LeakIX - Host api.stim.promo.dev

Domain api.stim.promo.dev

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.253.240
Domain: api.stim.promo.dev
Port: 443
URL: https://api.stim.promo.dev

First seen 2025-11-22 01:24
Last seen 2026-01-02 10:47
Open for 41 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35bda1e4c134581107f7d120570dd0510d8461642
```
GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 9, INPUT_OBJECT: 17, INTERFACE: 2, OBJECT: 54, SCALAR: 9)
Operations:
- Query: Query | fields: _empty, beneficiaries, beneficiary, beneficiaryOperations, platforms
- Mutation: Mutation | fields: _empty, acceptRules, createBeneficiary, createPlatform, updateBeneficiary
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 10:47
  
  153.1 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 52.223.53.203
Domain: api.stim.promo.dev
Port: 80
URL: http://api.stim.promo.dev

First seen 2025-11-22 01:24
Last seen 2026-01-03 01:08
Open for 41 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35bda1e4c134581107f7d120570dd0510d8461642
```
GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 9, INPUT_OBJECT: 17, INTERFACE: 2, OBJECT: 54, SCALAR: 9)
Operations:
- Query: Query | fields: _empty, beneficiaries, beneficiary, beneficiaryOperations, platforms
- Mutation: Mutation | fields: _empty, acceptRules, createBeneficiary, createPlatform, updateBeneficiary
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-03 01:08
  
  153.1 kBytes
Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2026-01-09 19:59

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Fri, 09 Jan 2026 20:00:35 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AWDVHPLz5WKgD2Zwg4iM8ioMlH3ikKZL39uZSwJRTuk%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767988835"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AWDVHPLz5WKgD2Zwg4iM8ioMlH3ikKZL39uZSwJRTuk%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767988835"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 15.197.253.240:443 · api.stim.promo.dev

2026-01-09 03:10

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Fri, 09 Jan 2026 03:10:17 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=t5YlupkyySxIOloI5dDWZGd0lnKEtTMWzJbWnnNzIIQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767928217"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=t5YlupkyySxIOloI5dDWZGd0lnKEtTMWzJbWnnNzIIQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767928217"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2026-01-03 01:08

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Sat, 03 Jan 2026 01:08:14 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=HmH6hgur8FRRyuwOhpaIV53McYYYqJ5ZffwFjttgzmc%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767402494"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=HmH6hgur8FRRyuwOhpaIV53McYYYqJ5ZffwFjttgzmc%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767402494"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-03 by HttpPlugin

Create report

Open service 15.197.253.240:443 · api.stim.promo.dev

2026-01-02 10:47

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Fri, 02 Jan 2026 10:47:58 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lrtndN3ADxRUwg0v2Kf04GkR9aYNQur7fgMcBa64LJ0%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767350878"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lrtndN3ADxRUwg0v2Kf04GkR9aYNQur7fgMcBa64LJ0%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767350878"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2025-12-30 14:42

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Tue, 30 Dec 2025 14:42:07 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=fsc3oBjnjZROvHKGbow5Qvjx3uztalEjuputcQffxRU%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767105727"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=fsc3oBjnjZROvHKGbow5Qvjx3uztalEjuputcQffxRU%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767105727"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-30 by HttpPlugin

Create report

Open service 15.197.253.240:443 · api.stim.promo.dev

2025-12-22 19:02

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Mon, 22 Dec 2025 19:02:56 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=CcNTmdsG6o61KnOdny%2F%2Fv6X50VgsrT%2Feo2qbkpV39m0%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766430176"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=CcNTmdsG6o61KnOdny%2F%2Fv6X50VgsrT%2Feo2qbkpV39m0%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766430176"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2025-12-22 10:49

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Mon, 22 Dec 2025 10:49:27 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=LyaqS%2BuCaKhDPba9RrxN7a0ykQeCMYyfXTR1LMayAXQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766400567"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=LyaqS%2BuCaKhDPba9RrxN7a0ykQeCMYyfXTR1LMayAXQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766400567"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2025-12-21 10:49

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Sun, 21 Dec 2025 10:49:54 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=7JIegNHQu%2BFcTo2qegCdA%2BzuRnOO8bmxHjyDUVk8HsQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766314194"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=7JIegNHQu%2BFcTo2qegCdA%2BzuRnOO8bmxHjyDUVk8HsQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766314194"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 15.197.253.240:443 · api.stim.promo.dev

2025-12-20 20:47

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Sat, 20 Dec 2025 20:47:18 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=3a4BpgRLLxXqx%2FrAP8kmFxq2%2FVc6rDXmKXryJfkKeIE%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766263638"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=3a4BpgRLLxXqx%2FrAP8kmFxq2%2FVc6rDXmKXryJfkKeIE%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766263638"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-20 by HttpPlugin

Create report

Open service 52.223.53.203:80 · api.stim.promo.dev

2025-12-19 08:42

HTTP/1.1 404 Not Found
Content-Length: 139
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=utf-8
Date: Fri, 19 Dec 2025 08:42:34 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WhaLAKw1TPsxcWsk5QnuKUlB%2FwgJIFxTCDLyNI6NxuQ%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766133754"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WhaLAKw1TPsxcWsk5QnuKUlB%2FwgJIFxTCDLyNI6NxuQ%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766133754"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Powered-By: Express
Connection: close

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-19 by HttpPlugin

Create report

api.stim.promo.dev

Fingerprint:

58a6eedda48b8fb26c118d4817d045f02157d3ccaa0ff7c5d7b3ddae1f39c8cf

CN:

api.stim.promo.dev

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-22 00:25

Not after:

2026-02-20 00:25

Domain summary

api.stim.promo.dev 11

1 recorded

IP summary

52.223.53.203 1 15.197.253.240 1

2 recorded

Domain api.stim.promo.dev

United States

Software information

GraphQL introspection is enabled.

GraphQL introspection is enabled.

api.stim.promo.dev

Domain summary

IP summary