Domain api.bid2board.com
United States
AMAZON-02
Software information

Heroku

tcp/443 tcp/80

  • GraphQL introspection is enabled.
    First seen 2025-11-18 01:39
    Last seen 2026-01-02 15:47
    Open for 45 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa378891b17a1f5c9c5f0bf35a5fa79b49537ae15a1

      GraphQL introspection enabled at /graphql
Types: 132 (by kind: ENUM: 35, INPUT_OBJECT: 24, OBJECT: 65, SCALAR: 8)
Operations:
- Query: Query | fields: conversionRates, findAgents, findSuppliers, getAnnualServiceReports, makers
- Mutation: Mutation | fields: addError, addRating, addServiceRequest, addShip, addTransaction
Directives: deprecated, include, skip, specifiedBy (total: 4)
      Found on 2026-01-02 15:47
      471.9 kBytes
    Create report
  • GraphQL introspection is enabled.
    First seen 2025-11-18 01:39
    Last seen 2026-01-02 07:16
    Open for 45 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa378891b17a1f5c9c5f0bf35a5fa79b49537ae15a1

      GraphQL introspection enabled at /graphql
Types: 132 (by kind: ENUM: 35, INPUT_OBJECT: 24, OBJECT: 65, SCALAR: 8)
Operations:
- Query: Query | fields: conversionRates, findAgents, findSuppliers, getAnnualServiceReports, makers
- Mutation: Mutation | fields: addError, addRating, addServiceRequest, addShip, addTransaction
Directives: deprecated, include, skip, specifiedBy (total: 4)
      Found on 2026-01-02 07:16
      471.9 kBytes
    Create report

  • Open service 52.223.53.203:80 · api.bid2board.com

    2026-01-09 22:28 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 22:29:31 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=LNQCPZfXJ6v5VML%2BW%2FxFL7L3P%2Bdf7XdRcO7WgMhxhss%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767997771"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=LNQCPZfXJ6v5VML%2BW%2FxFL7L3P%2Bdf7XdRcO7WgMhxhss%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767997771"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2 days ago by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2026-01-09 13:29 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 13:29:43 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Xmz72p6A7MP0CKSFZue0BYsopKzc3CgoE0yQHYsHSlo%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767965383"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Xmz72p6A7MP0CKSFZue0BYsopKzc3CgoE0yQHYsHSlo%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767965383"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 3 days ago by HttpPlugin
    Create report

  • Open service 52.223.53.203:80 · api.bid2board.com

    2026-01-02 15:47 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 15:47:40 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=5%2BQ%2BcKaOx%2BJatmsVDRT2U68tpPWIdc47wrUVJKBOMpg%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767368860"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=5%2BQ%2BcKaOx%2BJatmsVDRT2U68tpPWIdc47wrUVJKBOMpg%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767368860"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2026-01-02 07:16 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 07:16:20 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=VNnC5qPU5RWFnvDnxoeP%2Bx242jFFOINTfKODNYhzTuk%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767338180"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=VNnC5qPU5RWFnvDnxoeP%2Bx242jFFOINTfKODNYhzTuk%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767338180"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2025-12-30 09:34 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Tue, 30 Dec 2025 09:34:04 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=3Eraeqf6Feyv%2FiizJ2ygewMVG5XZsHHtnfJDgDE0V4g%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767087244"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=3Eraeqf6Feyv%2FiizJ2ygewMVG5XZsHHtnfJDgDE0V4g%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767087244"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-30 by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2025-12-23 01:35 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Tue, 23 Dec 2025 01:35:08 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=k%2FBPKKY54Sz8Lt7IKjEInltWzXD090GQdlbys7fQ05o%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766453708"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=k%2FBPKKY54Sz8Lt7IKjEInltWzXD090GQdlbys7fQ05o%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766453708"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-23 by HttpPlugin
    Create report

  • Open service 52.223.53.203:80 · api.bid2board.com

    2025-12-22 09:28 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Mon, 22 Dec 2025 09:28:03 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=W5ndTBYuQLKT%2FZGKo5gWddi5ICuFYd%2FQXsFfQlDboIY%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766395683"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=W5ndTBYuQLKT%2FZGKo5gWddi5ICuFYd%2FQXsFfQlDboIY%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766395683"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-22 by HttpPlugin
    Create report

  • Open service 52.223.53.203:80 · api.bid2board.com

    2025-12-20 12:46 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Sat, 20 Dec 2025 12:46:14 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Atrmz%2Fwwmnk1aFDpqng%2Bfa0u6JGSJshyJVVGSKQuGbI%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766234774"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Atrmz%2Fwwmnk1aFDpqng%2Bfa0u6JGSJshyJVVGSKQuGbI%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766234774"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-20 by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2025-12-20 10:55 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Sat, 20 Dec 2025 10:55:31 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=nK%2B6hSdqCDaN9BS8n2LxE4vtLMHOo5LahKEzrCwFZ74%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766228131"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=nK%2B6hSdqCDaN9BS8n2LxE4vtLMHOo5LahKEzrCwFZ74%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766228131"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-20 by HttpPlugin
    Create report

  • Open service 15.197.253.240:443 · api.bid2board.com

    2025-12-19 10:35 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Content-Length: 12
Content-Type: text/plain; charset=utf-8
Date: Fri, 19 Dec 2025 10:35:53 GMT
Etag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"
Expect-Ct: max-age=0
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: no-referrer
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=T4Tj%2BDBcApAzytcaYF9v%2BBDGW8sWmCQuqxDJFdfuUQo%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766140553"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=T4Tj%2BDBcApAzytcaYF9v%2BBDGW8sWmCQuqxDJFdfuUQo%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766140553"
Server: Heroku
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Origin, Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 0
Connection: close


Unauthorized
    Found 2025-12-19 by HttpPlugin
    Create report
api.bid2board.com
Fingerprint:
c4791368f5238f746bb181648c2828b48de1504d994a3519c3d47a3892812038
CN:
api.bid2board.com
Key:
RSA-2048
Issuer:
R12
Not before:
2025-11-18 00:39
Not after:
2026-02-16 00:39
Domain summary

api.bid2board.com 11

1 recorded
IP summary

52.223.53.203 1 15.197.253.240 1

2 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice