LeakIX - Host 13.74.252.44

Host 13.74.252.44

Ireland

MICROSOFT-CORP-MSN-AS-BLOCK

Unix

Software information

Apache Apache 2.4.34

tcp/443 tcp/80

Apache Apache

tcp/443

Kestrel Kestrel

tcp/443 tcp/80

LibreSSL 2.6.5

tcp/443 tcp/80

PHP PHP 7.1.17

tcp/443 tcp/80

nginx nginx

tcp/443

nginx nginx 1.24.0

tcp/443 tcp/80

nginx nginx 1.27.5

tcp/443

nginx nginx 1.28.0

tcp/443

nginx nginx 1.21.5

tcp/443

nginx nginx 1.27.3

tcp/443

nginx nginx 1.27.0

tcp/443

nginx nginx 1.15.8

tcp/443

uvicorn

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: api.shareinpay-test.com
Port: 443
URL: https://api.shareinpay-test.com

First seen 2025-12-26 16:43
Last seen 2026-02-12 08:34
Open for 47 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c69b6486292bf542fc205818085360486ebae68b

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /v1/Account/Clients
GET /v1/{ClientId}/Accounts
GET /v1/{ClientId}/BankAccounts
GET /v1/{ClientId}/BankAccounts/{UserBankAccountId}
GET /v1/{ClientId}/BankAccounts/{UserBankAccountId}/Transactions
GET /v1/{ClientId}/Calendar
GET /v1/{ClientId}/Cards/Checkouts/{CardCheckoutId}
GET /v1/{ClientId}/Cards/Fees
GET /v1/{ClientId}/Cards/Payments/Schedules
GET /v1/{ClientId}/Cards/Payments/Schedules/{ScheduleId}
GET /v1/{ClientId}/Cards/Registrations
GET /v1/{ClientId}/Cards/Registrations/{CardRegistrationId}
GET /v1/{ClientId}/Client
GET /v1/{ClientId}/Client/BankAccounts
GET /v1/{ClientId}/Client/BankAccounts/{ClientBankAccountId}
GET /v1/{ClientId}/Client/BankAccounts/{ClientBankAccountId}/PayIns
GET /v1/{ClientId}/Countries
GET /v1/{ClientId}/Events
GET /v1/{ClientId}/Events/Types
GET /v1/{ClientId}/Hooks
GET /v1/{ClientId}/Hooks/{HookId}
GET /v1/{ClientId}/Kyc/Documents
GET /v1/{ClientId}/Kyc/Documents/{KycDocumentId}
GET /v1/{ClientId}/OpenBanking/Account/Authorize
GET /v1/{ClientId}/OpenBanking/Account/Connect
GET /v1/{ClientId}/OpenBanking/Payment/{PaymentId}
GET /v1/{ClientId}/OpenBanking/Providers
GET /v1/{ClientId}/PayIns/{PayInId}
GET /v1/{ClientId}/PayOuts/{PayOutId}
GET /v1/{ClientId}/Refunds/{RefundId}
GET /v1/{ClientId}/Reports
GET /v1/{ClientId}/Reports/{ReportId}
GET /v1/{ClientId}/Search
GET /v1/{ClientId}/Transactions
GET /v1/{ClientId}/Transactions/{TransactionId}
GET /v1/{ClientId}/Transfers/{TransferId}
GET /v1/{ClientId}/Users
GET /v1/{ClientId}/Users/{UserId}
GET /v1/{ClientId}/Users/{UserId}/BankAccounts
GET /v1/{ClientId}/Users/{UserId}/BankVerifications
GET /v1/{ClientId}/Users/{UserId}/Transactions
GET /v1/{ClientId}/Users/{UserId}/Wallets
GET /v1/{ClientId}/Wallets
GET /v1/{ClientId}/Wallets/{FundType}/{Currency}/Transactions
GET /v1/{ClientId}/Wallets/{WalletId}
GET /v1/{ClientId}/Wallets/{WalletId}/Transactions
POST /v1/Kyc/Northrow/Checks
POST /v1/{ClientId}/Cards/Checkouts
POST /v1/{ClientId}/Cards/Notifications
POST /v1/{ClientId}/Kyc/Documents/{KycDocumentId}/Pages
POST /v1/{ClientId}/OpenBanking/Events
POST /v1/{ClientId}/PayIns/BankWire/Direct
POST /v1/{ClientId}/PayIns/Card
POST /v1/{ClientId}/PayIns/OpenBanking
POST /v1/{ClientId}/PayIns/OpenBanking/{PayInId}
POST /v1/{ClientId}/PayOuts/BankWire
POST /v1/{ClientId}/Reports/Credit
POST /v1/{ClientId}/Reports/Transactions
POST /v1/{ClientId}/Reports/Wallets
POST /v1/{ClientId}/Transfers
POST /v1/{ClientId}/Transfers/{TransferId}/refund
POST /v1/{ClientId}/Users/Legal
POST /v1/{ClientId}/Users/Natural
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Gb
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Iban
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Other
PUT /v1/{ClientId}/Accounts/{AccountId}
PUT /v1/{ClientId}/Cards/Checkouts/{CardCheckoutId}/Complete
PUT /v1/{ClientId}/Cards/Payments/Schedules/{ScheduleId}/Cancel
PUT /v1/{ClientId}/Cards/Registrations/{CardRegistrationId}/Complete
PUT /v1/{ClientId}/Transfers/ChangeOwners
PUT /v1/{ClientId}/Transfers/{TransferId}/ChangeOwner
PUT /v1/{ClientId}/Users/Legal/{UserId}
PUT /v1/{ClientId}/Users/Natural/{UserId}
PUT /v1/{ClientId}/Users/{UserId}/BankAccounts/{BankAccountId}
PUT /v1/{ClientId}/Users/{UserId}/BankVerifications/{BankVerificationId}/Complete
PUT /v1/{ClientId}/Users/{UserId}/Hide
PUT /v1/{ClientId}/Users/{UserId}/Show

Found on 2026-02-12 08:34

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c69b6486292bf542fc20581808536048e7fcb6f1

