LeakIX - Host uf.sampleeye.com

Domain uf.sampleeye.com

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.119.0.26
Domain: api.dev.uf.sampleeye.com
Port: 443
URL: https://api.dev.uf.sampleeye.com

First seen 2026-01-06 07:23
Last seen 2026-02-09 14:36
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549192db818735b60360408418fdfeeafe24cf01d9d
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/EndPage/cr-s2s
GET /api/Tracking/pixel
GET /api/Tracking/redirectbackpixel
POST /api/CompleteSurvey/CaptureUrlTimes
POST /api/CompleteSurvey/VerifyIdentity
POST /api/EndPage
POST /api/Error/UserflowGlobalErrorHandler
POST /api/Qualification/GetQualificationQuestion
POST /api/Qualification/SaveQualification
POST /api/Qualification/ValidateSecurity
POST /api/Session
POST /gmos2s
```
  Found on 2026-02-09 14:36
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-29 23:13
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60db3aff33eed57fbba6d10dfcbffc4b109134d6ac
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/EndPage/cr-s2s
GET /api/Tracking/pixel
GET /api/Tracking/redirectbackpixel
POST /api/EndPage
POST /api/Error/UserflowGlobalErrorHandler
POST /api/Qualification/GetQualificationQuestion
POST /api/Qualification/SaveQualification
POST /api/Qualification/ValidateSecurity
POST /api/Session
POST /gmos2s
```
  Found on 2026-01-06 07:23
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.119.0.26
Domain: api.uf.sampleeye.com
Port: 443
URL: https://api.uf.sampleeye.com

First seen 2026-01-06 07:24
Last seen 2026-02-09 14:36
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549192db818735b60360408418fdfeeafe24cf01d9d
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/EndPage/cr-s2s
GET /api/Tracking/pixel
GET /api/Tracking/redirectbackpixel
POST /api/CompleteSurvey/CaptureUrlTimes
POST /api/CompleteSurvey/VerifyIdentity
POST /api/EndPage
POST /api/Error/UserflowGlobalErrorHandler
POST /api/Qualification/GetQualificationQuestion
POST /api/Qualification/SaveQualification
POST /api/Qualification/ValidateSecurity
POST /api/Session
POST /gmos2s
```
  Found on 2026-02-09 14:36
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549192db818735b60360408418f48c27745dfecd2c9
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/EndPage/cr-s2s
GET /api/Tracking/pixel
GET /api/Tracking/redirectbackpixel
POST /api/EndPage
POST /api/Error/UserflowGlobalErrorHandler
POST /api/Qualification/GetQualificationQuestion
POST /api/Qualification/SaveQualification
POST /api/Qualification/ValidateSecurity
POST /api/Session
POST /gmos2s
```
  Found on 2026-01-06 07:24
Create report

Open service 20.119.0.26:80 · uf.sampleeye.com

2026-01-12 01:22

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 12 Jan 2026 01:23:33 GMT
Location: https://uf.sampleeye.com/

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.119.0.26:443 · uf.sampleeye.com

2026-01-12 01:22

HTTP/1.1 200 OK
Content-Length: 3722
Connection: close
Content-Type: text/html
Date: Mon, 12 Jan 2026 01:23:33 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "1dc816dc6bd888a"
Last-Modified: Fri, 09 Jan 2026 13:42:20 GMT
Set-Cookie: TiPMix=43.376641934325185; path=/; HttpOnly; Domain=uf.sampleeye.com; Max-Age=3600; Secure; SameSite=None
Set-Cookie: x-ms-routing-name=self; path=/; HttpOnly; Domain=uf.sampleeye.com; Max-Age=3600; Secure; SameSite=None
Set-Cookie: ARRAffinity=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;Secure;Domain=uf.sampleeye.com
Set-Cookie: ARRAffinitySameSite=f5fc5fc3d5b08f9d845fabe21e1789ffaac1d29e1628cab01c21b75a21e2da00;Path=/;HttpOnly;SameSite=None;Secure;Domain=uf.sampleeye.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:e1da149f-774e-49ef-befb-90b7e6417883
X-Powered-By: ASP.NET

Page title: SampleEye

<!DOCTYPE html><html lang="en"><head><link rel="preconnect" href="https://fonts.gstatic.com" crossorigin="">
  <meta charset="utf-8">
  <title>SampleEye</title>
  <base href="/">

  <meta name="viewport" content="width=device-width, initial-scale=1">
  <style type="text/css">@font-face{font-family:'Material Icons';font-style:normal;font-weight:400;src:url(https://fonts.gstatic.com/s/materialicons/v145/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2) format('woff2');}.material-icons{font-family:'Material Icons';font-weight:normal;font-style:normal;font-size:24px;line-height:1;letter-spacing:normal;text-transform:none;display:inline-block;white-space:nowrap;word-wrap:normal;direction:ltr;-webkit-font-feature-settings:'liga';-webkit-font-smoothing:antialiased;}</style>
  <link rel="icon" type="image/x-icon" href="assets/images/favicon-32x32.png">
<style>@charset "UTF-8";:root{--bs-blue:#0d6efd;--bs-indigo:#6610f2;--bs-purple:#6f42c1;--bs-pink:#d63384;--bs-red:#dc3545;--bs-orange:#fd7e14;--bs-yellow:#ffc107;--bs-green:#198754;--bs-teal:#20c997;--bs-cyan:#0dcaf0;--bs-black:#000;--bs-white:#fff;--bs-gray:#6c757d;--bs-gray-dark:#343a40;--bs-gray-100:#f8f9fa;--bs-gray-200:#e9ecef;--bs-gray-300:#dee2e6;--bs-gray-400:#ced4da;--bs-gray-500:#adb5bd;--bs-gray-600:#6c757d;--bs-gray-700:#495057;--bs-gray-800:#343a40;--bs-gray-900:#212529;--bs-primary:#0d6efd;--bs-secondary:#6c757d;--bs-success:#198754;--bs-info:#0dcaf0;--bs-warning:#ffc107;--bs-danger:#dc3545;--bs-light:#f8f9fa;--bs-dark:#212529;--bs-primary-rgb:13,110,253;--bs-secondary-rgb:108,117,125;--bs-success-rgb:25,135,84;--bs-info-rgb:13,202,240;--bs-warning-rgb:255,193,7;--bs-danger-rgb:220,53,69;--bs-light-rgb:248,249,250;--bs-dark-rgb:33,37,41;--bs-white-rgb:255,255,255;--bs-black-rgb:0,0,0;--bs-body-color-rgb:33,37,41;--bs-body-bg-rgb:255,255,255;--bs-font-sans-serif:system-ui,-apple-system,"Segoe UI",Roboto,"Helvetica Neue","Noto Sans","Liberation Sans",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji";--bs-font-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;--bs-gradient:linear-gradient(180deg, rgba(255, 255, 255, .15), rgba(255, 255, 255, 0));--bs-body-font-family:var(--bs-font-sans-serif);--bs-body-font-size:1rem;--bs-body-font-weight:400;--bs-body-line-height:1.5;--bs-body-color:#212529;--bs-body-bg:#fff;--bs-border-width:1px;--bs-border-style:solid;--bs-border-color:#dee2e6;--bs-border-color-translucent:rgba(0, 0, 0, .175);--bs-border-radius:.375rem;--bs-border-radius-sm:.25rem;--bs-border-radius-lg:.5rem;--bs-border-radius-xl:1rem;--bs-border-radius-2xl:2rem;--bs-border-radius-pill:50rem;--bs-link-color:#0d6efd;--bs-link-hover-color:#0a58ca;--bs-code-color:#d63384;--bs-highlight-bg:#fff3cd}*,:after,:before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}body{font-family:Roboto,Arial,sans-serif;margin:0}</style><link rel="stylesheet" href="styles.535bed8d8ff1d86f.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles.535bed8d8ff1d86f.css"></noscript></head>
<body class="">
  <app-root>Loading...</app-root>
<script src="runtime.9f3152330f59bdbd.js" type="module"></script><script src="polyfills.67178f255780aa5e.js" type="module"></script><script src="main.bf81c7addb42b06d.js" type="module"></script>

