LeakIX - Host 35.157.26.135

Host 35.157.26.135

Germany

GOOGLE-CLOUD-PLATFORM

Ubuntu

Software information

Netlify

tcp/443 tcp/80

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: lizzy.consulting
Port: 443
URL: https://lizzy.consulting

First seen 2025-11-01 11:10
Last seen 2026-01-13 21:34
Open for 73 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-13 21:34
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6c0cbd686a893037614f19f4ad5f8a078eeb004d8
```
GraphQL introspection enabled at /api/graphql
Types: 1722 (by kind: ENUM: 38, INPUT_OBJECT: 201, OBJECT: 1469, SCALAR: 8, UNION: 6)
Operations:
- Query: Query | fields: Page, Pages, countPages, docAccessPage, versionPage
- Mutation: Mutation | fields: createPage, deletePage, duplicatePage, restoreVersionPage, updatePage
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-11-30 19:43
  
  1.1 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: a.westernfordhcm.com.vn
Port: 443
URL: https://a.westernfordhcm.com.vn

First seen 2025-10-21 09:38
Last seen 2026-01-13 21:25
Open for 84 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d691220750ee7c31943740410b8aa0d35220baf32e
```
GraphQL introspection enabled at /api/graphql
Types: 968 (by kind: ENUM: 22, INPUT_OBJECT: 153, OBJECT: 784, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: Post, Posts, countPosts, docAccessPost, versionPost
- Mutation: Mutation | fields: createPost, deletePost, duplicatePost, restoreVersionPost, updatePost
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-13 21:25
  
  651.8 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: shop.apiwit.me
Port: 443
URL: https://shop.apiwit.me

First seen 2025-11-01 17:12
Last seen 2026-01-13 21:25
Open for 73 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6fa5f38a9021fcc0b74bea54947b7787cb8b5b60c
```
GraphQL introspection enabled at /api/graphql
Types: 822 (by kind: ENUM: 14, INPUT_OBJECT: 113, OBJECT: 684, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-13 21:25
  
  549.6 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: cms.eonmed.in
Port: 443
URL: https://cms.eonmed.in

First seen 2025-10-15 22:02
Last seen 2026-01-13 21:16
Open for 89 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d65a7d758e3437bb7eb8300fc6cec0b2e5ceabfbb1
```
GraphQL introspection enabled at /api/graphql
Types: 677 (by kind: ENUM: 30, INPUT_OBJECT: 107, OBJECT: 529, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-13 21:16
  
  470.0 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: torchsense.torchflow.io
Port: 443
URL: https://torchsense.torchflow.io

First seen 2025-12-05 10:22
Last seen 2026-01-13 21:09
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d67cdc8bdaeaffbeca650c42c38339b1988498d4b8
```
GraphQL introspection enabled at /api/graphql
Types: 987 (by kind: ENUM: 15, INPUT_OBJECT: 132, OBJECT: 828, SCALAR: 8, UNION: 4)
Operations:
- Query: Query | fields: Author, Authors, Post, countAuthors, docAccessAuthor
- Mutation: Mutation | fields: createAuthor, createPost, deleteAuthor, duplicateAuthor, updateAuthor
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-13 21:09
  
  650.0 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: callproactive.com
Port: 443
URL: https://callproactive.com

First seen 2025-12-05 04:39
Last seen 2026-01-13 21:06
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-13 21:06
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 35.157.26.135
Domain: sneatetech.com
Port: 443
URL: https://sneatetech.com

First seen 2025-07-21 18:40
Last seen 2026-01-13 21:04
Open for 176 days

Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a93ca8c

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://ajay.k: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@github.com/ajaykundnani/sneatetech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[user]
	name = ajay.k
	email = ajaykundnani03@gmail.com

Found on 2026-01-13 21:04

437 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221e67bfc4

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/ajaykundnani/sneatetech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[user]
	email = ajaykundnani03@gmail.com
	name = ajay.k

Found on 2025-08-16 06:50

356 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hillranchestates.com
Port: 443
URL: https://hillranchestates.com

First seen 2025-11-14 21:50
Last seen 2026-01-13 20:56
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5971f94c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/JCRob84/hill-ranch-estates123.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-13 20:56
  
  379 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: codenamepeterk.com
Port: 443
URL: https://codenamepeterk.com

First seen 2025-11-14 16:56
Last seen 2026-01-13 16:08
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652202657e25
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[user]
	name = peterkim676
	email = peterkim676@users.noreply.github.com
[remote "origin"]
	url = git@github.com:peterkim676/codenamepeterk.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-13 16:08
  
  384 Bytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: stagingv35-apidoc.testrtc.com
Port: 443
URL: https://stagingv35-apidoc.testrtc.com

First seen 2025-11-12 20:52
Last seen 2026-01-11 20:22
Open for 59 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43be2c0c5d94ef082a5d1a43c6213833b8ee434c8e
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
ANY /networktest-report/{id}
ANY /networktest/{id}
GET /assets
GET /assets/{assetId}
GET /ip-ranges
GET /qualityrtc/result/{id}
GET /testagents/{testAgentId}
GET /testagents/{testAgentId}/files
GET /testagents/{testAgentId}/screenshots
GET /testruns/{testRunId}
GET /tests
GET /tests/{testId}
POST /analyzertc/upload
POST /qualityrtc/invite
POST /testruns/externalValue/{session_name}
POST /tests/{testId}/run
POST /watchrtc/highlights
PUT /watchrtc/room/{roomId}/peer/{peerId}/keys
PUT /watchrtc/room/{rtcRoomId}/peer/{rtcPeerId}/user-rating
```
  Found on 2026-01-11 20:22
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: oasis.vioudigital.com
Port: 443
URL: https://oasis.vioudigital.com