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /v1/Account/Clients
GET /v1/{ClientId}/Accounts
GET /v1/{ClientId}/BankAccounts
GET /v1/{ClientId}/BankAccounts/{UserBankAccountId}
GET /v1/{ClientId}/BankAccounts/{UserBankAccountId}/Transactions
GET /v1/{ClientId}/Cards/Checkouts/{CardCheckoutId}
GET /v1/{ClientId}/Cards/Fees
GET /v1/{ClientId}/Cards/Payments/Schedules
GET /v1/{ClientId}/Cards/Payments/Schedules/{ScheduleId}
GET /v1/{ClientId}/Cards/Registrations
GET /v1/{ClientId}/Cards/Registrations/{CardRegistrationId}
GET /v1/{ClientId}/Client
GET /v1/{ClientId}/Client/BankAccounts
GET /v1/{ClientId}/Client/BankAccounts/{ClientBankAccountId}
GET /v1/{ClientId}/Client/BankAccounts/{ClientBankAccountId}/PayIns
GET /v1/{ClientId}/Countries
GET /v1/{ClientId}/Events
GET /v1/{ClientId}/Events/Types
GET /v1/{ClientId}/Hooks
GET /v1/{ClientId}/Hooks/{HookId}
GET /v1/{ClientId}/Kyc/Documents
GET /v1/{ClientId}/Kyc/Documents/{KycDocumentId}
GET /v1/{ClientId}/OpenBanking/Account/Authorize
GET /v1/{ClientId}/OpenBanking/Account/Connect
GET /v1/{ClientId}/OpenBanking/Payment/{PaymentId}
GET /v1/{ClientId}/OpenBanking/Providers
GET /v1/{ClientId}/PayIns/{PayInId}
GET /v1/{ClientId}/PayOuts/{PayOutId}
GET /v1/{ClientId}/Refunds/{RefundId}
GET /v1/{ClientId}/Reports
GET /v1/{ClientId}/Reports/{ReportId}
GET /v1/{ClientId}/Search
GET /v1/{ClientId}/Transactions
GET /v1/{ClientId}/Transactions/{TransactionId}
GET /v1/{ClientId}/Transfers/{TransferId}
GET /v1/{ClientId}/Users
GET /v1/{ClientId}/Users/{UserId}
GET /v1/{ClientId}/Users/{UserId}/BankAccounts
GET /v1/{ClientId}/Users/{UserId}/BankVerifications
GET /v1/{ClientId}/Users/{UserId}/Transactions
GET /v1/{ClientId}/Users/{UserId}/Wallets
GET /v1/{ClientId}/Wallets
GET /v1/{ClientId}/Wallets/{FundType}/{Currency}/Transactions
GET /v1/{ClientId}/Wallets/{WalletId}
GET /v1/{ClientId}/Wallets/{WalletId}/Transactions
POST /v1/Kyc/Northrow/Checks
POST /v1/{ClientId}/Cards/Checkouts
POST /v1/{ClientId}/Cards/Notifications
POST /v1/{ClientId}/Kyc/Documents/{KycDocumentId}/Pages
POST /v1/{ClientId}/OpenBanking/Events
POST /v1/{ClientId}/PayIns/BankWire/Direct
POST /v1/{ClientId}/PayIns/Card
POST /v1/{ClientId}/PayIns/OpenBanking
POST /v1/{ClientId}/PayIns/OpenBanking/{PayInId}
POST /v1/{ClientId}/PayOuts/BankWire
POST /v1/{ClientId}/Reports/Credit
POST /v1/{ClientId}/Reports/Transactions
POST /v1/{ClientId}/Reports/Wallets
POST /v1/{ClientId}/Transfers
POST /v1/{ClientId}/Transfers/{TransferId}/refund
POST /v1/{ClientId}/Users/Legal
POST /v1/{ClientId}/Users/Natural
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Gb
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Iban
POST /v1/{ClientId}/Users/{UserId}/BankAccounts/Other
PUT /v1/{ClientId}/Accounts/{AccountId}
PUT /v1/{ClientId}/Cards/Checkouts/{CardCheckoutId}/Complete
PUT /v1/{ClientId}/Cards/Payments/Schedules/{ScheduleId}/Cancel
PUT /v1/{ClientId}/Cards/Registrations/{CardRegistrationId}/Complete
PUT /v1/{ClientId}/Transfers/ChangeOwners
PUT /v1/{ClientId}/Transfers/{TransferId}/ChangeOwner
PUT /v1/{ClientId}/Users/Legal/{UserId}
PUT /v1/{ClientId}/Users/Natural/{UserId}
PUT /v1/{ClientId}/Users/{UserId}/BankAccounts/{BankAccountId}
PUT /v1/{ClientId}/Users/{UserId}/BankVerifications/{BankVerificationId}/Complete
PUT /v1/{ClientId}/Users/{UserId}/Hide
PUT /v1/{ClientId}/Users/{UserId}/Show

Found on 2026-01-16 02:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: fondsfinans.kundesjekk.no
Port: 443
URL: https://fondsfinans.kundesjekk.no

First seen 2025-12-24 02:27
Last seen 2026-02-12 05:22
Open for 50 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:22
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: storoslops.kundesjekk.no
Port: 443
URL: https://storoslops.kundesjekk.no

First seen 2026-01-12 07:39
Last seen 2026-02-12 05:10
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:10
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: lq.kundesjekk.no
Port: 443
URL: https://lq.kundesjekk.no

First seen 2025-12-20 08:24
Last seen 2026-02-12 05:09
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: hakadal.kundesjekk.no
Port: 443
URL: https://hakadal.kundesjekk.no

First seen 2026-01-12 09:22
Last seen 2026-02-12 05:09
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: demo.kundesjekk.no
Port: 443
URL: https://demo.kundesjekk.no

First seen 2025-12-20 07:51
Last seen 2026-02-12 05:06
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: heimdal.kundesjekk.no
Port: 443
URL: https://heimdal.kundesjekk.no

First seen 2025-12-21 02:06
Last seen 2026-02-12 05:06
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: boa.kundesjekk.no
Port: 443
URL: https://boa.kundesjekk.no

First seen 2025-12-21 02:03
Last seen 2026-02-12 05:04
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 05:04
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: alphaspar.kundesjekk.no
Port: 443
URL: https://alphaspar.kundesjekk.no

First seen 2025-12-21 02:02
Last seen 2026-02-12 05:04
Open for 53 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2026-02-12 05:04

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-09 04:38

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: dev.kundesjekk.no
Port: 443
URL: https://dev.kundesjekk.no

First seen 2025-12-11 06:28
Last seen 2026-02-12 04:36
Open for 62 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2026-02-12 04:36

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: forte.kundesjekk.no
Port: 443
URL: https://forte.kundesjekk.no

First seen 2025-12-26 11:27
Last seen 2026-02-12 04:11
Open for 47 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 04:11
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: boligbanken.kundesjekk.no
Port: 443
URL: https://boligbanken.kundesjekk.no

First seen 2026-01-10 18:07
Last seen 2026-02-12 04:10
Open for 32 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 04:10
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: solvens.kundesjekk.no
Port: 443
URL: https://solvens.kundesjekk.no

First seen 2026-01-12 09:27
Last seen 2026-02-12 03:06
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-12 03:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advhusaas.kundesjekk.no
Port: 443
URL: https://advhusaas.kundesjekk.no

First seen 2026-01-12 18:45
Last seen 2026-02-11 20:11
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 20:11
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advokatdeinboll.kundesjekk.no
Port: 443
URL: https://advokatdeinboll.kundesjekk.no

First seen 2026-01-11 07:17
Last seen 2026-02-11 18:59
Open for 31 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 18:59
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: tromsoko.kundesjekk.no
Port: 443
URL: https://tromsoko.kundesjekk.no

First seen 2026-01-12 09:04
Last seen 2026-02-11 10:19
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 10:19
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: abcaccounting.kundesjekk.no
Port: 443
URL: https://abcaccounting.kundesjekk.no

First seen 2026-01-12 09:05
Last seen 2026-02-11 10:17
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 10:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advokatnataas.kundesjekk.no
Port: 443
URL: https://advokatnataas.kundesjekk.no

