LeakIX - Host txaranga.eus

Domain txaranga.eus

Spain

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 68.221.89.1
Domain: txaranga.eus
Port: 443
URL: https://txaranga.eus

First seen 2026-01-01 23:16
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549551713baaea13c95ba02bbcadcc702d29b9066db
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/txaranga/{id}
GET /api/events
GET /api/events/{id}
GET /api/txaranga
GET /api/txaranga-session-locations
GET /api/txaranga-session-locations/{id}
GET /api/txaranga-sessions
GET /api/txaranga-sessions/{id}
GET /api/txaranga-sessions/{sessionId}/locations
GET /api/txaranga/tolosako-inauteriak-2026-test
PUT /api/txaranga/{id}/disabled
PUT /api/txaranga/{id}/location
```
  Found on 2026-01-01 23:16
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 68.221.89.1
Domain: www.txaranga.eus
Port: 443
URL: https://www.txaranga.eus

First seen 2026-01-01 21:46
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549551713baaea13c95ba02bbcadcc702d29b9066db
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/txaranga/{id}
GET /api/events
GET /api/events/{id}
GET /api/txaranga
GET /api/txaranga-session-locations
GET /api/txaranga-session-locations/{id}
GET /api/txaranga-sessions
GET /api/txaranga-sessions/{id}
GET /api/txaranga-sessions/{sessionId}/locations
GET /api/txaranga/tolosako-inauteriak-2026-test
PUT /api/txaranga/{id}/disabled
PUT /api/txaranga/{id}/location
```
  Found on 2026-01-01 21:46
Create report

Open service 68.221.89.1:443 · txaranga.eus

2026-01-22 22:18

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Thu, 22 Jan 2026 22:18:43 GMT
Server: Microsoft-IIS/10.0
Cache-Control: no-cache, no-store, max-age=0
Pragma: no-cache
Set-Cookie: .AspNetCore.Antiforgery.cdV5uW_Ejgc=CfDJ8Iub1C292odIh437lynfUz8ejeDyLFsONc_7PgDRrDjTv-vV1vN-ZEPqLMqOwwgTq_fBA8Exc4xDQ5-BVpIYaykLFat5bENmKdZ7Mr_5QvAzubJ1OjddQUmiVQX_Xfogy-2oiEoQeZja5KvlfWxsMtE; path=/; samesite=strict; httponly
Set-Cookie: ARRAffinity=a45c1ad793352a14ea43624bc973a3a13966ec3770e5b1aaafd1bfcc6cc579c4;Path=/;HttpOnly;Secure;Domain=txaranga.eus
Set-Cookie: ARRAffinitySameSite=a45c1ad793352a14ea43624bc973a3a13966ec3770e5b1aaafd1bfcc6cc579c4;Path=/;HttpOnly;SameSite=None;Secure;Domain=txaranga.eus
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:9180aa4c-44b5-4782-b104-e5e0442eb2cf
Content-Security-Policy: frame-ancestors 'self'
blazor-enhanced-nav: allow
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET

Page title: Txaranga.eus

<!DOCTYPE html>
<html lang="en"><head><meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <base href="/">
    
    <link rel="stylesheet" href="lib/bootstrap/dist/css/bootstrap.min.46ein0sx1k.css" />
    <link rel="stylesheet" href="app.3iubpil1d6.css" />
    <link rel="stylesheet" href="WebMap.6vu1h8tzb2.styles.css" />
    
