Domain api.certify-ed.com
United States
Software information
Heroku
tcp/443 tcp/80
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-11-11 00:36
Last seen 2026-01-02 14:06
Open for 52 days-
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d6f7266f4bfe653dec1f4d939048a6e996486034GraphQL introspection enabled at /api/graphql Types: 272 (by kind: ENUM: 18, INPUT_OBJECT: 83, INTERFACE: 1, OBJECT: 164, SCALAR: 6) Operations: - Query: RootQueryType | fields: accounts, certificationExam, certificationProgresses, courses, currentAccount - Mutation: RootMutationType | fields: acceptTerms, addCourseAssets, addSimulation, addVrVideoExample, cancelReminder - Subscription: RootSubscriptionType | fields: notificationFeed, seedCourseFeed Directives: include, skip (total: 2)
Found on 2026-01-02 14:06213.5 kBytes
-
-
Open service 35.71.179.82:443 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Sat, 10 Jan 2026 01:54:12 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WSEz26XKpRTrHW6fT0v9GxL1oTIEB2vxW8qKJQ6yRHw%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010053"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WSEz26XKpRTrHW6fT0v9GxL1oTIEB2vxW8qKJQ6yRHw%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010053" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: f8c8b86f-bfe3-e74f-03e0-afc33d115f53 Connection: close helloFound 2026-01-10 by HttpPluginCreate report
-
Open service 75.2.60.68:80 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 301 Moved Permanently Cache-Control: max-age=0, private, must-revalidate Content-Length: 0 Date: Sat, 10 Jan 2026 01:55:13 GMT Location: https://prod-api.certify-ed.com/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010114"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010114" Server: Heroku Via: 1.1 heroku-router Connection: closeFound 2026-01-10 by HttpPluginCreate report
-
Open service 99.83.220.108:443 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Sat, 10 Jan 2026 01:54:13 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=4bolBihrnlqDRv25IJ6aAT4qZkhKZUqi9peslg9k5jU%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010054"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=4bolBihrnlqDRv25IJ6aAT4qZkhKZUqi9peslg9k5jU%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010054" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 90ee5056-ae52-e7fa-affc-a5a412745798 Connection: close helloFound 2026-01-10 by HttpPluginCreate report
-
Open service 35.71.179.82:80 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 301 Moved Permanently Cache-Control: max-age=0, private, must-revalidate Content-Length: 0 Date: Sat, 10 Jan 2026 01:55:13 GMT Location: https://prod-api.certify-ed.com/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010114"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010114" Server: Heroku Via: 1.1 heroku-router Connection: closeFound 2026-01-10 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Sat, 10 Jan 2026 01:54:13 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WSEz26XKpRTrHW6fT0v9GxL1oTIEB2vxW8qKJQ6yRHw%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010053"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WSEz26XKpRTrHW6fT0v9GxL1oTIEB2vxW8qKJQ6yRHw%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010053" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 2e5a8663-dc0a-42a2-0818-afcc61076b9e Connection: close helloFound 2026-01-10 by HttpPluginCreate report
-
Open service 13.248.244.96:443 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Sat, 10 Jan 2026 01:54:12 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lQOmqbhJN6nJ2prrZHpqhiYhj0i%2Be0UYS6gjpV3MD90%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010052"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lQOmqbhJN6nJ2prrZHpqhiYhj0i%2Be0UYS6gjpV3MD90%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010052" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: a5a862c9-0a8d-a39a-6250-e92807ba2770 Connection: close helloFound 2026-01-10 by HttpPluginCreate report
-
Open service 13.248.244.96:80 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 301 Moved Permanently Cache-Control: max-age=0, private, must-revalidate Content-Length: 0 Date: Sat, 10 Jan 2026 01:55:13 GMT Location: https://prod-api.certify-ed.com/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010114"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=JpYx4KI9ofuSHdZwYp%2BRE6xOnJI80PDsykGymxXKYjg%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010114" Server: Heroku Via: 1.1 heroku-router Connection: closeFound 2026-01-10 by HttpPluginCreate report
-
Open service 99.83.220.108:80 · api.certify-ed.com
2026-01-10 01:54
HTTP/1.1 301 Moved Permanently Cache-Control: max-age=0, private, must-revalidate Content-Length: 0 Date: Sat, 10 Jan 2026 01:55:13 GMT Location: https://prod-api.certify-ed.com/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ZIfVTJmUJ78fzl20bknYVfg13jAwtezP%2FjkxNHtaqnI%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768010113"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ZIfVTJmUJ78fzl20bknYVfg13jAwtezP%2FjkxNHtaqnI%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768010113" Server: Heroku Via: 1.1 heroku-router Connection: closeFound 2026-01-10 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2026-01-08 22:04
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Thu, 08 Jan 2026 22:04:52 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=JABTxy%2FnlH7lYXiZNRCA1KpUXy0lgSvZK7xczQ3Z2TA%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767909893"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=JABTxy%2FnlH7lYXiZNRCA1KpUXy0lgSvZK7xczQ3Z2TA%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767909893" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: edac1d51-8538-fd9e-8919-4be0f0010949 Connection: close helloFound 2026-01-08 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2026-01-02 14:06
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Fri, 02 Jan 2026 14:06:32 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=naA567xouFcofiJTyH%2FvSQRYhFKpBYO%2Bom5ZjzPVvEo%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767362793"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=naA567xouFcofiJTyH%2FvSQRYhFKpBYO%2Bom5ZjzPVvEo%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767362793" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 24a2d854-dbe5-e839-c5ac-0780d07b8c71 Connection: close helloFound 2026-01-02 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2025-12-30 14:43
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Tue, 30 Dec 2025 14:43:34 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=suhuL6wp8RoTHVdPFMkrG2nlC6Avk6AI4Ay24DyvDmE%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767105814"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=suhuL6wp8RoTHVdPFMkrG2nlC6Avk6AI4Ay24DyvDmE%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767105814" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 8f4db60e-6286-58cf-a20e-293f3e730a19 Connection: close helloFound 2025-12-30 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2025-12-22 10:15
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Mon, 22 Dec 2025 10:15:45 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=sQ2mE4Hi%2FlJdoz7QIEfrDdK98jDqHWcOTD4WcanZt08%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766398546"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=sQ2mE4Hi%2FlJdoz7QIEfrDdK98jDqHWcOTD4WcanZt08%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766398546" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 13684349-0fd3-442c-d713-81d3cee57c43 Connection: close helloFound 2025-12-22 by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.certify-ed.com
2025-12-20 05:47
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Cache-Control: max-age=0, private, must-revalidate Content-Length: 5 Content-Type: text/plain; charset=utf-8 Date: Sat, 20 Dec 2025 05:47:24 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=e3a5pd14wEUX2DYcphkhqqUhE1Y4ytCDccxp9s%2F6PfA%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766209644"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=e3a5pd14wEUX2DYcphkhqqUhE1Y4ytCDccxp9s%2F6PfA%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766209644" Server: Heroku Strict-Transport-Security: max-age=31536000 Via: 1.1 heroku-router X-Request-Id: 76d81c3b-080a-6469-4d3e-13ab4db1f8d9 Connection: close helloFound 2025-12-20 by HttpPluginCreate report