First seen 2026-01-12 09:29
Last seen 2026-02-11 10:13
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 10:13
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: vekstrahardogvoss.kundesjekk.no
Port: 443
URL: https://vekstrahardogvoss.kundesjekk.no

First seen 2026-01-12 08:35
Last seen 2026-02-11 10:07
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 10:07
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: akre.kundesjekk.no
Port: 443
URL: https://akre.kundesjekk.no

First seen 2026-01-11 09:28
Last seen 2026-02-11 10:06
Open for 31 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-11 10:06
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: aasen.kundesjekk.no
Port: 443
URL: https://aasen.kundesjekk.no

First seen 2025-12-11 06:48
Last seen 2026-02-11 08:59
Open for 62 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-11 08:59

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2026-01-09 04:14

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: rnallregnskapservice.kundesjekk.no
Port: 443
URL: https://rnallregnskapservice.kundesjekk.no

First seen 2026-01-12 05:53
Last seen 2026-02-10 23:58
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 23:58
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: claims.kundesjekk.no
Port: 443
URL: https://claims.kundesjekk.no

First seen 2026-01-11 07:31
Last seen 2026-02-10 22:37
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 22:37
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: landbo.kundesjekk.no
Port: 443
URL: https://landbo.kundesjekk.no

First seen 2026-01-12 09:27
Last seen 2026-02-10 21:59
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 21:59
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bonitas.kundesjekk.no
Port: 443
URL: https://bonitas.kundesjekk.no

First seen 2026-01-12 08:47
Last seen 2026-02-10 21:56
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 21:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: kulltangen.kundesjekk.no
Port: 443
URL: https://kulltangen.kundesjekk.no

First seen 2026-01-12 08:55
Last seen 2026-02-10 21:52
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 21:52
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: app.visius.ai
Port: 80
URL: http://app.visius.ai

First seen 2026-01-11 09:27
Last seen 2026-02-10 17:10
Open for 30 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-10 17:10

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549668fb2d450efc5458260ffc60a7cc7c77d0927ef

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/dashboard
DELETE /api/video-files/file/{id}
GET /api/account/billing/url
GET /api/account/forgot-password
GET /api/account/info
GET /api/account/resend-confirmation-email
GET /api/admin/users
GET /api/auth/logout
GET /api/billing/tariffs
GET /api/billing/users/currentTariff
GET /api/dashboard/{streamId}
GET /api/location-groups
GET /api/location-groups/{id}
GET /api/locations/{id}
GET /api/test
GET /api/test/create-test-user
GET /api/video-files/by-location-id/{locationId}
GET /api/video-files/{id}
GET /api/video-streams/by-location-id/{locationId}
GET /api/video-streams/{id}
POST /api/account/register
POST /api/auth/login
POST /api/billing/payments/invoicePayment
POST /api/locations
POST /api/video-files
POST /api/video-processing-request/start/{streamId}
POST /api/video-streams
PUT /api/account/email-confirmation
PUT /api/account/reset-password
PUT /api/account/reset-password-by-token
PUT /api/account/update
PUT /api/billing/users/createUsers
PUT /api/billing/users/tariff/update
PUT /api/dashboard/{keyId}
PUT /api/video-processing-request/stop/{streamId}

Found on 2026-02-08 22:11

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: app.visius.ai
Port: 443
URL: https://app.visius.ai

First seen 2026-01-11 09:27
Last seen 2026-02-10 17:09
Open for 30 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549668fb2d450efc5458260ffc60a7cc7c77d0927ef

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/dashboard
DELETE /api/video-files/file/{id}
GET /api/account/billing/url
GET /api/account/forgot-password
GET /api/account/info
GET /api/account/resend-confirmation-email
GET /api/admin/users
GET /api/auth/logout
GET /api/billing/tariffs
GET /api/billing/users/currentTariff
GET /api/dashboard/{streamId}
GET /api/location-groups
GET /api/location-groups/{id}
GET /api/locations/{id}
GET /api/test
GET /api/test/create-test-user
GET /api/video-files/by-location-id/{locationId}
GET /api/video-files/{id}
GET /api/video-streams/by-location-id/{locationId}
GET /api/video-streams/{id}
POST /api/account/register
POST /api/auth/login
POST /api/billing/payments/invoicePayment
POST /api/locations
POST /api/video-files
POST /api/video-processing-request/start/{streamId}
POST /api/video-streams
PUT /api/account/email-confirmation
PUT /api/account/reset-password
PUT /api/account/reset-password-by-token
PUT /api/account/update
PUT /api/billing/users/createUsers
PUT /api/billing/users/tariff/update
PUT /api/dashboard/{keyId}
PUT /api/video-processing-request/stop/{streamId}

Found on 2026-02-10 17:09

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-05 06:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: brras.kundesjekk.no
Port: 443
URL: https://brras.kundesjekk.no

First seen 2026-01-11 09:20
Last seen 2026-02-10 12:14
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 12:14
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: grongstad.kundesjekk.no
Port: 443
URL: https://grongstad.kundesjekk.no

First seen 2025-12-10 03:31
Last seen 2026-02-10 12:04
Open for 62 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 12:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bblmidt.kundesjekk.no
Port: 443
URL: https://bblmidt.kundesjekk.no

First seen 2026-01-03 08:46
Last seen 2026-02-10 00:23
Open for 37 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 00:23
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: planke.kundesjekk.no
Port: 443
URL: https://planke.kundesjekk.no

First seen 2025-12-30 00:24
Last seen 2026-02-10 00:23
Open for 41 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 00:23
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bob.kundesjekk.no
Port: 443
URL: https://bob.kundesjekk.no

First seen 2026-01-12 08:27
Last seen 2026-02-10 00:06
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-10 00:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: trolltinden.kundesjekk.no
Port: 443
URL: https://trolltinden.kundesjekk.no

First seen 2026-01-11 08:52
Last seen 2026-02-09 23:53
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:53
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: sarsia.kundesjekk.no
Port: 443
URL: https://sarsia.kundesjekk.no

First seen 2026-01-12 08:35
Last seen 2026-02-09 23:34
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:34
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: frontpayment.kundesjekk.no
Port: 443
URL: https://frontpayment.kundesjekk.no

First seen 2026-01-12 04:15
Last seen 2026-02-09 23:19
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:19
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: lillesandssparebank.kundesjekk.no
Port: 443
URL: https://lillesandssparebank.kundesjekk.no

First seen 2026-01-12 01:48
Last seen 2026-02-09 23:12
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:12
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: soderberg.kundesjekk.no
Port: 443
URL: https://soderberg.kundesjekk.no

First seen 2025-12-11 06:31
Last seen 2026-02-09 23:12
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-09 23:12

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2025-12-18 23:12

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: reitenco.kundesjekk.no
Port: 443
URL: https://reitenco.kundesjekk.no

First seen 2026-01-12 02:27
Last seen 2026-02-09 23:10
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:10
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: accenture.kundesjekk.no
Port: 443
URL: https://accenture.kundesjekk.no

First seen 2026-01-12 02:46
Last seen 2026-02-09 23:09
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: vibrand.kundesjekk.no
Port: 443
URL: https://vibrand.kundesjekk.no

