukbZf9Pe.js">
    <link rel="modulepreload" crossorigin href="/assets/@nevware21-CHbZy3co.js">
    <link rel="modulepreload" crossorigin href="/assets/@microsoft-DkerJt6-.js">
    <link rel="modulepreload" crossorigin href="/assets/@babel-CF3RwP-h.js">
    <link rel="modulepreload" crossorigin href="/assets/history-BwBJjyxP.js">
    <link rel="modulepreload" crossorigin href="/assets/lodash-es-BG0FXDj7.js">
    <link rel="modulepreload" crossorigin href="/assets/axios-C37WzBb4.js">
    <link rel="modulepreload" crossorigin href="/assets/color-name-Dju3oUBS.js">
    <link rel="modulepreload" crossorigin href="/assets/simple-swizzle-eild5XDT.js">
    <link rel="modulepreload" crossorigin href="/assets/color-string-BRNFdfrj.js">
    <link rel="modulepreload" crossorigin href="/assets/color-convert-CZ6UMrXX.js">
    <link rel="modulepreload" crossorigin href="/assets/color-BXbYqk9e.js">
    <link rel="modulepreload" crossorigin href="/assets/react-router-B_p9Aa1Z.js">
    <link rel="modulepreload" crossorigin href="/assets/@floating-ui-CQEOEa0X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-tooltip-B-okZ894.js">
    <link rel="modulepreload" crossorigin href="/assets/tslib-nmQMCw9a.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-common-BTyWxkMV.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-react-wlOIYMI5.js">
    <link rel="modulepreload" crossorigin href="/assets/numeral-CEakbS1j.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-DKsnZuve.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-react-CqIjvPGQ.js">
    <link rel="modulepreload" crossorigin href="/assets/luxon-DOXiyJsP.js">
    <link rel="modulepreload" crossorigin href="/assets/ui-CUWCUsZv.js">
    <link rel="modulepreload" crossorigin href="/assets/@stencil-B78S30NX.js">
    <link rel="modulepreload" crossorigin href="/assets/@esri-RyXRihya.js">
    <link rel="modulepreload" crossorigin href="/assets/@zip.js-CDhdb6do.js">
    <link rel="modulepreload" crossorigin href="/assets/@arcgis-2dSO0Mb_.js">
    <link rel="modulepreload" crossorigin href="/assets/react-table-BxJ7_He6.js">
    <link rel="modulepreload" crossorigin href="/assets/react-paginate-D7ks1J_x.js">
    <link rel="modulepreload" crossorigin href="/assets/core-js-BspeYR05.js">
    <link rel="modulepreload" crossorigin href="/assets/regenerator-runtime-CUZ7HfZv.js">
    <link rel="modulepreload" crossorigin href="/assets/mixpanel-browser-cbsWqqZH.js">
    <link rel="modulepreload" crossorigin href="/assets/react-mixpanel-browser-B1sOj16R.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-adapter-luxon-C69XinWG.js">
    <link rel="modulepreload" crossorigin href="/assets/happy-dom-Dpuf4pHv.js">
    <link rel="modulepreload" crossorigin href="/assets/index-B

Found 2026-01-23 by HttpPlugin

Create report

Open service 13.107.253.45:443 · ri.praedicorail.dev

2026-01-10 00:52

HTTP/1.1 200 OK
Date: Sat, 10 Jan 2026 00:52:37 GMT
Content-Type: text/html
Content-Length: 4418
Connection: close
cache-control: no-cache, no-store, must-revalidate
etag: "691a5ff7-1142"
last-modified: Sun, 16 Nov 2025 23:36:23 GMT
request-context: appId=cid-v1:a2caba63-6fdd-48e1-8d4b-f1a2c17ecdba
strict-transport-security: max-age=2592000
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-security-policy: default-src 'unsafe-eval';        script-src 'unsafe-eval' 'self' https://static.zdassets.com https://cdn.mxpnl.com https://www.google-analytics.com https://*.segment.com https://*.segment.io https://*.arcgis.com https://services.arcgisonline.com https://*.bhp.com https://js.monitor.azure.com;        font-src 'self' https://*.arcgis.com https://services.arcgisonline.com;        img-src 'self' data: blob: https://*.bhp.com https://upload.wikimedia.org https://services.arcgisonline.nl https://www.google-analytics.com https://*.arcgis.com https://server.arcgisonline.com https://services.arcgisonline.com https://*.virtualearth.net https://*.openstreetmap.org;        connect-src 'self' https://cdn-global.configcat.com https://*.arcgis.com https://utility.arcgisonline.com https://services.arcgisonline.nl https://api-js.mixpanel.com https://ekr.zdassets.com https://api.mapbox.com https://events.mapbox.com https://*.b2clogin.com https://www.google-analytics.com https://services.arcgisonline.com https://*.bhp.com https://*.virtualearth.net https://*.openstreetmap.org https://*.in.applicationinsights.azure.com;        style-src 'self' 'unsafe-inline' https://*.arcgis.com;        worker-src 'self' blob:;        frame-ancestors 'self' https://app.segment.com;        frame-src 'self' https://praedicoidentitynonprod.b2clogin.com https://praedicoidentity.b2clogin.com https://login.microsoftonline.com;        base-uri 'none'; form-action 'none';
x-azure-ref: 20260110T005236Z-r159967bfb84vxkxhC1YTO40xn0000000f5g00000000168k
X-Cache: CONFIG_NOCACHE
Accept-Ranges: bytes

Page title: Praedico Rail

<!DOCTYPE html>
<html lang="en" xml:lang="en">
  <head>
    <meta charset="utf-8" />
    <title>Praedico Rail</title>
    <link rel="icon" type="image/x-icon" href="/favicon.png" />
    <meta name="viewport" content="width=device-width,initial-scale=1,minimum-scale=1,maximum-scale=1,user-scalable=no" />
    <meta name="apple-mobile-web-app-title" content="Praedico Rail" />
    <meta name="mobile-web-app-capable" content="yes" />
    <meta name="theme-color" content="#212121" />
    <meta name="google" content="notranslate" />
    <script type="text/javascript" src="/config.js"></script>
    <script type="module" crossorigin src="/assets/index-BOw7L6Kx.js"></script>
    <link rel="modulepreload" crossorigin href="/assets/lodash-DTzPs1YI.js">
    <link rel="modulepreload" crossorigin href="/assets/@kurkle-D8fDXNIl.js">
    <link rel="modulepreload" crossorigin href="/assets/chart.js-DY3r8GI1.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-plugin-annotation-C-jqnYb8.js">
    <link rel="modulepreload" crossorigin href="/assets/classnames-59klyA-I.js">
    <link rel="modulepreload" crossorigin href="/assets/scheduler-C323NY8X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-dom-ukbZf9Pe.js">
    <link rel="modulepreload" crossorigin href="/assets/@nevware21-CHbZy3co.js">
    <link rel="modulepreload" crossorigin href="/assets/@microsoft-DkerJt6-.js">
    <link rel="modulepreload" crossorigin href="/assets/@babel-CF3RwP-h.js">
    <link rel="modulepreload" crossorigin href="/assets/history-BwBJjyxP.js">
    <link rel="modulepreload" crossorigin href="/assets/lodash-es-BG0FXDj7.js">
    <link rel="modulepreload" crossorigin href="/assets/axios-C37WzBb4.js">
    <link rel="modulepreload" crossorigin href="/assets/color-name-Dju3oUBS.js">
    <link rel="modulepreload" crossorigin href="/assets/simple-swizzle-eild5XDT.js">
    <link rel="modulepreload" crossorigin href="/assets/color-string-BRNFdfrj.js">
    <link rel="modulepreload" crossorigin href="/assets/color-convert-CZ6UMrXX.js">
    <link rel="modulepreload" crossorigin href="/assets/color-BXbYqk9e.js">
    <link rel="modulepreload" crossorigin href="/assets/react-router-B_p9Aa1Z.js">
    <link rel="modulepreload" crossorigin href="/assets/@floating-ui-CQEOEa0X.js">
    <link rel="modulepreload" crossorigin href="/assets/react-tooltip-B-okZ894.js">
    <link rel="modulepreload" crossorigin href="/assets/tslib-nmQMCw9a.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-common-BTyWxkMV.js">
    <link rel="modulepreload" crossorigin href="/assets/configcat-react-wlOIYMI5.js">
    <link rel="modulepreload" crossorigin href="/assets/numeral-CEakbS1j.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-DKsnZuve.js">
    <link rel="modulepreload" crossorigin href="/assets/overlayscrollbars-react-CqIjvPGQ.js">
    <link rel="modulepreload" crossorigin href="/assets/luxon-DOXiyJsP.js">
    <link rel="modulepreload" crossorigin href="/assets/ui-CUWCUsZv.js">
    <link rel="modulepreload" crossorigin href="/assets/@stencil-B78S30NX.js">
    <link rel="modulepreload" crossorigin href="/assets/@esri-RyXRihya.js">
    <link rel="modulepreload" crossorigin href="/assets/@zip.js-CDhdb6do.js">
    <link rel="modulepreload" crossorigin href="/assets/@arcgis-2dSO0Mb_.js">
    <link rel="modulepreload" crossorigin href="/assets/react-table-BxJ7_He6.js">
    <link rel="modulepreload" crossorigin href="/assets/react-paginate-D7ks1J_x.js">
    <link rel="modulepreload" crossorigin href="/assets/core-js-BspeYR05.js">
    <link rel="modulepreload" crossorigin href="/assets/regenerator-runtime-CUZ7HfZv.js">
    <link rel="modulepreload" crossorigin href="/assets/mixpanel-browser-cbsWqqZH.js">
    <link rel="modulepreload" crossorigin href="/assets/react-mixpanel-browser-B1sOj16R.js">
    <link rel="modulepreload" crossorigin href="/assets/chartjs-adapter-luxon-C69XinWG.js">
    <link rel="modulepreload" crossorigin href="/assets/happy-dom-Dpuf4pHv.js">
    <link rel="modulepreload" crossorigin href="/assets/index-B

Found 2026-01-10 by HttpPlugin

Create report

ri.praedicorail.dev

Fingerprint:

e265a4152d6e3d422b612ad41edc896b0572d1d453fb191034e7a8148ca17985

CN:

ri.praedicorail.dev

Key:

RSA-2048

Issuer:

GeoTrust TLS RSA CA G1

Not before:

2025-12-21 00:00

Not after:

2026-06-21 23:59

Domain summary

ri.praedicorail.dev 3

1 recorded

IP summary

13.107.253.45 2

1 recorded

Domain ri.praedicorail.dev

United States

Swagger API description is publicly available

Create report

Create report

Create report

ri.praedicorail.dev

Domain summary

IP summary