</body></html>

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.119.0.26:80 · qa.uf.sampleeye.com

2026-01-12 01:21

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 12 Jan 2026 01:22:34 GMT
Location: https://qa.uf.sampleeye.com/

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.119.0.26:443 · qa.uf.sampleeye.com

2026-01-12 01:21

HTTP/1.1 200 OK
Content-Length: 3722
Connection: close
Content-Type: text/html
Date: Mon, 12 Jan 2026 01:22:40 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "1dc816dc6bd888a"
Last-Modified: Fri, 09 Jan 2026 13:42:20 GMT
Set-Cookie: ARRAffinity=f381bdc1059c67f572b6b2aa131098c0eef6c2a2a519fd17e44b324f26249eee;Path=/;HttpOnly;Secure;Domain=qa.uf.sampleeye.com
Set-Cookie: ARRAffinitySameSite=f381bdc1059c67f572b6b2aa131098c0eef6c2a2a519fd17e44b324f26249eee;Path=/;HttpOnly;SameSite=None;Secure;Domain=qa.uf.sampleeye.com
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:828b0949-54ed-4863-9613-8068b22d5b3c
X-Powered-By: ASP.NET

Page title: SampleEye

<!DOCTYPE html><html lang="en"><head><link rel="preconnect" href="https://fonts.gstatic.com" crossorigin="">
  <meta charset="utf-8">
  <title>SampleEye</title>
  <base href="/">

  <meta name="viewport" content="width=device-width, initial-scale=1">
  <style type="text/css">@font-face{font-family:'Material Icons';font-style:normal;font-weight:400;src:url(https://fonts.gstatic.com/s/materialicons/v145/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2) format('woff2');}.material-icons{font-family:'Material Icons';font-weight:normal;font-style:normal;font-size:24px;line-height:1;letter-spacing:normal;text-transform:none;display:inline-block;white-space:nowrap;word-wrap:normal;direction:ltr;-webkit-font-feature-settings:'liga';-webkit-font-smoothing:antialiased;}</style>
  <link rel="icon" type="image/x-icon" href="assets/images/favicon-32x32.png">
<style>@charset "UTF-8";:root{--bs-blue:#0d6efd;--bs-indigo:#6610f2;--bs-purple:#6f42c1;--bs-pink:#d63384;--bs-red:#dc3545;--bs-orange:#fd7e14;--bs-yellow:#ffc107;--bs-green:#198754;--bs-teal:#20c997;--bs-cyan:#0dcaf0;--bs-black:#000;--bs-white:#fff;--bs-gray:#6c757d;--bs-gray-dark:#343a40;--bs-gray-100:#f8f9fa;--bs-gray-200:#e9ecef;--bs-gray-300:#dee2e6;--bs-gray-400:#ced4da;--bs-gray-500:#adb5bd;--bs-gray-600:#6c757d;--bs-gray-700:#495057;--bs-gray-800:#343a40;--bs-gray-900:#212529;--bs-primary:#0d6efd;--bs-secondary:#6c757d;--bs-success:#198754;--bs-info:#0dcaf0;--bs-warning:#ffc107;--bs-danger:#dc3545;--bs-light:#f8f9fa;--bs-dark:#212529;--bs-primary-rgb:13,110,253;--bs-secondary-rgb:108,117,125;--bs-success-rgb:25,135,84;--bs-info-rgb:13,202,240;--bs-warning-rgb:255,193,7;--bs-danger-rgb:220,53,69;--bs-light-rgb:248,249,250;--bs-dark-rgb:33,37,41;--bs-white-rgb:255,255,255;--bs-black-rgb:0,0,0;--bs-body-color-rgb:33,37,41;--bs-body-bg-rgb:255,255,255;--bs-font-sans-serif:system-ui,-apple-system,"Segoe UI",Roboto,"Helvetica Neue","Noto Sans","Liberation Sans",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji";--bs-font-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;--bs-gradient:linear-gradient(180deg, rgba(255, 255, 255, .15), rgba(255, 255, 255, 0));--bs-body-font-family:var(--bs-font-sans-serif);--bs-body-font-size:1rem;--bs-body-font-weight:400;--bs-body-line-height:1.5;--bs-body-color:#212529;--bs-body-bg:#fff;--bs-border-width:1px;--bs-border-style:solid;--bs-border-color:#dee2e6;--bs-border-color-translucent:rgba(0, 0, 0, .175);--bs-border-radius:.375rem;--bs-border-radius-sm:.25rem;--bs-border-radius-lg:.5rem;--bs-border-radius-xl:1rem;--bs-border-radius-2xl:2rem;--bs-border-radius-pill:50rem;--bs-link-color:#0d6efd;--bs-link-hover-color:#0a58ca;--bs-code-color:#d63384;--bs-highlight-bg:#fff3cd}*,:after,:before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}body{font-family:Roboto,Arial,sans-serif;margin:0}</style><link rel="stylesheet" href="styles.535bed8d8ff1d86f.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles.535bed8d8ff1d86f.css"></noscript></head>
<body class="">
  <app-root>Loading...</app-root>
<script src="runtime.9f3152330f59bdbd.js" type="module"></script><script src="polyfills.67178f255780aa5e.js" type="module"></script><script src="main.bf81c7addb42b06d.js" type="module"></script>

