LeakIX - Host sprott.com

Domain sprott.com

CLOUDFLARENET

Software information

cloudflare

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 172.66.0.125
Domain: sprott.com
Port: 443
URL: https://sprott.com

First seen 2025-10-16 13:27
Last seen 2026-02-02 09:44
Open for 108 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-02 09:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 162.159.140.127
Domain: api.sprott.com
Port: 443
URL: https://api.sprott.com

First seen 2025-10-23 23:45
Last seen 2026-01-15 21:33
Open for 83 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-15 21:33
Create report

Open service 172.66.0.125:443 · sprott.com

2026-01-23 10:11

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:11:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
CF-Ray: 9c268160ca9f9c00-FRA
CF-Cache-Status: DYNAMIC
Vary: Accept-Encoding
x-powered-by: ASP.NET
Set-Cookie: __cf_bm=rZdz8iGBwoyiC2jZtuSLfrGC0Y_vYChg0btrEynM.bY-1769163069-1.0.1.1-wEEJvVVFeLA8ykSNrQVosmU5S90zozErjKx2gdXdn2WJ2XrW6X.frOu6IdKWQGhbE7BSZli08ddjgkvb38BO0LiGP5EjgicR.9DkSN6ofHg; path=/; expires=Fri, 23-Jan-26 10:41:09 GMT; domain=.sprott.com; HttpOnly; Secure; SameSite=None
alt-svc: h3=":443"; ma=86400

Found 2026-01-23 by HttpPlugin

Create report

sprott.com

Fingerprint:

9be789bd7726d5d2cd04138d833941baec9d77ba82a108e7ec83a5de35687910

CN:

sprott.com

Key:

ECDSA-256

Issuer:

WE1

Not before:

2025-12-20 01:38

Not after:

2026-03-20 02:38

Domain summary

sprott.com 1 api.sprott.com 1

2 recorded

IP summary

172.66.0.125 2 162.159.140.127 1

2 recorded

Domain sprott.com

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Create report

sprott.com

Domain summary

IP summary