LeakIX - Host 13.69.228.46

Host 13.69.228.46

Ireland

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.228.46
Domain: screenly.help
Port: 443
URL: https://screenly.help

First seen 2025-11-28 12:44
Last seen 2026-02-09 19:33
Open for 73 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549eb5cdc9b32b03e56edc904e28428378da5dc17d4

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /WeatherForecast
GET /api/ElevenLabs/token-usage
GET /api/Onboarding/status
GET /api/Settings/default-prompt/{assistantType}
GET /api/UserSettings
GET /api/Users/me
GET /api/Users/{id}
GET /auth/callback
GET /auth/deeplink
GET /auth/login
GET /favicon.ico
GET /oauth/authorize
GET /oauth/google
GET /oauth/google/callback
POST /api/ElevenLabs/realtime-token
POST /api/Gemini/ephemeral-token
POST /api/Onboarding/complete
POST /api/Recall/upload-token
POST /api/Users/login
POST /api/Users/refresh
POST /api/Users/register
POST /api/Users/revoke
POST /api/Users/revoke-all
POST /auth/prepare-deeplink
POST /oauth/token

Found on 2026-02-09 19:33

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549eb5cdc9b32b03e56edc904e2f41f021863aeda34

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /WeatherForecast
GET /api/ElevenLabs/token-usage
GET /api/Onboarding/status
GET /api/UserSettings
GET /api/Users/me
GET /api/Users/{id}
GET /auth/callback
GET /auth/deeplink
GET /auth/login
GET /favicon.ico
GET /oauth/authorize
GET /oauth/google
GET /oauth/google/callback
POST /api/ElevenLabs/realtime-token
POST /api/Onboarding/complete
POST /api/Recall/upload-token
POST /api/Users/login
POST /api/Users/refresh
POST /api/Users/register
POST /api/Users/revoke
POST /api/Users/revoke-all
POST /auth/prepare-deeplink
POST /oauth/token

Found on 2025-12-25 04:38

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035493b3b7350579f762ac1ac73edb89348d90596e753

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /
GET /WeatherForecast
GET /api/ElevenLabs/token-usage
GET /api/Onboarding/status
GET /api/UserSettings
GET /api/Users/me
GET /api/Users/{id}
GET /auth/callback
GET /auth/deeplink
GET /auth/login
GET /oauth/authorize
GET /oauth/google
GET /oauth/google/callback
POST /api/ElevenLabs/realtime-token
POST /api/Onboarding/complete
POST /api/Recall/upload-token
POST /api/Users/login
POST /api/Users/refresh
POST /api/Users/register
POST /api/Users/revoke
POST /api/Users/revoke-all
POST /auth/prepare-deeplink
POST /oauth/token

Found on 2025-12-06 05:58

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035493b3b7350579f762a6b18480ed0d676bc350e9e68

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /
GET /WeatherForecast
GET /api/Onboarding/status
GET /api/UserSettings
GET /api/Users/me
GET /api/Users/{id}
GET /auth/callback
GET /auth/deeplink
GET /auth/login
GET /oauth/authorize
GET /oauth/google
GET /oauth/google/callback
POST /api/ElevenLabs/realtime-token
POST /api/Onboarding/complete
POST /api/Recall/upload-token
POST /api/Users/login
POST /api/Users/refresh
POST /api/Users/register
POST /api/Users/revoke
POST /api/Users/revoke-all
POST /auth/prepare-deeplink
POST /oauth/token

Found on 2025-11-30 17:15

Create report

Open service 13.69.228.46:443 · screenly.help

2026-01-23 05:42

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 05:42:37 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=c66a0eb6216d02880c1df69e95c2d7554524ea1515019952a1c54c6f22092d02;Path=/;HttpOnly;Secure;Domain=screenly.help
Set-Cookie: ARRAffinitySameSite=c66a0eb6216d02880c1df69e95c2d7554524ea1515019952a1c54c6f22092d02;Path=/;HttpOnly;SameSite=None;Secure;Domain=screenly.help
Transfer-Encoding: chunked
X-Powered-By: ASP.NET

Found 2026-01-23 by HttpPlugin

Create report

screenly.help

Fingerprint:

f86385660843e68ecb2a1d41161a6f373f6378ca6def1f4fe5f1a5da48c82350

CN:

screenly.help

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-11-28 00:00

Not after:

2026-04-14 23:59

Domain summary

screenly.help 4

1 recorded