First seen 2025-12-22 05:11
Last seen 2026-02-09 23:06
Open for 49 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: dnbluxembourg.kundesjekk.no
Port: 443
URL: https://dnbluxembourg.kundesjekk.no

First seen 2026-01-12 04:03
Last seen 2026-02-09 23:03
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: addero.kundesjekk.no
Port: 443
URL: https://addero.kundesjekk.no

First seen 2026-01-12 04:15
Last seen 2026-02-09 23:02
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:02
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: retailproperty.kundesjekk.no
Port: 443
URL: https://retailproperty.kundesjekk.no

First seen 2025-10-21 07:10
Last seen 2026-02-09 23:00
Open for 111 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 23:00
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: holberg.kundesjekk.no
Port: 443
URL: https://holberg.kundesjekk.no

First seen 2026-01-12 08:26
Last seen 2026-02-09 22:37
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 22:37
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: regnskapstjenester.kundesjekk.no
Port: 443
URL: https://regnskapstjenester.kundesjekk.no

First seen 2026-01-12 09:10
Last seen 2026-02-09 22:35
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 22:35
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: abokonomi.kundesjekk.no
Port: 443
URL: https://abokonomi.kundesjekk.no

First seen 2026-01-12 08:33
Last seen 2026-02-09 22:32
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 22:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: okopartner.kundesjekk.no
Port: 443
URL: https://okopartner.kundesjekk.no

First seen 2026-01-12 08:10
Last seen 2026-02-09 22:08
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 22:08
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: www.coresatin.com
Port: 80
URL: http://www.coresatin.com

First seen 2023-03-28 06:35
Last seen 2026-02-09 22:06
Open for 1049 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2026-02-09 22:06
  
  380 Bytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advokatsamdal.kundesjekk.no
Port: 443
URL: https://advokatsamdal.kundesjekk.no

First seen 2026-01-12 08:12
Last seen 2026-02-09 22:00
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 22:00
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: mcee.kundesjekk.no
Port: 443
URL: https://mcee.kundesjekk.no

First seen 2026-01-12 08:09
Last seen 2026-02-09 21:42
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 21:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: sneregnskap.kundesjekk.no
Port: 443
URL: https://sneregnskap.kundesjekk.no

First seen 2026-01-11 08:44
Last seen 2026-02-09 20:47
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: dala.kundesjekk.no
Port: 443
URL: https://dala.kundesjekk.no

First seen 2026-01-11 08:45
Last seen 2026-02-09 20:47
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: libra.kundesjekk.no
Port: 443
URL: https://libra.kundesjekk.no

First seen 2026-01-12 08:00
Last seen 2026-02-09 20:47
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bnm.kundesjekk.no
Port: 443
URL: https://bnm.kundesjekk.no

First seen 2026-01-11 08:45
Last seen 2026-02-09 20:46
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:46
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: proffoppgjor.kundesjekk.no
Port: 443
URL: https://proffoppgjor.kundesjekk.no

First seen 2026-01-12 07:57
Last seen 2026-02-09 20:41
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:41
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: unn.kundesjekk.no
Port: 443
URL: https://unn.kundesjekk.no

First seen 2025-12-29 21:52
Last seen 2026-02-09 20:17
Open for 41 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: tind.kundesjekk.no
Port: 443
URL: https://tind.kundesjekk.no

First seen 2026-01-12 07:46
Last seen 2026-02-09 20:08
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 20:08
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: merkant.kundesjekk.no
Port: 443
URL: https://merkant.kundesjekk.no

First seen 2026-01-11 14:19
Last seen 2026-02-09 19:46
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 19:46
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: rnokonomiregnskapsbyraa.kundesjekk.no
Port: 443
URL: https://rnokonomiregnskapsbyraa.kundesjekk.no

First seen 2026-01-12 04:33
Last seen 2026-02-09 19:45
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 19:45
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: mnemonic2.kundesjekk.no
Port: 443
URL: https://mnemonic2.kundesjekk.no

First seen 2026-01-12 07:15
Last seen 2026-02-09 19:36
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 19:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: rnmyreregnskap.kundesjekk.no
Port: 443
URL: https://rnmyreregnskap.kundesjekk.no

First seen 2026-01-12 04:32
Last seen 2026-02-09 19:10
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 19:10
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: rnpblregnskap.kundesjekk.no
Port: 443
URL: https://rnpblregnskap.kundesjekk.no

First seen 2026-01-12 04:31
Last seen 2026-02-09 19:06
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 19:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: lhaldorsen.kundesjekk.no
Port: 443
URL: https://lhaldorsen.kundesjekk.no

First seen 2026-01-11 08:37
Last seen 2026-02-09 18:36
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: compler.kundesjekk.no
Port: 443
URL: https://compler.kundesjekk.no

First seen 2026-01-11 09:30
Last seen 2026-02-09 18:22
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:22
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: haslestad.kundesjekk.no
Port: 443
URL: https://haslestad.kundesjekk.no

First seen 2026-01-11 08:16
Last seen 2026-02-09 18:15
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:15
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: balanco.kundesjekk.no
Port: 443
URL: https://balanco.kundesjekk.no

First seen 2026-01-12 18:29
Last seen 2026-02-09 17:59
Open for 27 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 17:59
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: coresatin.com
Port: 443
URL: https://coresatin.com

First seen 2024-05-16 06:35
Last seen 2026-02-09 17:58
Open for 634 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2026-02-09 17:58
  
  380 Bytes
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: backoffice.shareinpay-test.com
Port: 443
URL: https://backoffice.shareinpay-test.com

First seen 2025-12-26 16:58
Last seen 2026-02-09 17:50
Open for 45 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-09 17:50

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549cd89e13e24f866131713c937149f6895cb248ca4