First seen 2025-11-12 17:52
Last seen 2026-01-11 17:43
Open for 59 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff438af81bd6dc4687e473dc3cbe73dc3cbe73dc3cbe
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /api/assets
GET /api/health
POST /api/presign
```
  Found on 2026-01-11 17:43
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: www.bilpit.dk
Port: 443
URL: https://www.bilpit.dk

First seen 2025-11-12 05:13
Last seen 2026-01-11 04:22
Open for 59 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-11 04:22
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: staging1-apidoc.testrtc.com
Port: 443
URL: https://staging1-apidoc.testrtc.com

First seen 2025-11-11 19:33
Last seen 2026-01-10 18:42
Open for 59 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43be2c0c5d94ef082a5d1a43c6213833b801dde8a9
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
ANY /networktest-report/{id}
ANY /networktest/{id}
GET /assets
GET /assets/{assetId}
GET /ip-ranges
GET /qualityrtc/result/{id}
GET /testagents/{testAgentId}
GET /testagents/{testAgentId}/files
GET /testagents/{testAgentId}/screenshots
GET /testruns/{testRunId}
GET /tests
GET /tests/{testId}
POST /qualityrtc/invite
POST /testruns/externalValue/{session_name}
POST /tests/{testId}/run
POST /watchrtc/highlights
PUT /watchrtc/room/{rtcRoomId}/peer/{rtcPeerId}/user-rating
```
  Found on 2026-01-10 18:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: kendrick.paris
Port: 443
URL: https://kendrick.paris

First seen 2025-11-07 07:33
Last seen 2026-01-10 01:32
Open for 63 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110b5863c895e44e1f8868687f8868687f8868687f8868687
```
Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
GET /api/ai-monitoring
GET /api/recommend
```
  Found on 2026-01-10 01:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: notifyspark.com
Port: 443
URL: https://notifyspark.com

First seen 2025-10-28 05:03
Last seen 2026-01-10 00:44
Open for 73 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff432f369d770ba917da0f2149eceecf802119a62366
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /.netlify/functions/get-analysis
GET /.netlify/functions/get-analysis-status
GET /.netlify/functions/get-twitter-tweets
GET /.netlify/functions/get-twitter-user
POST /.netlify/functions/send-analysis-email
POST /.netlify/functions/start-analysis
```
  Found on 2026-01-10 00:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: demo.dnurl.co
Port: 443
URL: https://demo.dnurl.co

First seen 2025-10-25 07:12
Last seen 2026-01-09 23:31
Open for 76 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035490f76f5cb216ee5cd76b25901510d49773bdbe782
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/registeredapps
GET /api/registeredapps/{id}
GET /{code}
POST /api/auth/login
POST /api/auth/signup
POST /api/feshorten
POST /api/register
POST /api/shorten
PUT /api/register/{id}
```
  Found on 2026-01-09 23:31
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: nodeapi.nihalshameem.com
Port: 443
URL: https://nodeapi.nihalshameem.com

First seen 2025-10-27 07:33
Last seen 2026-01-09 22:56
Open for 74 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 22:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: shop.payboxtimers.com
Port: 443
URL: https://shop.payboxtimers.com

First seen 2025-11-04 17:07
Last seen 2026-01-09 22:52
Open for 66 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110b5863cad4fe6272e9cab827191ee7ad69978ea4d35f25d
```
Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
GET /api/v1/devices
GET /api/v1/devices/did/{did}
GET /api/v1/devices/landlord
GET /api/v1/devices/my
GET /api/v1/devices/online
GET /api/v1/devices/{id}
GET /api/v1/devices/{id}/stats
GET /api/v1/users/{id}
GET /api/v1/users/{user_id}/devices
POST /api/v1/auth/login
POST /api/v1/auth/logout
PUT /api/v1/devices/{id}/status
```
  Found on 2026-01-09 22:52
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: apidoc.dev.testrtc.com
Port: 443
URL: https://apidoc.dev.testrtc.com

First seen 2025-10-23 19:21
Last seen 2026-01-09 22:42
Open for 78 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43be2c0c5d94ef082a5d1a43c6213833b801dde8a9
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
ANY /networktest-report/{id}
ANY /networktest/{id}
GET /assets
GET /assets/{assetId}
GET /ip-ranges
GET /qualityrtc/result/{id}
GET /testagents/{testAgentId}
GET /testagents/{testAgentId}/files
GET /testagents/{testAgentId}/screenshots
GET /testruns/{testRunId}
GET /tests
GET /tests/{testId}
POST /qualityrtc/invite
POST /testruns/externalValue/{session_name}
POST /tests/{testId}/run
POST /watchrtc/highlights
PUT /watchrtc/room/{rtcRoomId}/peer/{rtcPeerId}/user-rating
```
  Found on 2026-01-09 22:42
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: doracore.com
Port: 443
URL: https://doracore.com

First seen 2025-11-06 23:33
Last seen 2026-01-09 22:30
Open for 63 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110b5863c1ec8f0c5479e8010479e8010479e8010479e8010
```
Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
GET /projects
GET /projects/{id}
```
  Found on 2026-01-09 22:30
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: www.pugh.pw
Port: 443
URL: https://www.pugh.pw

First seen 2025-10-21 10:23
Last seen 2026-01-09 21:09
Open for 80 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff4394bd50e494bd50e494bd50e494bd50e494bd50e4
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /api/AvailableTimeslots
```
  Found on 2026-01-09 21:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: live.dnurl.co
Port: 443
URL: https://live.dnurl.co

First seen 2025-12-03 03:42
Last seen 2026-01-09 19:16
Open for 37 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60878454ae7ba4c31c21108cefc753b45e89bacb07
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /{code}
POST /api/auth/login
POST /api/auth/signup
POST /api/register
POST /api/shorten
```
  Found on 2026-01-09 19:16
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035497acc1b657785b503263768221aa30c9b7b9e6554
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /{code}
POST /api/auth/login
POST /api/auth/signup
POST /api/register
POST /api/shorten
```
  Found on 2026-01-02 03:45
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: awdb.theblip.org
Port: 443
URL: https://awdb.theblip.org

First seen 2025-10-25 10:42
Last seen 2026-01-09 18:59
Open for 76 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43f090a68e7b41ed0bf7cc30ea004c38631c6360a6

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /api/referral/{referralId}/client
DELETE /api/referral/{referralId}/referrer
GET /api/authorizedping
GET /api/client-search/{query}
GET /api/client/{clientId}
GET /api/client/{clientId}/contact-notes
GET /api/client/{clientId}/referrals
GET /api/confirmPasswordResetToken/{tokenId}
GET /api/diagnostic
GET /api/exception-ping
GET /api/ping
GET /api/referrals/{referralId}
GET /api/referrer-search/{query}
GET /api/referrer/{referrerId}
GET /api/search/{query}
GET /api/staff
GET /api/staff/{staffId}
GET /api/user/current
POST /api/clients/{clientId}/similar
POST /api/login
POST /api/loginTwoStep
POST /api/logout
POST /api/my_referrals
POST /api/referral/{referralId}
POST /api/referral/{referralId}/anonymous/
POST /api/referral/{referralId}/assign-referrer/{referrerId}
POST /api/referral/{referralId}/client/{clientId}
POST /api/referral/{referralId}/completion
POST /api/referral/{referralId}/date
POST /api/referral/{referralId}/followUp/{followUpId}
POST /api/referral/{referralId}/info
POST /api/referral/{referralId}/referredTo/{referredToId}
POST /api/referrals
POST /api/referrals/reassign
POST /api/referrals_export
POST /api/referrals_export_detail
POST /api/referrals_export_notes
POST /api/referrals_export_report/{reportYear}
POST /api/refresh
POST /api/requestForgotPassword
POST /api/resendTwoFaEmail
POST /api/resetPassword
POST /api/staff/{staffId}/reset-password
PUT /api/referral/{referralId}/call_consent
PUT /api/referral/{referralId}/contact-note/{contactNoteId}
PUT /api/referral/{referralId}/followup-actions

Found on 2026-01-09 18:59

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: www.sigstore.dev
Port: 443
URL: https://www.sigstore.dev

First seen 2025-11-15 00:22
Last seen 2026-01-09 18:58
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 18:58
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: apidocs.boostsystem.no
Port: 443
URL: https://apidocs.boostsystem.no

First seen 2025-10-18 22:12
Last seen 2026-01-09 18:33
Open for 82 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43fb740631a28d8c1ca7e661c6a7e661c6a7e661c6
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /exercise/opensections/{orgin}
GET /v1/boost/classes/date/{date}
GET /v1/boost/classes/week/{weekNumber}
```
  Found on 2026-01-09 18:33
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: docs.unotech.io
Port: 443
URL: https://docs.unotech.io

First seen 2025-11-29 07:22
Last seen 2026-01-09 15:15
Open for 41 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2026-01-09 15:15
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: sip.sidesafety.io
Port: 443
URL: https://sip.sidesafety.io

First seen 2025-11-03 12:03
Last seen 2026-01-09 14:32
Open for 67 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff4309b00103c4d93543c075faab19d2daa1d5f0259f
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /company/{id}
GET /face_id
GET /face_id/{id}
GET /group_message/description/{description}
GET /group_message/{id}
GET /persons/company/{company}
GET /persons/{id}
GET /reports/company/{company_id}
GET /reports/{id}
GET /tests/company/{companyId}
GET /tests/registration/{registration}
GET /tests/{id}
GET /users/company/{company_id}
GET /users/{id}
POST /company
POST /group_message
POST /persons
POST /session
POST /users
```
  Found on 2026-01-09 14:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: statistics.domaindumper.com
Port: 443
URL: https://statistics.domaindumper.com

