Domain test-user-2.databand.ai
Germany
Akamai International B.V.
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-28 06:34
Last seen 2026-02-02 12:48
Open for 66 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-02-02 12:48
-
-
Open service 23.213.161.201:443 · test-user-2.databand.ai
2026-01-23 11:17
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-0000000000000000e254b207bbb5e26a-e254b207bbb5e26a-01 tracestate: in=e254b207bbb5e26a;e254b207bbb5e26a X-INSTANA-T: e254b207bbb5e26a X-INSTANA-S: e254b207bbb5e26a Server-Timing: intid;desc=e254b207bbb5e26a Expires: Fri, 23 Jan 2026 11:17:16 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 23 Jan 2026 11:17:16 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=ImIwZjM1MWY2YjA3MzE0Y2E0MTQ0NzA3YWQ5NzBjNjhhMmIwNjdkM2Ii.aXNYvA.k4fetLpE23PnjSmqlZ2_Sms9pOE; Expires=Fri, 23 Jan 2026 12:17:16 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=c5d3fd34-c781-477e-af60-89f2350a4fb1; Expires=Fri, 23 Jan 2026 12:17:16 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-23 by HttpPluginCreate report
-
Open service 23.213.161.201:443 · test-user-2.databand.ai
2026-01-10 00:25
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-000000000000000077265786d81ce9bf-77265786d81ce9bf-01 tracestate: in=77265786d81ce9bf;77265786d81ce9bf X-INSTANA-T: 77265786d81ce9bf X-INSTANA-S: 77265786d81ce9bf Server-Timing: intid;desc=77265786d81ce9bf Expires: Sat, 10 Jan 2026 00:25:14 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 10 Jan 2026 00:25:14 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=IjExYjA4NWZlY2Y2ZjkzNzUxMTExNDUyMDVkYmNkODMxOThkOWRkOGMi.aWGcag.4Cd15abhtgrw10mqXKNpGTC2gMc; Expires=Sat, 10 Jan 2026 01:25:14 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=93ee195d-f122-4a7c-a319-331fc0e0a7be; Expires=Sat, 10 Jan 2026 01:25:14 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-10 by HttpPluginCreate report
-
Open service 23.213.161.201:443 · test-user-2.databand.ai
2026-01-02 20:22
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-00000000000000002d104f6b3f4170d0-2d104f6b3f4170d0-01 tracestate: in=2d104f6b3f4170d0;2d104f6b3f4170d0 X-INSTANA-T: 2d104f6b3f4170d0 X-INSTANA-S: 2d104f6b3f4170d0 Server-Timing: intid;desc=2d104f6b3f4170d0 Expires: Fri, 02 Jan 2026 20:22:50 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 02 Jan 2026 20:22:50 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=ImIyYzI2N2FhZDIwNTNjYzljN2QyYjY0NzhhY2E4ODE0M2Y5OTMxYTMi.aVgpGg.yLTWXlQdr9HH5sIs6-5zevLMC_c; Expires=Fri, 02 Jan 2026 21:22:50 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=e69709f4-59cc-40e8-a80b-5fb34dc04b34; Expires=Fri, 02 Jan 2026 21:22:50 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2026-01-02 by HttpPluginCreate report
-
Open service 23.213.161.201:443 · test-user-2.databand.ai
2025-12-23 03:01
HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=utf-8 Content-Length: 195 Location: /app X-Robots-Tag: noindex, nofollow Permissions-Policy: geolocation=() X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; frame-src https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self'; object-src 'none'; style-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; font-src https://1.www.s81c.com 'self' data:; worker-src 'self' blob:; img-src https://*.googletagmanager.com https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io https://www.gravatar.com 'self' data:; script-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; script-src-elem https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' 'unsafe-inline'; connect-src https://*.googletagmanager.com https://*.walkme.com https://*.amplitude.com https://*.instana.io https://*.newrelic.com https://*.nr-data.net https://1.www.s81c.com https://*.ibm.com https://*.ibmcloud.com https://*.truste.com https://*.trustarc.com https://*.segment.com https://*.segment.io 'self' Strict-Transport-Security: max-age=15724800; includeSubDomains Referrer-Policy: strict-origin-when-cross-origin X-INSTANA-L: 1 traceparent: 00-0000000000000000723837136302ec51-723837136302ec51-01 tracestate: in=723837136302ec51;723837136302ec51 X-INSTANA-T: 723837136302ec51 X-INSTANA-S: 723837136302ec51 Server-Timing: intid;desc=723837136302ec51 Expires: Tue, 23 Dec 2025 03:02:00 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 23 Dec 2025 03:02:00 GMT Alt-Svc: h3=":443"; ma=93600 Connection: close Set-Cookie: X-CSRF-TOKEN=IjI0Mzk1MTMxNGI2NzRlOTg0ODQwOGQ5Yzg0NmY1MzkzZTE4NjA0ZmYi.aUoGKA.jnVl6QIZdzU91-sZKXx7dDfFYxI; Expires=Tue, 23 Dec 2025 04:02:00 GMT; Max-Age=3600; Secure; Path=/; SameSite=Lax Set-Cookie: dbnd_session=a6185671-ec69-4463-acfc-2d14867e16fd; Expires=Tue, 23 Dec 2025 04:02:00 GMT; Secure; HttpOnly; Path=/; SameSite=Lax Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/app">/app</a>. If not, click the link.
Found 2025-12-23 by HttpPluginCreate report
*.databand.aidataband.ai
CN:
*.databand.ai
Not before:
2025-11-30 00:00
Not after:
2026-12-01 23:59