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /v1/Accounts
GET /v1/Calendar
GET /v1/ClientBankAccounts
GET /v1/ClientBankAccounts/{ClientBankAccountId}
GET /v1/ClientBankAccounts/{ClientBankAccountId}/BankLedger
GET /v1/ClientBankAccounts/{ClientBankAccountId}/ClientLedger
GET /v1/ClientBankAccounts/{ClientBankAccountId}/MatchInfo
GET /v1/ClientBankAccounts/{ClientBankAccountId}/MatchInfo/Pending
GET /v1/ClientBankAccounts/{ClientBankAccountId}/cmar
GET /v1/Clients
GET /v1/Clients/{ClientId}
GET /v1/Clients/{ClientId}/Principals
GET /v1/Countries
GET /v1/Incidents
GET /v1/Incidents/{IncidentId}
GET /v1/Kyc/Documents/{KycDocumentId}
GET /v1/Notes
GET /v1/Notes/{NoteId}
GET /v1/PayIns
GET /v1/PayOuts
GET /v1/Permissions
GET /v1/Reconciliations
GET /v1/Reconciliations/Historical
GET /v1/Reconciliations/Items
GET /v1/Reconciliations/Items/{ItemId}
GET /v1/Reconciliations/{ReconciliationId}
GET /v1/Reconciliations/{ReconciliationId}/ClientLedger
GET /v1/Reports
GET /v1/Reports/{ReportId}
GET /v1/Search
GET /v1/Statements
GET /v1/Statements/Screenshots
GET /v1/Statements/Screenshots/{ScreenshotId}
GET /v1/Statements/{StatementId}
GET /v1/Transactions
GET /v1/Users
GET /v1/Users/{UserId}
GET /v1/Users/{UserId}/Log
GET /v1/Wallets
POST /v1/ClientBankAccounts/Gb
POST /v1/ClientBankAccounts/Iban
POST /v1/Fees
POST /v1/Matches/Matched
POST /v1/Matches/Partial
POST /v1/Matches/Unmatched
POST /v1/Matches/bankcharges
POST /v1/Matches/cheque
POST /v1/Matches/other
POST /v1/Matches/unallocated
POST /v1/Matches/unclearedpayment
POST /v1/PayOuts/Approve
POST /v1/PayOuts/Unapprove
POST /v1/Reconciliations/External
POST /v1/Reconciliations/Internal
POST /v1/Reconciliations/Items/BankCharges
POST /v1/Reconciliations/Items/Cheque
POST /v1/Reconciliations/Items/Other
POST /v1/Reconciliations/Items/Unallocated
POST /v1/Reconciliations/Items/UnclearedPayment
POST /v1/Reports/bankLedger
POST /v1/Reports/clientLedger
POST /v1/Reports/clientLedgerSnapshot
POST /v1/Reports/clientMoney
POST /v1/Reports/numberOfClients
POST /v1/Reports/reconciliation
PUT /v1/Accounts/{AccountId}
PUT /v1/ClientBankAccounts/Gb/{BankAccountId}
PUT /v1/ClientBankAccounts/Iban/{BankAccountId}
PUT /v1/ClientBankAccounts/{ClientBankAccountId}/Clients/{ClientId}
PUT /v1/Clients/{ClientId}/Principals/{PrincipalType}/{PrincipalId}
PUT /v1/Clients/{ClientId}/walletreferences
PUT /v1/Countries/{CountryId}
PUT /v1/Matches/Cheque/{MatchId}
PUT /v1/Matches/Unallocated/{MatchId}
PUT /v1/PayIns/{PayInId}
PUT /v1/PayOuts/{PayOutId}/Authorize
PUT /v1/PayOuts/{PayOutId}/Lock
PUT /v1/PayOuts/{PayOutId}/Unlock
PUT /v1/Principals/{PrincipalType}/{PrincipalId}/disable
PUT /v1/Principals/{PrincipalType}/{PrincipalId}/enable
PUT /v1/Reconciliations/{ReconciliationId}/approve
PUT /v1/Reports/{reportId}/hide
PUT /v1/Reports/{reportId}/show
PUT /v1/Statements/{StatementId}/Entries/{EntryId}/Duplicate
PUT /v1/Transactions/{TransactionId}/Abort
PUT /v1/Transactions/{TransactionId}/Confirm
PUT /v1/Users/Legal/{UserId}
PUT /v1/Users/Natural/{UserId}
PUT /v1/Users/{UserId}/KycNotes

Found on 2026-01-23 12:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: foa.kundesjekk.no
Port: 443
URL: https://foa.kundesjekk.no

First seen 2026-01-12 07:25
Last seen 2026-02-09 17:08
Open for 28 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 17:08
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: gjensidigeforsikring.kundesjekk.no
Port: 443
URL: https://gjensidigeforsikring.kundesjekk.no

First seen 2025-12-09 13:49
Last seen 2026-02-09 15:40
Open for 62 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 15:40
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: cheestrings.de
Port: 443
URL: https://cheestrings.de

First seen 2025-08-18 10:38
Last seen 2026-02-09 15:18
Open for 175 days

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54472a658d19279ccf6192f01de50769e48a

Found 18 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-content/uploads/sites
/wp-content/uploads/uploads
/wp-includes

Found on 2026-02-09 15:18

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719513bec23e98e1d873091fc9b1cbe8ff6

Found 16 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-11-27 05:09

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bcf7342359e78152d6d586129e294d4ec

Found 14 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-11-08 06:52

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: cheestrings.net
Port: 443
URL: https://cheestrings.net

First seen 2025-08-29 22:23
Last seen 2026-02-09 14:01
Open for 163 days

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719513bec23e98e1d873091fc9b1cbe8ff6

Found 16 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2026-02-09 14:01

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54472a658d19279ccf6192f01de50769e48a

Found 18 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-content/uploads/sites
/wp-content/uploads/uploads
/wp-includes

Found on 2026-01-16 13:32

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bcf7342359e78152d6d586129e294d4ec

Found 14 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-12-01 07:50

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: coresatin.com
Port: 80
URL: http://coresatin.com

First seen 2024-05-16 06:35
Last seen 2026-02-09 10:26
Open for 634 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2026-02-09 10:26
  
  380 Bytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: haugerud.kundesjekk.no
Port: 443
URL: https://haugerud.kundesjekk.no

First seen 2026-01-12 04:12
Last seen 2026-02-06 03:31
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-06 03:31
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: dmrv.dev.sustain-cert.com
Port: 443
URL: https://dmrv.dev.sustain-cert.com