First seen 2025-10-16 10:55
Last seen 2026-01-09 12:45
Open for 85 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d6069b6e0ae55b7a00fe1c22f6974fd34103f68aabb
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /registrar/registrars-details.json
GET /registrar/registrars.json
GET /root/db.json
GET /root/detail/{tldName}/{tldName}.json
GET /stats/{year}/{month}/{date}/stats.json
GET /tlds/tlds_list.json
```
  Found on 2026-01-09 12:45
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: app.estimatic.com
Port: 443
URL: https://app.estimatic.com

First seen 2025-11-02 19:42
Last seen 2026-01-09 12:08
Open for 67 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 12:08
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: studio.aurorapay.me
Port: 443
URL: https://studio.aurorapay.me

First seen 2025-11-10 12:53
Last seen 2026-01-09 12:03
Open for 59 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4122becd90e1a80dd3d1cfe788fcc627378936e40

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /charges/
GET /currency/currencies
GET /lightning/invoice/payments
GET /lightning/invoice/qr/{id}
GET /lightning/invoice/status/{id}
GET /onchain/invoice/get_status/{id}
GET /onchain/invoice/qr-btc/{id}
GET /onchain/invoice/qr-ln/{id}
GET /onchain/invoice/qr-unified/{id}
GET /paycode/link/{id}
GET /paycode/links
GET /paycode/print/{id}
GET /subscription/bitcoin/qr/{invoice_id}
GET /subscription/bitcoin/status/{invoice_id}
GET /subscription/plans
GET /subscription/status/{user_id}
GET /webhooks/lightning
GET /webhooks/onchain
GET /webhooks/paycode
POST /auth/activate-wallet/{user_id}
POST /auth/bind-wallet-keys/{user_id}
POST /auth/login
POST /auth/setup-split-payment/{user_id}
POST /auth/signup
POST /lightning/invoice/
POST /onchain/invoice/
POST /subscription/activate-test/{user_id}
POST /subscription/bitcoin/checkout
POST /subscription/cancel/{user_id}
POST /subscription/checkout
PUT /auth/update-settings/{user_id}

Found on 2026-01-09 12:03

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4122becd90e1a80dd3d1cfe788fcc6273b292bb59

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /charges/
GET /currency/currencies
GET /lightning/invoice/payments
GET /lightning/invoice/qr/{id}
GET /lightning/invoice/status/{id}
GET /onchain/invoice/get_status/{id}
GET /onchain/invoice/qr-btc/{id}
GET /onchain/invoice/qr-ln/{id}
GET /onchain/invoice/qr-unified/{id}
GET /paycode/link/{id}
GET /paycode/links
GET /paycode/print/{id}
GET /subscription/plans
GET /subscription/status/{user_id}
GET /webhooks/lightning
GET /webhooks/onchain
GET /webhooks/paycode
POST /auth/activate-wallet/{user_id}
POST /auth/bind-wallet-keys/{user_id}
POST /auth/login
POST /auth/setup-split-payment/{user_id}
POST /auth/signup
POST /lightning/invoice/
POST /onchain/invoice/
POST /subscription/activate-test/{user_id}
POST /subscription/cancel/{user_id}
POST /subscription/checkout
PUT /auth/update-settings/{user_id}

Found on 2025-12-20 11:31

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4122becd90e1a80dd3d1cfe788fcc62734e6f68e0

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /charges/
GET /currency/currencies
GET /lightning/invoice/payments
GET /lightning/invoice/qr/{id}
GET /lightning/invoice/status/{id}
GET /onchain/invoice/get_status/{id}
GET /onchain/invoice/qr-btc/{id}
GET /onchain/invoice/qr-ln/{id}
GET /onchain/invoice/qr-unified/{id}
GET /paycode/link/{id}
GET /paycode/links
GET /paycode/print/{id}
GET /subscription/plans
GET /subscription/status/{user_id}
GET /webhooks/lightning
GET /webhooks/onchain
GET /webhooks/paycode
POST /auth/activate-wallet/{user_id}
POST /auth/bind-wallet-keys/{user_id}
POST /auth/login
POST /auth/signup
POST /lightning/invoice/
POST /onchain/invoice/
POST /subscription/activate-test/{user_id}
POST /subscription/cancel/{user_id}
POST /subscription/checkout
PUT /auth/update-settings/{user_id}

Found on 2025-12-01 01:26

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4122becd90e1a80dd3d1cfe788fcc62731fa5c747

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /charges/
GET /currency/currencies
GET /lightning/invoice/payments
GET /lightning/invoice/qr/{id}
GET /lightning/invoice/status/{id}
GET /onchain/invoice/get_status/{id}
GET /onchain/invoice/qr-btc/{id}
GET /onchain/invoice/qr-ln/{id}
GET /onchain/invoice/qr-unified/{id}
GET /paycode/link/{id}
GET /paycode/links
GET /paycode/print/{id}
GET /webhooks/lightning
GET /webhooks/onchain
GET /webhooks/paycode
POST /lightning/invoice/
POST /onchain/invoice/

Found on 2025-11-26 21:22

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: pk-sbc.io
Port: 443
URL: https://pk-sbc.io

First seen 2025-11-17 06:49
Last seen 2026-01-09 10:20
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff431fe0d7f7e38656ab11909d38cc538647cc538647
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /gateways
GET /gateways/{id}
GET /health
POST /gateways/
```
  Found on 2026-01-09 10:20
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: dnurl.co
Port: 443
URL: https://dnurl.co

First seen 2025-12-03 03:42
Last seen 2026-01-09 08:54
Open for 37 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60878454ae7ba4c31c21108cefc753b45e89bacb07
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /{code}
POST /api/auth/login
POST /api/auth/signup
POST /api/register
POST /api/shorten
```
  Found on 2026-01-09 08:54
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035497acc1b657785b503263768221aa30c9b7b9e6554
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /{code}
POST /api/auth/login
POST /api/auth/signup
POST /api/register
POST /api/shorten
```
  Found on 2026-01-02 09:27
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: luminix.cloud
Port: 443
URL: https://luminix.cloud

First seen 2025-12-12 10:53
Last seen 2026-01-09 01:32
Open for 27 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff4322dae2b072952ca4f6035e53a4ddffe5a7b1c076
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /delete-user
GET /component
GET /components
GET /settings
GET /user/{userId}
GET /users
POST /add-user
POST /edit-user
POST /login
POST /logout
POST /screenshot
```
  Found on 2026-01-09 01:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: docs-mainbersama.azharlihan.com
Port: 443
URL: https://docs-mainbersama.azharlihan.com

First seen 2025-10-25 11:42
Last seen 2026-01-09 01:18
Open for 75 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43fe4b59e1c747a82a5d8fbcd999e498250880da2e
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /v1/bookings/{id}/unjoin
GET /v1/bookings
GET /v1/bookings/{id}
GET /v1/fields
GET /v1/fields/{id}
GET /v1/venues
GET /v1/venues/{id}
GET /v1/venues/{venue_id}/fields
POST /v1/bookings/{id}/join
POST /v1/login
POST /v1/register
```
  Found on 2026-01-09 01:18
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: api.middleman.africa
Port: 443
URL: https://api.middleman.africa

