LeakIX - Host webapi.tracetool.io

Domain webapi.tracetool.io

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.232.26.228
Domain: webapi.tracetool.io
Port: 80
URL: http://webapi.tracetool.io

First seen 2025-12-08 05:56
Last seen 2026-02-09 05:45
Open for 62 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad0354988ae6c8488ae6c8488ae6c8488ae6c8488ae6c84
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /Api/External/v2/Handouts
```
  Found on 2026-02-09 05:45
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.232.26.228
Domain: webapi.tracetool.io
Port: 443
URL: https://webapi.tracetool.io

First seen 2025-12-08 05:56
Last seen 2026-01-23 04:38
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad0354988ae6c8488ae6c8488ae6c8488ae6c8488ae6c84
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /Api/External/v2/Handouts
```
  Found on 2026-01-23 04:38
Create report

Open service 52.232.26.228:443 · webapi.tracetool.io

2026-01-23 04:38

HTTP/1.1 200 OK
Connection: close
Content-Type: text/plain; charset=utf-8
Date: Fri, 23 Jan 2026 04:39:14 GMT
Server: Microsoft-IIS/10.0
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:84b1f384-af7e-4003-bf7d-9ff2222a04bf
X-Powered-By: ASP.NET


Tracetool WebApi [Last Updated: 22-01-2026 14:15:15]

Found 2026-01-23 by HttpPlugin

Create report

Open service 52.232.26.228:80 · webapi.tracetool.io

2026-01-23 01:55

HTTP/1.1 307 Temporary Redirect
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 01:56:06 GMT
Server: Microsoft-IIS/10.0
Location: https://webapi.tracetool.io/
Request-Context: appId=cid-v1:84b1f384-af7e-4003-bf7d-9ff2222a04bf
X-Powered-By: ASP.NET

Found 2026-01-23 by HttpPlugin

Create report

webapi.tracetool.io

Fingerprint:

91ef90929b736385304edf85b34a5be34abbb35fc44b6496c83c23023906240a

CN:

webapi.tracetool.io

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-08 00:00

Not after:

2026-04-14 23:59

Domain summary

webapi.tracetool.io 3

1 recorded

IP summary

52.232.26.228 2

1 recorded

Domain webapi.tracetool.io

The Netherlands

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Create report

Create report

webapi.tracetool.io

Domain summary

IP summary