First seen 2026-01-11 10:18
Last seen 2026-02-05 16:02
Open for 25 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549b6decbd69bfdee7e5264eee127e7a60baa72eca6
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /Adobe/api/webhook
GET /GetMonitoringPeriod/api/get
GET /vivid/activities
GET /vivid/goods
GET /vivid/impact-layers
GET /vivid/impact-units
GET /vivid/interventions/phases
GET /vivid/interventions/{id}/custom-activities
GET /vivid/interventions/{id}/custom-parameters
GET /vivid/interventions/{id}/custom-processes
GET /vivid/parameters
GET /vivid/processes
GET /vivid/supply-sheds
POST /AcceptMeterData/api/acceptMeterData
POST /GetToken/api/Authenticate
POST /UploadMeterData/api/uploadMeterData/{meterSerial}
POST /api/uploadinterventiondata
POST /vivid/interventions/{interventionId}/phases/{phaseId}/impact-management-data
```
  Found on 2026-02-05 16:02
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: hafs.kundesjekk.no
Port: 443
URL: https://hafs.kundesjekk.no

First seen 2026-01-12 08:23
Last seen 2026-02-05 00:39
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-05 00:39
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advhelgeland.kundesjekk.no
Port: 443
URL: https://advhelgeland.kundesjekk.no

First seen 2026-01-11 08:46
Last seen 2026-02-05 00:00
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-05 00:00
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: osloadvokat.kundesjekk.no
Port: 443
URL: https://osloadvokat.kundesjekk.no

First seen 2026-01-09 23:52
Last seen 2026-02-04 23:25
Open for 25 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 23:25
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: kongsberg.kundesjekk.no
Port: 443
URL: https://kongsberg.kundesjekk.no

First seen 2026-01-12 07:34
Last seen 2026-02-04 23:12
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 23:12
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: vito.kundesjekk.no
Port: 443
URL: https://vito.kundesjekk.no

First seen 2026-01-11 08:39
Last seen 2026-02-04 23:12
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 23:12
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: mnemonic1.kundesjekk.no
Port: 443
URL: https://mnemonic1.kundesjekk.no

First seen 2026-01-12 07:15
Last seen 2026-02-04 22:15
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 22:15
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: vekstraengerdal.kundesjekk.no
Port: 443
URL: https://vekstraengerdal.kundesjekk.no

First seen 2026-01-12 07:13
Last seen 2026-02-04 22:15
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 22:15
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.74.252.44
Domain: archi.pernod-ricard.wiki
Port: 443
URL: https://archi.pernod-ricard.wiki

First seen 2025-12-26 10:40
Last seen 2026-02-04 19:52
Open for 40 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dec863f59258a9f72eacd4d9eb5bbc5a957af4f2

GraphQL introspection enabled at /graphql
Types: 134 (by kind: ENUM: 10, INPUT_OBJECT: 12, OBJECT: 107, SCALAR: 5)
Operations:
- Query: Query | fields: analytics, assets, authentication, comments, contribute
- Mutation: Mutation | fields: analytics, assets, authentication, comments, groups
- Subscription: Subscription | fields: loggingLiveTrail
Directives: auth, cacheControl, deprecated, include, rateLimit, skip, specifiedBy (total: 7)

Found on 2026-02-04 19:52

190.9 kBytes

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: sissener.kundesjekk.no
Port: 443
URL: https://sissener.kundesjekk.no

First seen 2025-10-17 06:17
Last seen 2026-02-04 17:52
Open for 110 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-04 17:52

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2025-12-25 02:53

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: probusregnskap.kundesjekk.no
Port: 443
URL: https://probusregnskap.kundesjekk.no

First seen 2026-01-11 07:51
Last seen 2026-02-04 16:55
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 16:55
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: rnavanseregnskap.kundesjekk.no
Port: 443
URL: https://rnavanseregnskap.kundesjekk.no

First seen 2026-01-11 07:49
Last seen 2026-02-04 16:54
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 16:54
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: regnskapulyanarotli.kundesjekk.no
Port: 443
URL: https://regnskapulyanarotli.kundesjekk.no

First seen 2026-01-11 07:44
Last seen 2026-02-04 16:06
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 16:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advokatglittertind.kundesjekk.no
Port: 443
URL: https://advokatglittertind.kundesjekk.no

First seen 2026-01-12 03:36
Last seen 2026-02-04 15:17
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 15:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: njordsec.kundesjekk.no
Port: 443
URL: https://njordsec.kundesjekk.no

First seen 2025-12-21 02:07
Last seen 2026-02-04 14:14
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 14:14
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: pind.kundesjekk.no
Port: 443
URL: https://pind.kundesjekk.no

First seen 2025-12-09 00:12
Last seen 2026-02-04 14:06
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 14:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: reqcapital.kundesjekk.no
Port: 443
URL: https://reqcapital.kundesjekk.no

First seen 2026-01-12 03:00
Last seen 2026-02-04 13:06
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 13:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: fend.kundesjekk.no
Port: 443
URL: https://fend.kundesjekk.no

First seen 2026-01-11 07:28
Last seen 2026-02-04 13:06
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 13:06
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: lesembiezmeetings.pernod-ricard.io
Port: 443
URL: https://lesembiezmeetings.pernod-ricard.io

First seen 2025-12-26 09:39
Last seen 2026-02-04 12:51
Open for 40 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549e53568f97968cdbaf95caee0ffcda89689787805
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /AzureAD/Account/SignIn/{scheme}
GET /AzureAD/Account/SignOut/{scheme}
GET /api/Auth
GET /api/Meetings
GET /api/Meetings/available
GET /api/Meetings/{id}/participants
GET /api/Meetings/{meetingId}/details/{invitationId}
GET /api/Notifications
GET /api/Notifications/count
GET /api/Participants/search
GET /api/Settings
GET /api/Settings/me
POST /api/ExternalAccess/meetings/{email}
POST /api/Invitations/{id}/reschedule/accept
POST /api/Invitations/{id}/reschedule/refuse
POST /api/Meetings/timeslots
PUT /api/Auth/onbehalf/{onBehalfEmail}
PUT /api/Auth/removeonbehalf
PUT /api/Invitations/{id}/accept
PUT /api/Invitations/{id}/refuse
PUT /api/Invitations/{id}/reschedule
PUT /api/Meetings/{id}
```
  Found on 2026-02-04 12:51
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: omregnskap.kundesjekk.no
Port: 443
URL: https://omregnskap.kundesjekk.no

First seen 2026-01-11 07:28
Last seen 2026-02-04 12:42
Open for 24 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 12:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advonico.kundesjekk.no
Port: 443
URL: https://advonico.kundesjekk.no

First seen 2026-01-12 02:49
Last seen 2026-02-04 12:42
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 12:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: r3.kundesjekk.no
Port: 443
URL: https://r3.kundesjekk.no

First seen 2026-01-12 02:28
Last seen 2026-02-04 12:04
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 12:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: etwegner.kundesjekk.no
Port: 443
URL: https://etwegner.kundesjekk.no

First seen 2026-01-12 02:15
Last seen 2026-02-04 11:48
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 11:48
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: marstrand.kundesjekk.no
Port: 443
URL: https://marstrand.kundesjekk.no

First seen 2026-01-12 01:49
Last seen 2026-02-04 10:53
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:53
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: saga.kundesjekk.no
Port: 443
URL: https://saga.kundesjekk.no

First seen 2026-01-12 01:42
Last seen 2026-02-04 10:46
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:46
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bdotest.kundesjekk.no
Port: 443
URL: https://bdotest.kundesjekk.no

First seen 2026-01-12 01:39
Last seen 2026-02-04 10:44
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bomidt.kundesjekk.no
Port: 443
URL: https://bomidt.kundesjekk.no

First seen 2026-01-12 01:40
Last seen 2026-02-04 10:44
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: auth.services.prodigi.com
Port: 443
URL: https://auth.services.prodigi.com

First seen 2026-01-04 02:55
Last seen 2026-02-04 10:16
Open for 31 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:16
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: jespersen.kundesjekk.no
Port: 443
URL: https://jespersen.kundesjekk.no

First seen 2026-01-03 08:40
Last seen 2026-02-04 10:14
Open for 32 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-04 10:14
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bratteng.kundesjekk.no
Port: 443
URL: https://bratteng.kundesjekk.no

First seen 2025-12-21 02:02
Last seen 2026-02-04 10:04
Open for 45 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-02-04 10:04

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2026-01-09 04:38

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: www.coresatin.com
Port: 443
URL: https://www.coresatin.com

First seen 2024-05-16 06:35
Last seen 2026-02-02 12:51
Open for 627 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2026-02-02 12:51
  
  380 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: www.cheestrings.de
Port: 443
URL: https://www.cheestrings.de

First seen 2025-08-18 10:38
Last seen 2026-02-02 11:59
Open for 168 days

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54472a658d19279ccf6192f01de50769e48a

Found 18 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-content/uploads/sites
/wp-content/uploads/uploads
/wp-includes

