Domain api.tapkat.dev
United States
AMAZON-02
Software information

Heroku

tcp/443

  • GraphQL introspection is enabled.
    First seen 2025-11-20 00:42
    Last seen 2026-01-02 11:24
    Open for 43 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3ed49c27f8449ae4d2dce695381bb4eeb28d42003

      GraphQL introspection enabled at /graphql
Types: 75 (by kind: ENUM: 3, INPUT_OBJECT: 7, OBJECT: 54, SCALAR: 11)
Operations:
- Query: Query | fields: accountApplication, blogPosts, invitation, nonprofitSearch, promoCode
- Mutation: Mutation | fields: acceptInvitation, applyForAccount, createAccount, createMailinTicketRequest, encryptData
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2026-01-02 11:24
      89.8 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3966094b3c544f7b12267fec7db0cc5b79034ef0f

      GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 7, OBJECT: 55, SCALAR: 11)
Operations:
- Query: Query | fields: accountApplication, blogPosts, invitation, nonprofitSearch, promoCode
- Mutation: Mutation | fields: acceptInvitation, applyForAccount, createAccount, createMailinTicketRequest, encryptData
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2025-12-22 15:12
      91.2 kBytes
    Create report

  • Open service 75.2.60.68:443 · api.tapkat.dev

    2026-01-08 22:25 

    HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Access-Control-Request-Method: *
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 57
Content-Type: text/plain; charset=utf-8
Etag: W/"1f95bc512fa09d13879554128f5bb42b"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=j9xpBzxK5%2FCpNhqajq9qF7pizbQwy6NNllTE5CILmxo%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767911144"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=j9xpBzxK5%2FCpNhqajq9qF7pizbQwy6NNllTE5CILmxo%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767911144"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 1d88b82f-fc65-8ace-87ac-9863e9aaa3a6
X-Runtime: 0.001044
X-Xss-Protection: 0
Date: Thu, 08 Jan 2026 22:25:44 GMT
Connection: close


This is a GraphQL API. Please POST your query to this URL
    Found 2026-01-08 by HttpPlugin
    Create report

  • Open service 75.2.60.68:443 · api.tapkat.dev

    2026-01-02 11:24 

    HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Access-Control-Request-Method: *
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 57
Content-Type: text/plain; charset=utf-8
Etag: W/"1f95bc512fa09d13879554128f5bb42b"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ppm1rJ1WiF8Chl7M6A5F6JVG%2FTclrLvFu2V6Hgfxv3s%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767353070"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ppm1rJ1WiF8Chl7M6A5F6JVG%2FTclrLvFu2V6Hgfxv3s%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767353070"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 1d80d2d0-925a-f00c-74e9-c1a92bbfcdfa
X-Runtime: 0.004663
X-Xss-Protection: 0
Date: Fri, 02 Jan 2026 11:24:30 GMT
Connection: close


This is a GraphQL API. Please POST your query to this URL
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 75.2.60.68:443 · api.tapkat.dev

    2025-12-22 15:12 

    HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Access-Control-Request-Method: *
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 57
Content-Type: text/plain; charset=utf-8
Etag: W/"1f95bc512fa09d13879554128f5bb42b"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=hu4ZbGdEKF%2F30VQEymUCEX1jkS0FfpWLwsON88Uh%2Fh8%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766416375"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=hu4ZbGdEKF%2F30VQEymUCEX1jkS0FfpWLwsON88Uh%2Fh8%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766416375"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: b3081ed8-bfa0-7d16-932b-14b01845504e
X-Runtime: 0.000921
X-Xss-Protection: 0
Date: Mon, 22 Dec 2025 15:12:55 GMT
Connection: close


This is a GraphQL API. Please POST your query to this URL
    Found 2025-12-22 by HttpPlugin
    Create report

  • Open service 75.2.60.68:443 · api.tapkat.dev

    2025-12-20 11:21 

    HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Access-Control-Request-Method: *
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 57
Content-Type: text/plain; charset=utf-8
Etag: W/"1f95bc512fa09d13879554128f5bb42b"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WN%2FBUH39UFyJSwWM0ibjtYNiEDfYJHv8XjyKpplLRQA%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766229719"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WN%2FBUH39UFyJSwWM0ibjtYNiEDfYJHv8XjyKpplLRQA%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766229719"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 5a5b443e-83fb-f51a-b6e6-70d7040b4bb5
X-Runtime: 0.000985
X-Xss-Protection: 0
Date: Sat, 20 Dec 2025 11:21:59 GMT
Connection: close


This is a GraphQL API. Please POST your query to this URL
    Found 2025-12-20 by HttpPlugin
    Create report
api.tapkat.dev
Fingerprint:
d2582ee89603bd92a2bc49d9efa83e628f3c17ba970aec287c80f42a621e37e6
CN:
api.tapkat.dev
Key:
RSA-2048
Issuer:
R13
Not before:
2025-11-19 23:43
Not after:
2026-02-17 23:43
Domain summary

api.tapkat.dev 5

1 recorded
IP summary

75.2.60.68 2

1 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice