Domain api.dev.ohheymind.com
United States
AMAZON-02
Software information

Vercel

tcp/443

  • GraphQL introspection is enabled.
    First seen 2025-10-25 01:08
    Last seen 2025-12-01 13:45
    Open for 37 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa35b2c7c68c246a0cc636830cbf6f6b8acc6e3d0bc

      GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 2, INPUT_OBJECT: 16, OBJECT: 16, SCALAR: 6)
Operations:
- Query: Query | fields: activities, connections, devices, getActivityById, getMindStateById
- Mutation: Mutation | fields: createActivity, createConnection, createMindState, createProfile, createReminder
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
      Found on 2025-12-01 13:45
      52.4 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa33d02bcf3294da371cac4d176f20b5313cfebcd3b

      GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 2, INPUT_OBJECT: 15, OBJECT: 16, SCALAR: 6)
Operations:
- Query: Query | fields: activities, connections, devices, getActivityById, getMindStateById
- Mutation: Mutation | fields: createActivity, createConnection, createMindState, createProfile, createReminder
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2025-10-25 01:08
      50.2 kBytes
    Create report

  • Open service 216.150.16.129:443 · api.dev.ohheymind.com

    2026-01-09 03:36 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, x-apollo-operation-name, apollo-require-preflight
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=0, must-revalidate
Content-Type: application/json
Date: Fri, 09 Jan 2026 03:36:37 GMT
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
Www-Authenticate: Bearer
X-Clerk-Auth-Reason: dev-browser-missing
X-Clerk-Auth-Status: signed-out
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: fra1::vjpc5-1767929796992-7aae0e7033c5
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


{"error":"Unauthorized"}
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 216.150.16.129:443 · api.dev.ohheymind.com

    2026-01-02 07:08 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, x-apollo-operation-name, apollo-require-preflight
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=0, must-revalidate
Content-Type: application/json
Date: Fri, 02 Jan 2026 07:08:16 GMT
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
Www-Authenticate: Bearer
X-Clerk-Auth-Reason: dev-browser-missing
X-Clerk-Auth-Status: signed-out
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: fra1::7r9mn-1767337694408-c1903e6d9da9
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


{"error":"Unauthorized"}
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 216.150.16.129:443 · api.dev.ohheymind.com

    2025-12-22 17:24 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, x-apollo-operation-name, apollo-require-preflight
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=0, must-revalidate
Content-Type: application/json
Date: Mon, 22 Dec 2025 17:24:40 GMT
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
Www-Authenticate: Bearer
X-Clerk-Auth-Reason: dev-browser-missing
X-Clerk-Auth-Status: signed-out
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: fra1::hqvmw-1766424280585-41024bad4b5c
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


{"error":"Unauthorized"}
    Found 2025-12-22 by HttpPlugin
    Create report

  • Open service 216.150.16.129:443 · api.dev.ohheymind.com

    2025-12-20 21:11 

    HTTP/1.1 401 Unauthorized
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, x-apollo-operation-name, apollo-require-preflight
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=0, must-revalidate
Content-Type: application/json
Date: Sat, 20 Dec 2025 21:11:10 GMT
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
Www-Authenticate: Bearer
X-Clerk-Auth-Reason: dev-browser-missing
X-Clerk-Auth-Status: signed-out
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: fra1::qpcrt-1766265070149-8ac3672d09d5
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


{"error":"Unauthorized"}
    Found 2025-12-20 by HttpPlugin
    Create report
api.dev.ohheymind.com
Fingerprint:
b8be33a7338ca81a4fb9a5bf1d52762a2fd09b778db65c84f4b9d4a735f255b8
CN:
api.dev.ohheymind.com
Key:
RSA-2048
Issuer:
R12
Not before:
2025-12-15 04:11
Not after:
2026-03-15 04:11
Domain summary

api.dev.ohheymind.com 5

1 recorded
IP summary

216.150.16.129 2

1 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice