LeakIX - Host api-dev.yondr.es

Domain api-dev.yondr.es

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 99.83.185.157
Domain: api-dev.yondr.es
Port: 443
URL: https://api-dev.yondr.es

First seen 2025-12-09 01:02
Last seen 2026-01-09 05:28
Open for 31 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b42f53d0da0cbdc06edc8db34fa632b41d3841d6c

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/profiles/{profileId}/blocks/{username}
DELETE /api/v1/profiles/{profileId}/followers/{username}
DELETE /api/v1/profiles/{profileId}/followings/{username}
GET /api/v0/**
GET /api/v1/admin/exercises
GET /api/v1/admin/exercises/{id}
GET /api/v1/calendar/search
GET /api/v1/community/exercises/suggested
GET /api/v1/community/exercises/trending
GET /api/v1/community/posts
GET /api/v1/community/posts/{id}
GET /api/v1/community/posts/{id}/comments
GET /api/v1/community/posts/{id}/comments/{commentId}
GET /api/v1/community/posts/{id}/comments/{commentId}/likes
GET /api/v1/community/posts/{id}/likes
GET /api/v1/community/training-plans/suggested
GET /api/v1/community/training-plans/trending
GET /api/v1/community/workouts/suggested
GET /api/v1/community/workouts/trending
GET /api/v1/exercises
GET /api/v1/exercises/{id}
GET /api/v1/exercises/{id}/sets
GET /api/v1/profiles
GET /api/v1/profiles/{profileId}
GET /api/v1/profiles/{profileId}/blocks
GET /api/v1/profiles/{profileId}/followers
GET /api/v1/profiles/{profileId}/followings
GET /api/v1/profiles/{profileId}/trainings
GET /api/v1/records/
GET /api/v1/records/{id}
GET /api/v1/search/workouts
GET /api/v1/support/questions/{id}
GET /api/v1/support/tutorials
GET /api/v1/tags
GET /api/v1/track/exercises/{id}
GET /api/v1/training-plans
GET /api/v1/training-plans/{id}
GET /api/v1/training-plans/{id}/days
GET /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}
GET /api/v1/users/configuration/notifications
GET /api/v1/users/me
GET /api/v1/users/notifications
GET /api/v1/users/notifications/unread
GET /api/v1/workouts
GET /api/v1/workouts/{id}
GET /api/v1/workouts/{id}/series
GET /api/v1/workouts/{id}/series/{serieId}
POST /api/v1/exercises/{id}/clone
POST /api/v1/exercises/{id}/like
POST /api/v1/exercises/{id}/publish
POST /api/v1/exercises/{id}/send
POST /api/v1/exercises/{id}/star
POST /api/v1/support/questions
POST /api/v1/support/reports
POST /api/v1/support/share-links
POST /api/v1/training-plans/{id}/clone
POST /api/v1/training-plans/{id}/publish
POST /api/v1/training-plans/{id}/schedule
POST /api/v1/training-plans/{id}/send
POST /api/v1/training-plans/{id}/star
POST /api/v1/training-plans/{id}/unschedule
POST /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}/exercises/{exerciseId}/replace/{newExerciseId}
POST /api/v1/users
POST /api/v1/users/activation-confirmation
POST /api/v1/users/change-email
POST /api/v1/users/change-email-confirmation
POST /api/v1/users/change-password
POST /api/v1/users/check
POST /api/v1/users/devices
POST /api/v1/users/login
POST /api/v1/users/notifications/read
POST /api/v1/users/refresh
POST /api/v1/users/reset-password-confirmation
POST /api/v1/users/reset-password-request
POST /api/v1/workouts/{id}/clone
POST /api/v1/workouts/{id}/complete
POST /api/v1/workouts/{id}/like
POST /api/v1/workouts/{id}/publish
POST /api/v1/workouts/{id}/schedule
POST /api/v1/workouts/{id}/send
POST /api/v1/workouts/{id}/series/{serieId}/exercises/{exerciseId}/replace/{newExerciseId}
POST /api/v1/workouts/{id}/star
POST /api/v1/workouts/{id}/unschedule
PUT /api/v1/training-plans/{id}/workouts/{workoutId}
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/exercises/{exerciseId}/sets
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/series
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}/exercises/{exerciseId}
PUT /api/v1/workouts/{id}/exercises/{exerciseId}/sets
PUT /api/v1/workouts/{id}/series/{serieId}/exercises/{exerciseId}

Found on 2026-01-09 05:28

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.223.53.203
Domain: api-dev.yondr.es
Port: 80
URL: http://api-dev.yondr.es

First seen 2025-12-09 01:02
Last seen 2026-01-10 02:14
Open for 32 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b42f53d0da0cbdc06edc8db34fa632b41d3841d6c

