LeakIX - Host directus.nofipa.dk

Domain directus.nofipa.dk

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.11.49
Domain: directus.nofipa.dk
Port: 80
URL: http://directus.nofipa.dk

First seen 2025-11-14 01:53
Last seen 2026-01-02 17:36
Open for 49 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3327c188f71518b9dca153267c0c3e223fd2aac33
```
GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 3, OBJECT: 12, SCALAR: 8)
Operations:
- Query: Query | fields: _empty
- Subscription: Subscription | fields: directus_files_mutated
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 17:36
  
  26.7 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.129.158
Domain: directus.nofipa.dk
Port: 443
URL: https://directus.nofipa.dk

First seen 2025-11-14 01:53
Last seen 2026-01-02 19:42
Open for 49 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3327c188f71518b9dca153267c0c3e223fd2aac33
```
GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 3, OBJECT: 12, SCALAR: 8)
Operations:
- Query: Query | fields: _empty
- Subscription: Subscription | fields: directus_files_mutated
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 19:42
  
  26.7 kBytes
Create report

Open service 15.197.129.158:443 · directus.nofipa.dk

2026-01-10 00:49

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Sat, 10 Jan 2026 00:49:20 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Cww38KQny3Zx0jNea3Y7GhnzImKOpoMv7YvYUnUvE6s%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1768006160"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Cww38KQny3Zx0jNea3Y7GhnzImKOpoMv7YvYUnUvE6s%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1768006160"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 3 days ago by HttpPlugin

Create report

Open service 76.223.11.49:80 · directus.nofipa.dk

2026-01-09 17:15

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 17:16:12 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=tzixy0%2Fc18e9BAmkjVb0gMEbCM%2FUd83FCMnnPNkbuAg%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767978972"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=tzixy0%2Fc18e9BAmkjVb0gMEbCM%2FUd83FCMnnPNkbuAg%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767978972"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 3 days ago by HttpPlugin

Create report

Open service 15.197.129.158:443 · directus.nofipa.dk

2026-01-02 19:42

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 19:42:11 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=jhBP8HAViBjjFwHUWaIlFX4mYQWSxxr7TEyvr6txF00%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767382931"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=jhBP8HAViBjjFwHUWaIlFX4mYQWSxxr7TEyvr6txF00%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767382931"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2026-01-02 by HttpPlugin

Create report

Open service 76.223.11.49:80 · directus.nofipa.dk

2026-01-02 17:36

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 17:36:15 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=6bQiFMER6wmGt1PeL0RpqTM9kgUBfIbBMkhz%2Btk2DxU%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767375375"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=6bQiFMER6wmGt1PeL0RpqTM9kgUBfIbBMkhz%2Btk2DxU%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767375375"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2026-01-02 by HttpPlugin

Create report

Open service 76.223.11.49:80 · directus.nofipa.dk

2025-12-23 08:47

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Tue, 23 Dec 2025 08:47:26 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=almeUtZ%2FHn8BK%2BiXIPzH9BIJdj7DOwxQYwt78qdz8cY%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766479646"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=almeUtZ%2FHn8BK%2BiXIPzH9BIJdj7DOwxQYwt78qdz8cY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766479646"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-23 by HttpPlugin

Create report

Open service 15.197.129.158:443 · directus.nofipa.dk

2025-12-23 00:47

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Tue, 23 Dec 2025 00:47:59 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=YuPSt4c%2B%2FVab%2B4KlmCoh47x8uDc%2BLfSeLnNMYPRmdd0%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766450879"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=YuPSt4c%2B%2FVab%2B4KlmCoh47x8uDc%2BLfSeLnNMYPRmdd0%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766450879"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-23 by HttpPlugin

Create report

Open service 15.197.129.158:443 · directus.nofipa.dk

2025-12-21 09:31

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Sun, 21 Dec 2025 09:31:55 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=VmRdKlys4vYlSyT6%2BxChz6APWZdmG%2Bp5GyD%2Bl5Gijy8%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766309515"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=VmRdKlys4vYlSyT6%2BxChz6APWZdmG%2Bp5GyD%2Bl5Gijy8%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766309515"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-21 by HttpPlugin

Create report

Open service 76.223.11.49:80 · directus.nofipa.dk

2025-12-21 06:27

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Sun, 21 Dec 2025 06:27:31 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=sa2jCpZ7hBupq6KGA6OSnuV7lY00vU18eJGoOGDwoBQ%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766298451"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=sa2jCpZ7hBupq6KGA6OSnuV7lY00vU18eJGoOGDwoBQ%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766298451"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-21 by HttpPlugin

Create report

Open service 76.223.11.49:80 · directus.nofipa.dk

2025-12-19 02:29

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Fri, 19 Dec 2025 02:29:20 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Y1OX2d%2F2B4MwAy0iHrZyFlKNZn6x9MqhBP4SfmsNPzo%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766111360"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Y1OX2d%2F2B4MwAy0iHrZyFlKNZn6x9MqhBP4SfmsNPzo%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766111360"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-19 by HttpPlugin

Create report

Open service 15.197.129.158:443 · directus.nofipa.dk

2025-12-19 01:08

HTTP/1.1 302 Found
Content-Length: 29
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://raw.githubusercontent.com https://avatars.githubusercontent.com;media-src 'self';connect-src 'self' https://* wss://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
Content-Type: text/plain; charset=utf-8
Date: Fri, 19 Dec 2025 01:08:33 GMT
Location: ./admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=3wdC42mNZKuMgjx1clC%2BIZB7SehR2P0cg%2ByVP3G2noY%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766106513"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=3wdC42mNZKuMgjx1clC%2BIZB7SehR2P0cg%2ByVP3G2noY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766106513"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Directus
Connection: close


Found. Redirecting to ./admin

Found 2025-12-19 by HttpPlugin

Create report

directus.nofipa.dk

Fingerprint:

7b63565fee2017a95f98137020a060c196c774b4fb62b93bcd52636d2325d95b

CN:

directus.nofipa.dk

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-14 00:54

Not after:

2026-02-12 00:54

Domain summary

directus.nofipa.dk 11

1 recorded

IP summary

15.197.129.158 1 76.223.11.49 1

2 recorded

Domain directus.nofipa.dk

United States

Software information

GraphQL introspection is enabled.

GraphQL introspection is enabled.

directus.nofipa.dk

Domain summary

IP summary