Domain users-api-dev.projects.icanbreakit.eu
United States
Software information
Vercel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 66.33.60.193
Domain: users-api-dev.projects.icanbreakit.eu
Port: 443
URL: https://users-api-dev.projects.icanbreakit.euFirst seen 2025-12-01 11:42
Last seen 2026-01-10 01:31
Open for 39 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43bb302dd6311672df832288789251bb386c760cbaPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /hello GET /users GET /users/{id} POST /login POST /registerFound on 2026-01-10 01:31
-
-
Open service 66.33.60.193:443 · users-api-dev.projects.icanbreakit.eu
2026-01-10 01:31
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Authorization Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Sat, 10 Jan 2026 01:31:29 GMT Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Origin X-Content-Type-Options: nosniff X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: fra1::iad1::q7ssr-1768008689164-c1a543f162a8 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 66.33.60.193:443 · users-api-dev.projects.icanbreakit.eu
2025-12-23 03:33
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Authorization Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Tue, 23 Dec 2025 03:33:22 GMT Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Origin X-Content-Type-Options: nosniff X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: sin1::iad1::crjhc-1766460800979-9d6178e64991 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2025-12-23 by HttpPluginCreate report
-
Open service 66.33.60.193:443 · users-api-dev.projects.icanbreakit.eu
2025-12-20 16:52
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Authorization Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Sat, 20 Dec 2025 16:52:39 GMT Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Origin X-Content-Type-Options: nosniff X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::ftkzz-1766249558068-31de0f5180de Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2025-12-20 by HttpPluginCreate report