Domain tf-backend.testing.zupit.software
The Netherlands
Software information
Kestrel
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 20.105.224.17
Domain: tf-backend.testing.zupit.software
Port: 443
URL: https://tf-backend.testing.zupit.softwareFirst seen 2026-01-11 09:28
Last seen 2026-01-16 14:49
Open for 5 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035496227cd810ba8b6e30ba8b6e30ba8b6e30ba8b6e3Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /user GET /weatherforecast
Found on 2026-01-16 14:49
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 20.105.224.17
Domain: tf-backend.testing.zupit.software
Port: 80
URL: http://tf-backend.testing.zupit.softwareFirst seen 2026-01-11 09:28
Last seen 2026-02-09 18:14
Open for 29 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035496227cd810ba8b6e30ba8b6e30ba8b6e30ba8b6e3Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /user GET /weatherforecast
Found on 2026-02-09 18:14
-
-
Open service 20.105.224.17:80 · tf-backend.testing.zupit.software
2026-01-23 13:13
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 13:14:16 GMT Server: Kestrel Request-Context: appId=cid-v1:bd570185-f94d-40d5-831e-18baab69c6f9
Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.105.224.17:80 · tf-backend.testing.zupit.software
2026-01-11 09:28
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sun, 11 Jan 2026 09:29:44 GMT Server: Kestrel Request-Context: appId=cid-v1:bd570185-f94d-40d5-831e-18baab69c6f9
Found 2026-01-11 by HttpPluginCreate report
-
Open service 20.105.224.17:443 · tf-backend.testing.zupit.software
2026-01-11 09:28
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sun, 11 Jan 2026 09:29:45 GMT Server: Kestrel Request-Context: appId=cid-v1:bd570185-f94d-40d5-831e-18baab69c6f9
Found 2026-01-11 by HttpPluginCreate report