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/profiles/{profileId}/blocks/{username}
DELETE /api/v1/profiles/{profileId}/followers/{username}
DELETE /api/v1/profiles/{profileId}/followings/{username}
GET /api/v0/**
GET /api/v1/admin/exercises
GET /api/v1/admin/exercises/{id}
GET /api/v1/calendar/search
GET /api/v1/community/exercises/suggested
GET /api/v1/community/exercises/trending
GET /api/v1/community/posts
GET /api/v1/community/posts/{id}
GET /api/v1/community/posts/{id}/comments
GET /api/v1/community/posts/{id}/comments/{commentId}
GET /api/v1/community/posts/{id}/comments/{commentId}/likes
GET /api/v1/community/posts/{id}/likes
GET /api/v1/community/training-plans/suggested
GET /api/v1/community/training-plans/trending
GET /api/v1/community/workouts/suggested
GET /api/v1/community/workouts/trending
GET /api/v1/exercises
GET /api/v1/exercises/{id}
GET /api/v1/exercises/{id}/sets
GET /api/v1/profiles
GET /api/v1/profiles/{profileId}
GET /api/v1/profiles/{profileId}/blocks
GET /api/v1/profiles/{profileId}/followers
GET /api/v1/profiles/{profileId}/followings
GET /api/v1/profiles/{profileId}/trainings
GET /api/v1/records/
GET /api/v1/records/{id}
GET /api/v1/search/workouts
GET /api/v1/support/questions/{id}
GET /api/v1/support/tutorials
GET /api/v1/tags
GET /api/v1/track/exercises/{id}
GET /api/v1/training-plans
GET /api/v1/training-plans/{id}
GET /api/v1/training-plans/{id}/days
GET /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}
GET /api/v1/users/configuration/notifications
GET /api/v1/users/me
GET /api/v1/users/notifications
GET /api/v1/users/notifications/unread
GET /api/v1/workouts
GET /api/v1/workouts/{id}
GET /api/v1/workouts/{id}/series
GET /api/v1/workouts/{id}/series/{serieId}
POST /api/v1/exercises/{id}/clone
POST /api/v1/exercises/{id}/like
POST /api/v1/exercises/{id}/publish
POST /api/v1/exercises/{id}/send
POST /api/v1/exercises/{id}/star
POST /api/v1/support/questions
POST /api/v1/support/reports
POST /api/v1/support/share-links
POST /api/v1/training-plans/{id}/clone
POST /api/v1/training-plans/{id}/publish
POST /api/v1/training-plans/{id}/schedule
POST /api/v1/training-plans/{id}/send
POST /api/v1/training-plans/{id}/star
POST /api/v1/training-plans/{id}/unschedule
POST /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}/exercises/{exerciseId}/replace/{newExerciseId}
POST /api/v1/users
POST /api/v1/users/activation-confirmation
POST /api/v1/users/change-email
POST /api/v1/users/change-email-confirmation
POST /api/v1/users/change-password
POST /api/v1/users/check
POST /api/v1/users/devices
POST /api/v1/users/login
POST /api/v1/users/notifications/read
POST /api/v1/users/refresh
POST /api/v1/users/reset-password-confirmation
POST /api/v1/users/reset-password-request
POST /api/v1/workouts/{id}/clone
POST /api/v1/workouts/{id}/complete
POST /api/v1/workouts/{id}/like
POST /api/v1/workouts/{id}/publish
POST /api/v1/workouts/{id}/schedule
POST /api/v1/workouts/{id}/send
POST /api/v1/workouts/{id}/series/{serieId}/exercises/{exerciseId}/replace/{newExerciseId}
POST /api/v1/workouts/{id}/star
POST /api/v1/workouts/{id}/unschedule
PUT /api/v1/training-plans/{id}/workouts/{workoutId}
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/exercises/{exerciseId}/sets
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/series
PUT /api/v1/training-plans/{id}/workouts/{workoutId}/series/{serieId}/exercises/{exerciseId}
PUT /api/v1/workouts/{id}/exercises/{exerciseId}/sets
PUT /api/v1/workouts/{id}/series/{serieId}/exercises/{exerciseId}

Found on 2026-01-10 02:14

Create report

Open service 52.223.53.203:80 · api-dev.yondr.es

2026-01-10 02:14

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Sat, 10 Jan 2026 02:15:44 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=JHqCYq94phkt4sMpGZ1AllOosz3vK5X55MVZV8EzJlU%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1768011344"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=JHqCYq94phkt4sMpGZ1AllOosz3vK5X55MVZV8EzJlU%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1768011344"
Server: Heroku
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2026-01-10 by HttpPlugin