    <link rel="stylesheet" href="https://unpkg.com/leaflet@1.9.4/dist/leaflet.css" integrity="sha256-p4NxAoJBhIIN+hmNHrzRCf9tD/miZyoHS5obTRR9BMY=" crossorigin>
    <script type="importmap">{
  "imports": {
    "./Components/Account/Shared/PasskeySubmit.razor.js": "./Components/Account/Shared/PasskeySubmit.pr21mg9rrw.razor.js",
    "./Components/Layout/ReconnectModal.razor.js": "./Components/Layout/ReconnectModal.13ja33weya.razor.js",
    "./_framework/blazor.server.js": "./_framework/blazor.server.2lgipwaf5j.js",
    "./_framework/blazor.web.js": "./_framework/blazor.web.wmp8iwak4q.js",
    "./_framework/dotnet.js": "./_framework/dotnet.atdhfi6j2z.js",
    "./_framework/dotnet.native.js": "./_framework/dotnet.native.cs8mcre4gh.js",
    "./_framework/dotnet.runtime.js": "./_framework/dotnet.runtime.0j6ezsi0n0.js",
    "./js/map.js": "./js/map.f0eelq523t.js",
    "./js/share.js": "./js/share.6x1hwf3g3i.js",
    "./lib/bootstrap/dist/js/bootstrap.bundle.js": "./lib/bootstrap/dist/js/bootstrap.bundle.6cfz1n2cew.js",
    "./lib/bootstrap/dist/js/bootstrap.bundle.min.js": "./lib/bootstrap/dist/js/bootstrap.bundle.min.493y06b0oq.js",
    "./lib/bootstrap/dist/js/bootstrap.esm.min.js": "./lib/bootstrap/dist/js/bootstrap.esm.min.jj8uyg4cgr.js",
    "./lib/bootstrap/dist/js/bootstrap.esm.js": "./lib/bootstrap/dist/js/bootstrap.esm.vr1egmr9el.js",
    "./lib/bootstrap/dist/js/bootstrap.min.js": "./lib/bootstrap/dist/js/bootstrap.min.63fj8s7r0e.js",
    "./lib/bootstrap/dist/js/bootstrap.js": "./lib/bootstrap/dist/js/bootstrap.notf2xhcfb.js",
    "_framework/resource-collection.js": "./_framework/resource-collection.utLK_.js",
    "_framework/resource-collection.js.gz": "./_framework/resource-collection.utLK_.js.gz"
  },
  "integrity": {
    "./Components/Account/Shared/PasskeySubmit.pr21mg9rrw.razor.js": "sha256-u9WdAoY/zzSDhjE2A+cB4V2Z3D1jsH1S4knaaSQRR3M=",
    "./Components/Account/Shared/PasskeySubmit.razor.js": "sha256-u9WdAoY/zzSDhjE2A+cB4V2Z3D1jsH1S4knaaSQRR3M=",
    "./Components/Layout/ReconnectModal.13ja33weya.razor.js": "sha256-4zGYCWZ4pfXdYacNs7XaH1BXGvludoT6JCkX9NZucgI=",
    "./Components/Layout/ReconnectModal.razor.js": "sha256-4zGYCWZ4pfXdYacNs7XaH1BXGvludoT6JCkX9NZucgI=",
    "./_framework/blazor.server.2lgipwaf5j.js": "sha256-ikIAiRRJtG7omV1zRJtggkSaSfVX48J+eXsScv8i0PA=",
    "./_framework/blazor.server.js": "sha256-ikIAiRRJtG7omV1zRJtggkSaSfVX48J+eXsScv8i0PA=",
    "./_framework/blazor.web.js": "sha256-yKUXnp3K8asFK0Jc5RFQWhaDi3VFeTk84OBOaXw4mBI=",
    "./_framework/blazor.web.wmp8iwak4q.js": "sha256-yKUXnp3K8asFK0Jc5RFQWhaDi3VFeTk84OBOaXw4mBI=",
    "./_framework/blazor.webassembly.js": "sha256-3lCWrko3zwspV40aQhs2S/IMkRSarnHRKIdkHhuXIBA=",
    "./_framework/dotnet.atdhfi6j2z.js": "sha256-LncT1qtGWbs60usGdBi/9CRVILNDwmJNPEdA0vTL6a0=",
    "./_framework/dotnet.js": "sha256-LncT1qtGWbs60usGdBi/9CRVILNDwmJNPEdA0vTL6a0=",
    "./_framework/dotnet.native.cs8mcre4gh.js": "sha256-/I3SDHIle7heAxlUGBrgxax+lkKyWyRLBVEJmTHJSCs=",
    "./_framework/dotnet.native.js": "sha256-/I3SDHIle7heAxlUGBrgxax+lkKyWyRLBVEJmTHJSCs=",
    "./_framework/dotnet.runtime.0j6ezsi0n0.js": "sha256-jCsbbdXoVd1zzGc0fQT2sz4mKuv0ANdurPVGo5Sc2jg=",
    "./_framework/dotnet.runtime.js": "sha256-jCsbbdXoVd1zzGc0fQT2sz4mKuv0ANdurPVGo5Sc2jg=",
    "./js/map.f0eelq523t.js": "sha256-kRSoEbBFR8izJelJrK7gKllvHvFnBeC5Jn+y4ITdhHQ=",
    "./js/map.js": "sha256-kRSoEbBFR8izJelJrK7gKllvHvFnBeC5Jn+y4ITdhHQ=",
    "./js/share.6x1hwf3g3i.js": "sha256-+g/c3P9nmSI6Mp3YLQ6RxTHsBcQHNKi1Fq8yWcA/k6I=",
    "./js/share.js": "sha256-+g/c3P9nmSI6Mp3YLQ6RxTHsBcQHNKi1Fq8yWcA/k6I=",
    "./lib/bootstrap/dist/js/bootstrap.bundle.6cfz1n2cew.js": "sha256-mkoRoV2

