LeakIX - Host app.animate.io

Domain app.animate.io

United States

AMAZON-AES

Software information

Heroku

tcp/443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 54.204.238.15
Domain: app.animate.io
Port: 443
URL: https://app.animate.io

First seen 2024-06-03 19:59
Last seen 2025-12-30 13:25
Open for 574 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-12-30 13:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 20:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbecc9a916cd8c9f71acf8ba7e20494e8c1
```
Found 15 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/default_user_photos
/favicon.ico
/loading.svg
/packs
/portraits
/pulse.svg
/robot.png
/robot_party.png
/spinner.svg
/tangrams
/users.png
```
  Found on 2024-08-28 17:46
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b92705af73eecf6fb46614f27bdec08ce
```
Found 14 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/default_user_photos
/favicon.ico
/loading.svg
/packs
/portraits
/pulse.svg
/robot.png
/robot_party.png
/spinner.svg
/users.png
```
  Found on 2024-07-18 14:14
Create report

Open service 54.204.238.15:443 · app.animate.io

2026-01-09 08:48

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self'
Location: https://app.animate.io/home
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=5sIZXLaHkR%2FqaZPyNTWMZpr4Mbq9iW2k7VpW4ky7zmo%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767948515"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=5sIZXLaHkR%2FqaZPyNTWMZpr4Mbq9iW2k7VpW4ky7zmo%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767948515"
Server: Heroku
Set-Cookie: logged_in=false; path=/; samesite=lax
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 2cfcfe3c-5580-25dc-d8ec-6a722e9e3541
X-Runtime: 0.059612
X-Xss-Protection: 0
Date: Fri, 09 Jan 2026 08:48:39 GMT
Connection: close

Found 2 days ago by HttpPlugin

Create report

Open service 54.204.238.15:443 · app.animate.io

2025-12-30 13:25

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self'
Location: https://app.animate.io/home
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=uGJPV%2FWxQ208sYk5uvDmooPj96huaDmk3ehzuQQXSOM%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767101118"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=uGJPV%2FWxQ208sYk5uvDmooPj96huaDmk3ehzuQQXSOM%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767101118"
Server: Heroku
Set-Cookie: logged_in=false; path=/; samesite=lax
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 633750d4-bf13-d8ff-b38b-e7b289b64a76
X-Runtime: 0.049361
X-Xss-Protection: 0
Date: Tue, 30 Dec 2025 13:25:18 GMT
Connection: close

Found 2025-12-30 by HttpPlugin

Create report

Open service 54.204.238.15:443 · app.animate.io

2025-12-22 14:39

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self'
Location: https://app.animate.io/home
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=U%2FpWc9LCZjf0TGhqZQ0Wjdt2DixpSEsDjcDGRpAWThM%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766414343"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=U%2FpWc9LCZjf0TGhqZQ0Wjdt2DixpSEsDjcDGRpAWThM%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766414343"
Server: Heroku
Set-Cookie: logged_in=false; path=/; samesite=lax
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: d312cd44-5be6-325c-ff1c-fc2dfc2f4d4b
X-Runtime: 0.028051
X-Xss-Protection: 0
Date: Mon, 22 Dec 2025 14:39:03 GMT
Connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 54.204.238.15:443 · app.animate.io

2025-12-20 12:39

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self'
Location: https://app.animate.io/home
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=izwblcFPZX1BllIAfzpVyv7uCR33WkWOMYfxZU%2Ftj2Y%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766234342"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=izwblcFPZX1BllIAfzpVyv7uCR33WkWOMYfxZU%2Ftj2Y%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766234342"
Server: Heroku
Set-Cookie: logged_in=false; path=/; samesite=lax
Strict-Transport-Security: max-age=63072000; includeSubDomains
Vary: Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 147dbfda-4bdf-3a3f-5d58-29ebdc8ca8df
X-Runtime: 0.018164
X-Xss-Protection: 0
Date: Sat, 20 Dec 2025 12:39:02 GMT
Connection: close

Found 2025-12-20 by HttpPlugin

Create report

app.animate.io

Fingerprint:

bb4d69c87874de5d65aacf3168dd16e550bb69d64267bcb46e40acddfb618ba4

CN:

app.animate.io

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-27 23:09

Not after:

2026-02-25 23:09

Domain summary

app.animate.io 7

1 recorded

IP summary

54.204.238.15 2

1 recorded

Domain app.animate.io

United States

Software information

MacOS file listing through .DS_Store file

Create report

Create report

Create report

Create report

app.animate.io

Domain summary

IP summary