Host 35.209.18.159
United States
Software information
istio-envoy
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 35.209.18.159
Domain: birthing-pod.adeptmind.ai
Port: 443
URL: https://birthing-pod.adeptmind.aiFirst seen 2025-12-02 12:54
Last seen 2026-01-31 11:56
Open for 59 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb49571074e8e94892b0a85d34d276093c6ce631f16Public Swagger UI/API detected at path: /api/swagger.json - sample paths: DELETE /projects/{project_name} GET /health GET /mcps GET /mcps/categories GET /mcps/{mcp_id} GET /projects GET /projects/{name}/architecture-raw GET /projects/{project_name}/implement/{session_id}/progress GET /sessions/{session_id} POST /product-spec-review POST /product-spec-update POST /projects/{project_name}/implement POST /projects/{project_name}/launch POST /sessionsFound on 2026-01-31 11:56
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 35.209.18.159
Domain: api.search-pre-prod.adeptmind.app
Port: 443
URL: https://api.search-pre-prod.adeptmind.appFirst seen 2025-11-11 17:07
Last seen 2026-01-16 15:13
Open for 65 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-16 15:13
-
-
Open service 35.209.18.159:443 · birthing-pod.adeptmind.ai
2026-01-23 14:45
HTTP/1.1 302 Found server: istio-envoy date: Fri, 23 Jan 2026 14:45:29 GMT content-type: text/html; charset=utf-8 content-length: 199 location: /login vary: Cookie x-envoy-upstream-service-time: 5 connection: close Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/login">/login</a>. If not, click the link.
Found 2026-01-23 by HttpPluginCreate report
-
Open service 35.209.18.159:443 · search-pre-prod.adeptmind.app
2026-01-10 19:22
HTTP/1.1 404 Not Found date: Sat, 10 Jan 2026 19:22:59 GMT server: istio-envoy connection: close content-length: 0
Found 2026-01-10 by HttpPluginCreate report
-
Open service 35.209.18.159:80 · search-pre-prod.adeptmind.app
2026-01-10 19:22
HTTP/1.1 301 Moved Permanently location: https://search-pre-prod.adeptmind.app/ date: Sat, 10 Jan 2026 19:23:00 GMT server: istio-envoy connection: close content-length: 0
Found 2026-01-10 by HttpPluginCreate report
-
Open service 35.209.18.159:80 · api.search-pre-prod.adeptmind.app
2026-01-10 16:10
HTTP/1.1 301 Moved Permanently location: https://api.search-pre-prod.adeptmind.app/ date: Sat, 10 Jan 2026 16:10:35 GMT server: istio-envoy connection: close content-length: 0
Found 2026-01-10 by HttpPluginCreate report
-
Open service 35.209.18.159:443 · api.search-pre-prod.adeptmind.app
2026-01-10 16:10
HTTP/1.1 200 OK content-security-policy: default-src 'self';style-src 'self' 'unsafe-inline' unpkg.com;img-src 'self' 'unsafe-eval' data:;script-src 'self' 'unsafe-eval' unpkg.com 'unsafe-inline';connect-src 'self';font-src 'self';object-src 'none';media-src 'none';frame-src 'none';worker-src 'none';base-uri 'none';form-action 'none';frame-ancestors 'none';script-src-attr 'none';upgrade-insecure-requests cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 referrer-policy: no-referrer strict-transport-security: max-age=31536000; includeSubDomains x-content-type-options: nosniff x-dns-prefetch-control: off x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 0 access-control-allow-origin: * content-type: application/json; charset=utf-8 content-length: 139 date: Sat, 10 Jan 2026 16:10:34 GMT x-envoy-upstream-service-time: 4 server: istio-envoy connection: close {"message":"Welcome to the Adeptmind API! 🚀","docs":"https://api.search-pre-prod.adeptmind.app/swagger/","environment":"pre-production"}Found 2026-01-10 by HttpPluginCreate report