Found 2026-01-22 by HttpPlugin

Create report

Open service 68.221.89.1:443 · www.txaranga.eus

2026-01-22 19:47

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Thu, 22 Jan 2026 19:47:45 GMT
Server: Microsoft-IIS/10.0
Cache-Control: no-cache, no-store, max-age=0
Pragma: no-cache
Set-Cookie: .AspNetCore.Antiforgery.cdV5uW_Ejgc=CfDJ8Iub1C292odIh437lynfUz8h7EwVjUeGkIIIFZg1TZwOG13lDX7GlX0b1R2-whnN_2EZIDfWHhl_wdtpxoi93n6Hdt3oQftN8k2xhlXzsUfLxsS3O_LCKabxM-YFtNKc-C1DKMo6_f3PXP9zEtws3is; path=/; samesite=strict; httponly
Set-Cookie: ARRAffinity=a45c1ad793352a14ea43624bc973a3a13966ec3770e5b1aaafd1bfcc6cc579c4;Path=/;HttpOnly;Secure;Domain=www.txaranga.eus
Set-Cookie: ARRAffinitySameSite=a45c1ad793352a14ea43624bc973a3a13966ec3770e5b1aaafd1bfcc6cc579c4;Path=/;HttpOnly;SameSite=None;Secure;Domain=www.txaranga.eus
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:9180aa4c-44b5-4782-b104-e5e0442eb2cf
Content-Security-Policy: frame-ancestors 'self'
blazor-enhanced-nav: allow
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET

Page title: Txaranga.eus

<!DOCTYPE html>
<html lang="en"><head><meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <base href="/">
    
    <link rel="stylesheet" href="lib/bootstrap/dist/css/bootstrap.min.46ein0sx1k.css" />
    <link rel="stylesheet" href="app.3iubpil1d6.css" />
    <link rel="stylesheet" href="WebMap.6vu1h8tzb2.styles.css" />
    
    <link rel="stylesheet" href="https://unpkg.com/leaflet@1.9.4/dist/leaflet.css" integrity="sha256-p4NxAoJBhIIN+hmNHrzRCf9tD/miZyoHS5obTRR9BMY=" crossorigin>
    <script type="importmap">{
  "imports": {
    "./Components/Account/Shared/PasskeySubmit.razor.js": "./Components/Account/Shared/PasskeySubmit.pr21mg9rrw.razor.js",
    "./Components/Layout/ReconnectModal.razor.js": "./Components/Layout/ReconnectModal.13ja33weya.razor.js",
    "./_framework/blazor.server.js": "./_framework/blazor.server.2lgipwaf5j.js",
    "./_framework/blazor.web.js": "./_framework/blazor.web.wmp8iwak4q.js",
    "./_framework/dotnet.js": "./_framework/dotnet.atdhfi6j2z.js",
    "./_framework/dotnet.native.js": "./_framework/dotnet.native.cs8mcre4gh.js",
    "./_framework/dotnet.runtime.js": "./_framework/dotnet.runtime.0j6ezsi0n0.js",
    "./js/map.js": "./js/map.f0eelq523t.js",
    "./js/share.js": "./js/share.6x1hwf3g3i.js",
    "./lib/bootstrap/dist/js/bootstrap.bundle.js": "./lib/bootstrap/dist/js/bootstrap.bundle.6cfz1n2cew.js",
    "./lib/bootstrap/dist/js/bootstrap.bundle.min.js": "./lib/bootstrap/dist/js/bootstrap.bundle.min.493y06b0oq.js",
    "./lib/bootstrap/dist/js/bootstrap.esm.min.js": "./lib/bootstrap/dist/js/bootstrap.esm.min.jj8uyg4cgr.js",
    "./lib/bootstrap/dist/js/bootstrap.esm.js": "./lib/bootstrap/dist/js/bootstrap.esm.vr1egmr9el.js",
    "./lib/bootstrap/dist/js/bootstrap.min.js": "./lib/bootstrap/dist/js/bootstrap.min.63fj8s7r0e.js",
    "./lib/bootstrap/dist/js/bootstrap.js": "./lib/bootstrap/dist/js/bootstrap.notf2xhcfb.js",
    "_framework/resource-collection.js": "./_framework/resource-collection.utLK_.js",
    "_framework/resource-collection.js.gz": "./_framework/resource-collection.utLK_.js.gz"
  },
  "integrity": {
    "./Components/Account/Shared/PasskeySubmit.pr21mg9rrw.razor.js": "sha256-u9WdAoY/zzSDhjE2A+cB4V2Z3D1jsH1S4knaaSQRR3M=",
    "./Components/Account/Shared/PasskeySubmit.razor.js": "sha256-u9WdAoY/zzSDhjE2A+cB4V2Z3D1jsH1S4knaaSQRR3M=",
    "./Components/Layout/ReconnectModal.13ja33weya.razor.js": "sha256-4zGYCWZ4pfXdYacNs7XaH1BXGvludoT6JCkX9NZucgI=",
    "./Components/Layout/ReconnectModal.razor.js": "sha256-4zGYCWZ4pfXdYacNs7XaH1BXGvludoT6JCkX9NZucgI=",
    "./_framework/blazor.server.2lgipwaf5j.js": "sha256-ikIAiRRJtG7omV1zRJtggkSaSfVX48J+eXsScv8i0PA=",
    "./_framework/blazor.server.js": "sha256-ikIAiRRJtG7omV1zRJtggkSaSfVX48J+eXsScv8i0PA=",
    "./_framework/blazor.web.js": "sha256-yKUXnp3K8asFK0Jc5RFQWhaDi3VFeTk84OBOaXw4mBI=",
    "./_framework/blazor.web.wmp8iwak4q.js": "sha256-yKUXnp3K8asFK0Jc5RFQWhaDi3VFeTk84OBOaXw4mBI=",
    "./_framework/blazor.webassembly.js": "sha256-3lCWrko3zwspV40aQhs2S/IMkRSarnHRKIdkHhuXIBA=",
    "./_framework/dotnet.atdhfi6j2z.js": "sha256-LncT1qtGWbs60usGdBi/9CRVILNDwmJNPEdA0vTL6a0=",
    "./_framework/dotnet.js": "sha256-LncT1qtGWbs60usGdBi/9CRVILNDwmJNPEdA0vTL6a0=",
    "./_framework/dotnet.native.cs8mcre4gh.js": "sha256-/I3SDHIle7heAxlUGBrgxax+lkKyWyRLBVEJmTHJSCs=",
    "./_framework/dotnet.native.js": "sha256-/I3SDHIle7heAxlUGBrgxax+lkKyWyRLBVEJmTHJSCs=",
    "./_framework/dotnet.runtime.0j6ezsi0n0.js": "sha256-jCsbbdXoVd1zzGc0fQT2sz4mKuv0ANdurPVGo5Sc2jg=",
    "./_framework/dotnet.runtime.js": "sha256-jCsbbdXoVd1zzGc0fQT2sz4mKuv0ANdurPVGo5Sc2jg=",
    "./js/map.f0eelq523t.js": "sha256-kRSoEbBFR8izJelJrK7gKllvHvFnBeC5Jn+y4ITdhHQ=",
    "./js/map.js": "sha256-kRSoEbBFR8izJelJrK7gKllvHvFnBeC5Jn+y4ITdhHQ=",
    "./js/share.6x1hwf3g3i.js": "sha256-+g/c3P9nmSI6Mp3YLQ6RxTHsBcQHNKi1Fq8yWcA/k6I=",
    "./js/share.js": "sha256-+g/c3P9nmSI6Mp3YLQ6RxTHsBcQHNKi1Fq8yWcA/k6I=",
    "./lib/bootstrap/dist/js/bootstrap.bundle.6cfz1n2cew.js": "sha256-mkoRoV2

Found 2026-01-22 by HttpPlugin

Create report

txaranga.eus

Fingerprint:

eb7eec903b5f382b900266c720554cd89623c65ca3ed8e9f1a5cde8452bae507

CN:

txaranga.eus

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-01 00:00

Not after:

2026-04-14 23:59

www.txaranga.eus

Fingerprint:

50e58286c145cf01ac110929431e8ed6f250cd4353dce3dedbf335f5055cdb28

CN:

www.txaranga.eus

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-01 00:00

Not after:

2026-04-14 23:59

Domain summary

txaranga.eus 1 www.txaranga.eus 1

2 recorded

IP summary

68.221.89.1 4

1 recorded

Domain txaranga.eus

Spain

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Create report

Create report

txaranga.eus

www.txaranga.eus

Domain summary

IP summary