Create report

Open service 99.83.185.157:443 · api-dev.yondr.es

2026-01-09 05:28

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Fri, 09 Jan 2026 05:28:11 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=0l1tg%2BaX4jMIo0FwIZNTsgeiNpLSIu7mwcy%2B9a%2FH2LM%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767936491"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=0l1tg%2BaX4jMIo0FwIZNTsgeiNpLSIu7mwcy%2B9a%2FH2LM%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767936491"
Server: Heroku
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api-dev.yondr.es

2026-01-02 23:39

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Fri, 02 Jan 2026 23:39:43 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=cL6HMpNoZ2L3o50k%2Fg9VtICKBAPJIZRbCVNVyxEMF4o%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767397183"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=cL6HMpNoZ2L3o50k%2Fg9VtICKBAPJIZRbCVNVyxEMF4o%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767397183"
Server: Heroku
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.185.157:443 · api-dev.yondr.es

2026-01-02 11:38

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Fri, 02 Jan 2026 11:38:00 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=l7HRwL8dWDGkj5P8DGDaE9TF9LYkw20H4fBATvSsI6M%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767353880"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=l7HRwL8dWDGkj5P8DGDaE9TF9LYkw20H4fBATvSsI6M%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767353880"
Server: Heroku
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 99.83.185.157:443 · api-dev.yondr.es

2025-12-30 14:04

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Tue, 30 Dec 2025 14:04:22 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=I5PXbjpIwyGhF0u9L9XbKQWb8B0NTA0KJ1oAui0XM3Y%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767103462"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=I5PXbjpIwyGhF0u9L9XbKQWb8B0NTA0KJ1oAui0XM3Y%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767103462"
Server: Heroku
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-30 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api-dev.yondr.es

2025-12-23 09:55

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Tue, 23 Dec 2025 09:55:20 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=NHycpIq633BQk%2BFQW29JN2fSgDqEn7hcOu3EIc%2B9%2B2I%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766483720"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=NHycpIq633BQk%2BFQW29JN2fSgDqEn7hcOu3EIc%2B9%2B2I%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766483720"
Server: Heroku
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-23 by HttpPlugin

Create report

Open service 99.83.185.157:443 · api-dev.yondr.es

2025-12-22 13:08

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Mon, 22 Dec 2025 13:08:43 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=gr0kJ98L0P8vcs9weY%2Fs9p2wnLtKq52Z9YFSQnLQ0%2BI%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766408923"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=gr0kJ98L0P8vcs9weY%2Fs9p2wnLtKq52Z9YFSQnLQ0%2BI%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766408923"
Server: Heroku
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api-dev.yondr.es

2025-12-21 09:52

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Sun, 21 Dec 2025 09:52:30 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=e%2Fzk%2BwyMbiSbuggiYt07N6ZKxkW%2F3GiZrvCx5C3fIbY%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766310750"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=e%2Fzk%2BwyMbiSbuggiYt07N6ZKxkW%2F3GiZrvCx5C3fIbY%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766310750"
Server: Heroku
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 99.83.185.157:443 · api-dev.yondr.es

2025-12-20 09:17

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Sat, 20 Dec 2025 09:17:35 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=KhXeFC7mzjgcMWrzMMU13Ug8X6J%2FSFWhVvOfCz2AUFQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766222255"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=KhXeFC7mzjgcMWrzMMU13Ug8X6J%2FSFWhVvOfCz2AUFQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766222255"
Server: Heroku
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-20 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api-dev.yondr.es

2025-12-19 10:57

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en-US
Content-Length: 529
Content-Type: text/html
Date: Fri, 19 Dec 2025 10:57:36 GMT
Expires: 0
Last-Modified: Wed, 08 Oct 2025 08:56:43 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Pragma: no-cache
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=dnUPCRMHKH33hiXwnMd%2Bb%2FjHyI8bnJEuOFbPgOAqZdM%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766141856"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=dnUPCRMHKH33hiXwnMd%2Bb%2FjHyI8bnJEuOFbPgOAqZdM%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766141856"
Server: Heroku
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Connection: close

Page title: yondr

<!doctype html>
<html class="no-js" lang="en" dir="ltr">
<head>
    <base href="./" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <title>yondr</title>
    <meta name="description" content="Description for yondr">
    <meta name="google" value="notranslate">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="shortcut icon" href="favicon.ico" />
    <link rel="manifest" href="manifest.webapp" />
</head>
<body>
</body>
</html>

Found 2025-12-19 by HttpPlugin

Create report

api-dev.yondr.es

Fingerprint:

fb7191ecc7e7a9ad957d3d4d52c94ef230391f670601f401cb9230510994c3be

CN:

api-dev.yondr.es

Key:

RSA-2048

Issuer:

R13

Not before:

2025-12-09 00:03

Not after:

2026-03-09 00:03

Domain summary

api-dev.yondr.es 11

1 recorded

IP summary

52.223.53.203 1 99.83.185.157 1

2 recorded