Found on 2026-02-02 11:59

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bcf7342359e78152d6d586129e294d4ec

Found 14 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-11-14 09:57

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719513bec23e98e1d873091fc9b1cbe8ff6

Found 16 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-11-01 13:14

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: okonomibistand.kundesjekk.no
Port: 443
URL: https://okonomibistand.kundesjekk.no

First seen 2026-01-12 08:10
Last seen 2026-02-02 05:35
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-02 05:35
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: nordvikregnskap.kundesjekk.no
Port: 443
URL: https://nordvikregnskap.kundesjekk.no

First seen 2026-01-11 08:54
Last seen 2026-02-02 05:30
Open for 21 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-02 05:30
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: naeringsregnskap.kundesjekk.no
Port: 443
URL: https://naeringsregnskap.kundesjekk.no

First seen 2026-01-12 08:08
Last seen 2026-02-02 02:59
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-02 02:59
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: advokatfirmaetaae.kundesjekk.no
Port: 443
URL: https://advokatfirmaetaae.kundesjekk.no

First seen 2026-01-12 08:39
Last seen 2026-02-01 23:57
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-01 23:57
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: vestrevisjon.kundesjekk.no
Port: 443
URL: https://vestrevisjon.kundesjekk.no

First seen 2026-01-12 08:54
Last seen 2026-02-01 23:57
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-01 23:57
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: bullaarstad.kundesjekk.no
Port: 443
URL: https://bullaarstad.kundesjekk.no

First seen 2026-01-12 09:04
Last seen 2026-02-01 23:56
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-01 23:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: lokalbankenedev.kundesjekk.no
Port: 443
URL: https://lokalbankenedev.kundesjekk.no

First seen 2026-01-12 08:06
Last seen 2026-02-01 23:26
Open for 20 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-01 23:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: sslbc.pl
Port: 443
URL: https://sslbc.pl

First seen 2022-09-30 09:12
Last seen 2026-01-23 02:25
Open for 1210 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642de8b6082684448446844484468444844
```
Found 2 files trough .DS_Store spidering:

/leaselink-integration-app
/shoper
```
  Found on 2026-01-23 02:25
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: baadvokatfirma.kundesjekk.no
Port: 443
URL: https://baadvokatfirma.kundesjekk.no

First seen 2026-01-12 20:22
Last seen 2026-01-23 00:39
Open for 10 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-23 00:39

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354949d437d3e2951e39d5b021dbc17f59e0406c375f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /NorBankIdSigning/api/recipients/{recipientId}
DELETE /NorBankIdSigning/api/signjobs/{signJobId}
DELETE /SDOSigning/api/signjobs/{signJobId}
DELETE /aml/api/Monitor/person/{personId}
DELETE /aml/api/Risk/collections/rules/criteria/{criteriaId}
DELETE /aml/api/Risk/collections/rules/{ruleId}
GET /Signing/api/signjobs
GET /Signing/api/signjobs/{signJobId}
GET /Signing/api/signjobs/{signJobId}/{urlpart}
GET /Signing/api/signjobsv1p5
GET /aml/api/KAR/{karId}
GET /aml/api/KAR/{karId}/downloadReport
GET /aml/api/Monitor/active
GET /aml/api/Risk/collections
GET /aml/api/Risk/collections/{collectionId}
GET /aml/api/Risk/download/{entityId}
GET /aml/api/Risk/download/{screeningId}/{type}
GET /aml/api/Risk/{entityId}
GET /aml/api/Risk/{entityId}/score
GET /aml/api/Template/list
GET /aml/api/Template/listTemplates/{search}
GET /aml/api/notification
GET /aml/api/rolesearch/search
GET /aml/api/screening/organization/{screeningId}
GET /aml/api/screening/organization/{screeningId}/download-report/{type}
GET /aml/api/screening/person/{screeningId}
GET /aml/api/screening/person/{screeningId}/download-report
GET /aml/v1/id-checks
GET /aml/v2/id-checks/open
GET /api/Config/featuresswitches
GET /api/EventHistory/entity/{EntityId}
GET /api/EventHistory/{EventId}
GET /api/WebForm/template/{templateId}
GET /api/WebForm/{id}/result
GET /api/WebForm/{screeningId}
GET /api/WebForm/{screeningId}/download
GET /api/WebForm/{screeningId}/download/{blobStorageId}
GET /api/WebForm/{screeningId}/exists/{blobStorageId}
GET /api/WebForm/{screeningId}/generate
GET /api/v1/Webhook
GET /api/v1/Webhook/events/{eventId}
GET /api/v1/Webhook/{subscriptionid}
GET /api/v1/Webhook/{subscriptionid}/events
GET /api/webhook
GET /api/webhook/events/{eventId}
GET /api/webhook/{subscriptionid}
GET /api/webhook/{subscriptionid}/events
GET /signingview/dist/message
POST /KundesjekkSigning/api/start
POST /NorBankIdSigning/api/start
POST /SDOSigning/api/start
POST /SignicatSigning/api/start
POST /aml/api/KAR
POST /aml/api/Monitor/person
POST /aml/api/Risk
POST /aml/api/Risk/recommendation
POST /aml/api/Risk/webform
POST /aml/api/Risk/{webFormId}/update-entity-id/{entityId}
POST /aml/api/notification/authenticated/{screeningId}
POST /aml/api/notification/cancel/{entityId}
POST /aml/api/notification/copy/{signJobId}
POST /aml/api/notification/email/{emailId}
POST /aml/api/notification/next/{entityId}
POST /aml/api/notification/resend/{entity}
POST /aml/api/notification/send/webform/{screeningId}
POST /aml/api/notification/sms/{smsId}
POST /aml/api/screening/beneficial
POST /aml/api/screening/bulk/authenticated
POST /aml/api/screening/bulk/unauthenticated
POST /aml/api/screening/organization
POST /aml/api/screening/person/authenticated
POST /aml/api/screening/person/unauthenticated
POST /aml/api/screening/person/unauthenticatedsanctiononly
POST /aml/v1/id-checks/consent
POST /aml/v1/id-checks/missing
POST /aml/v1/id-checks/reject
POST /api/Support/invite
POST /api/WebForm
POST /api/WebForm/{screeningId}/send
POST /api/v1/Webhook/events/{webhookEventGuid}/resend
POST /api/v1/Webhook/postWebhook
POST /api/webhook/events/{webhookEventGuid}/resend
POST /api/webhook/postWebhook
PUT /Signing/api/signjobs/{signJobId}/reference
PUT /aml/api/KAR/{karId}/reference/{clientReference}
PUT /aml/api/screening/organization/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/person/{screeningId}/reference/{clientReference}
PUT /aml/api/screening/{type}/{screeningId}/activate
PUT /aml/api/screening/{type}/{screeningId}/deactivate

Found on 2026-01-15 19:18

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: merkantil.kundesjekk.no
Port: 443
URL: https://merkantil.kundesjekk.no

First seen 2026-01-12 07:42
Last seen 2026-01-17 01:26
Open for 4 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-17 01:26
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: altinnen.kundesjekk.no
Port: 443
URL: https://altinnen.kundesjekk.no