</body></html>

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.119.0.26:443 · api.dev.uf.sampleeye.com

2026-01-06 07:23

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Tue, 06 Jan 2026 07:24:12 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=f381bdc1059c67f572b6b2aa131098c0eef6c2a2a519fd17e44b324f26249eee;Path=/;HttpOnly;Secure;Domain=api.dev.uf.sampleeye.com
Set-Cookie: ARRAffinitySameSite=f381bdc1059c67f572b6b2aa131098c0eef6c2a2a519fd17e44b324f26249eee;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.dev.uf.sampleeye.com
X-Powered-By: ASP.NET

Found 2026-01-06 by HttpPlugin

Create report

Open service 20.119.0.26:80 · api.dev.uf.sampleeye.com

2026-01-06 07:23

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Tue, 06 Jan 2026 07:24:07 GMT
Location: https://api.dev.uf.sampleeye.com/

Found 2026-01-06 by HttpPlugin

Create report

uf.sampleeye.com

Fingerprint:

f8083c2ef05f35c504a27e4315be0f2cbf967313af2544bdcf57ca0169909b4f

CN:

uf.sampleeye.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-04 00:00

Not after:

2026-04-14 23:59

qa.uf.sampleeye.com

Fingerprint:

cde22cd3d2198d31f297bb345a89b0e5c4d2d05cdbc65fb86a669031cbcf3cf8

CN:

qa.uf.sampleeye.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-04 00:00

Not after:

2026-04-14 23:59

api.dev.uf.sampleeye.com

Fingerprint:

ee23bdd68d39104074862a201e0bbe570e75285de850111eda33b36814553eb5

CN:

api.dev.uf.sampleeye.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-08-19 00:00

Not after:

2026-02-19 23:59

Domain summary

api.dev.uf.sampleeye.com 4 api.uf.sampleeye.com 2 uf.sampleeye.com 1 qa.uf.sampleeye.com 1

4 recorded

IP summary

20.119.0.26 7

1 recorded

Domain uf.sampleeye.com

United States

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Create report

uf.sampleeye.com

qa.uf.sampleeye.com

api.dev.uf.sampleeye.com

Domain summary

IP summary