First seen 2026-01-11 09:43
Last seen 2026-01-16 14:49
Open for 5 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-16 14:49
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: saltcapital.kundesjekk.no
Port: 443
URL: https://saltcapital.kundesjekk.no

First seen 2026-01-12 07:59
Last seen 2026-01-16 13:45
Open for 4 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-16 13:45
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: www.cheestrings.net
Port: 443
URL: https://www.cheestrings.net

First seen 2025-08-29 22:23
Last seen 2026-01-16 11:16
Open for 139 days

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54472a658d19279ccf6192f01de50769e48a

Found 18 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-content/uploads/sites
/wp-content/uploads/uploads
/wp-includes

Found on 2026-01-16 11:16

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719513bec23e98e1d873091fc9b1cbe8ff6

Found 16 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/sitepress-multilingual-cms/classes
/wp-content/plugins/sitepress-multilingual-cms/vendor
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-12-26 21:06

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bcf7342359e78152d6d586129e294d4ec

Found 14 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/languages
/wp-content/plugins
/wp-content/plugins/elementor
/wp-content/plugins/elementor-pro
/wp-content/plugins/post-smtp
/wp-content/plugins/powerpack-elements
/wp-content/plugins/sitepress-multilingual-cms
/wp-content/plugins/ultimate-branding
/wp-content/plugins/wp-hummingbird
/wp-content/plugins/wpmu-dev-seo
/wp-content/uploads
/wp-includes

Found on 2025-12-01 01:16

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: service.orderly.shop
Port: 443
URL: https://service.orderly.shop

First seen 2025-12-02 05:37
Last seen 2026-01-16 06:20
Open for 45 days

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-16 06:20

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c4939bac2d8aaa532968bf2dc70b48dfc04a4670

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /v1/webhooks/{EventType}/{Id}
GET /v1/users/{Id}/currentAccountId
GET /v1/vouchers/rules
GET /v1/vouchers/{Code}
PATCH /v1/ads
POST /v1/accounts
POST /v1/accounts/list
POST /v1/accounts/single
POST /v1/accounts/status
POST /v1/ads/list
POST /v1/ads/single
POST /v1/containers
POST /v1/containers/findFromObject
POST /v1/containers/labels
POST /v1/containers/list
POST /v1/containers/listObjects
POST /v1/containers/owner
POST /v1/containers/single
POST /v1/deliveries
POST /v1/deliveries/list
POST /v1/deliveries/single
POST /v1/deliveries/status
POST /v1/feed
POST /v1/feed/message
POST /v1/feed/search
POST /v1/notifications
POST /v1/notifications/defaultfactory
POST /v1/orders
POST /v1/orders/list
POST /v1/orders/listHeaders
POST /v1/orders/single
POST /v1/orders/status
POST /v1/payouts
POST /v1/payouts/balance
POST /v1/payouts/list
POST /v1/payouts/single
POST /v1/stats/list
POST /v1/vouchers
POST /v1/vouchers/claim
POST /v1/vouchers/list
POST /v1/webhooks/EVENT_ACCOUNT_CREATED
POST /v1/webhooks/EVENT_ACCOUNT_UPDATED
POST /v1/webhooks/EVENT_DELIVERY_UPDATED
POST /v1/webhooks/EVENT_PAYOUT_CREATED
POST /v1/webhooks/EVENT_PAYOUT_UPDATED
POST /v1/webhooks/EVENT_USER_UPDATED
POST /v1/webhooks/EventAdCreated
POST /v1/webhooks/EventAdUpdated
POST /v1/webhooks/METADATA_COMPLETE
POST /v1/webhooks/orderstatus
POST /v1/webhooks/{EventType}

Found on 2025-12-24 23:35

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: dev-api.powertoys.ai
Port: 443
URL: https://dev-api.powertoys.ai

First seen 2026-01-11 15:46

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d605668142ebc4c0faf2a86f45f7fa901330c03a1e0

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/Billing/public-params
GET /api/Billing/session-status/{sessionId}
GET /api/Billing/subscription-list
GET /api/Portrait/model-list/{genderuxkey}
GET /api/Portrait/model-photo-list
GET /api/Portrait/model-photo-list/{FluxLoraPortraitTrainingId}
GET /api/Portrait/model-photo/{id}
GET /api/Portrait/model/{id}
GET /api/Portrait/template-list/{genderuxkey}
GET /api/User/profile
POST /api/Billing/cancel-subscription
POST /api/Billing/create-checkout-session/{uxKey}
POST /api/Billing/enroll-free
POST /api/Portrait/model-photo-feeling-lucky/{portraitId}
POST /api/Portrait/model-photo-prompt/{portraitId}
POST /api/Portrait/model-photo-template/{portraitId}/{templateId}
POST /api/Portrait/train
POST /api/Portrait/train/{genderUXKey}/{nickName}

Found on 2026-01-11 15:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: templates.services.prodigi.com
Port: 443
URL: https://templates.services.prodigi.com

First seen 2026-01-04 02:56
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-04 02:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.74.252.44
Domain: brainiacs.kundesjekk.no
Port: 443
URL: https://brainiacs.kundesjekk.no

First seen 2025-12-21 02:02
Last seen 2026-01-02 22:20
Open for 12 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-02 22:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: corena.com.tr
Port: 80
URL: http://corena.com.tr

First seen 2022-09-13 04:05
Last seen 2023-06-14 00:36
Open for 273 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2022-09-13 04:05
  
  380 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: corena.com.tr
Port: 443
URL: https://corena.com.tr

First seen 2022-09-13 04:05
Last seen 2023-06-14 00:36
Open for 273 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2022-09-13 04:05
  
  380 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: www.kokoro-global.com
Port: 443
URL: https://www.kokoro-global.com

First seen 2022-06-18 08:10
Last seen 2023-06-08 09:01
Open for 355 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2022-06-18 08:10
  
  380 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: kokoro-global.com
Port: 443
URL: https://kokoro-global.com

First seen 2022-06-18 08:10
Last seen 2023-06-08 09:01
Open for 355 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2022-06-18 08:10
  
  380 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.74.252.44
Domain: ravifruit.com
Port: 443
URL: https://ravifruit.com

First seen 2023-05-15 20:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af24725a4a80387f2f3b20911e1bd44d4643c33
```
Found 9 files trough .DS_Store spidering:

/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-includes
```
  Found on 2023-05-15 20:28
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 13.74.252.44
Domain: proximo.co.uk
Port: 443
URL: https://proximo.co.uk/.git/config

First seen 2022-03-17 18:44
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ad39a5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/azureappserviceoss/wordpress-azure
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "linux-appservice"]
	remote = origin
	merge = refs/heads/linux-appservice
```
  Found on 2022-03-17 18:44
  
  380 Bytes
Create report

Open service 13.74.252.44:80 · api.shareinpay-test.com

2026-02-12 08:34

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Thu, 12 Feb 2026 08:34:30 GMT
Location: https://api.shareinpay-test.com/

Found 8 hours ago by HttpPlugin

Host 13.74.252.44

Ireland

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Git configuration and history exposed

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Git configuration and history exposed

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available