First seen 2025-10-28 14:07
Last seen 2026-01-09 00:33
Open for 72 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43cfe67a741200f7576024399c95456b151eee46fe

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /api/auth/me
GET /api/auth/verify-email/{token}
GET /api/cheque
GET /api/cheque/{id}
GET /api/cheque/{id}/qr-code
GET /api/cheque/{id}/verify
GET /api/dono/campaigns
GET /api/dono/campaigns/ending-soon
GET /api/dono/campaigns/featured
GET /api/dono/campaigns/search
GET /api/dono/campaigns/trending
GET /api/dono/campaigns/user
GET /api/dono/campaigns/{id}
GET /api/dono/campaigns/{id}/contributors
GET /api/invoice
GET /api/invoice/health
GET /api/invoice/{id}
GET /api/payments/transaction/{reference}
GET /api/payments/transactions
GET /api/payments/verify/{referenceCode}
GET /api/payments/verify/{reference}
GET /api/payments/virtual-account/{accountNumber}/transactions
GET /api/payments/virtual-accounts
GET /api/xcrow/health
GET /api/xcrow/transactions
GET /api/xcrow/transactions/status/{status}
GET /api/xcrow/transactions/user/{phoneNumber}
GET /api/xcrow/transactions/{id}
PATCH /api/invoice/{id}/status
POST /api/auth/forgot-password
POST /api/auth/login
POST /api/auth/register
POST /api/cheque/claim-by-number
POST /api/cheques/{id}/claim
POST /api/dono/campaigns/{id}/contribute
POST /api/dono/campaigns/{id}/donate
POST /api/dono/campaigns/{id}/update
POST /api/dono/campaigns/{id}/verify-contribution
POST /api/payments/checkout-config
POST /api/payments/initialize
POST /api/payments/virtual-account
POST /api/payments/webhook
POST /api/xcrow/transactions/{id}/confirm-fulfillment
POST /api/xcrow/transactions/{id}/confirm-payment
POST /api/xcrow/transactions/{id}/dispute
POST /api/xcrow/transactions/{id}/release-funds
POST /api/xcrow/transactions/{id}/resolve-dispute
PUT /api/auth/reset-password/{token}
PUT /api/cheque/{id}/cancel
PUT /api/dono/campaigns/{id}/verify
PUT /api/xcrow/transactions/{id}/status

Found on 2026-01-09 00:33

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43cfe67a741200f7576024399c95456b1584aa2ca2

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /api/auth/me
GET /api/auth/verify-email/{token}
GET /api/cheque
GET /api/cheque/{id}
GET /api/cheque/{id}/qr-code
GET /api/cheque/{id}/verify
GET /api/dono/campaigns
GET /api/dono/campaigns/ending-soon
GET /api/dono/campaigns/featured
GET /api/dono/campaigns/search
GET /api/dono/campaigns/trending
GET /api/dono/campaigns/user
GET /api/dono/campaigns/{id}
GET /api/dono/campaigns/{id}/contributors
GET /api/payments/transaction/{reference}
GET /api/payments/transactions
GET /api/payments/verify/{referenceCode}
GET /api/payments/verify/{reference}
GET /api/payments/virtual-account/{accountNumber}/transactions
GET /api/payments/virtual-accounts
GET /api/xcrow/transactions
GET /api/xcrow/transactions/status/{status}
GET /api/xcrow/transactions/user/{phoneNumber}
GET /api/xcrow/transactions/{id}
POST /api/auth/forgot-password
POST /api/auth/login
POST /api/auth/register
POST /api/cheque/claim-by-number
POST /api/cheques/{id}/claim
POST /api/dono/campaigns/{id}/contribute
POST /api/dono/campaigns/{id}/donate
POST /api/dono/campaigns/{id}/update
POST /api/dono/campaigns/{id}/verify-contribution
POST /api/payments/checkout-config
POST /api/payments/initialize
POST /api/payments/virtual-account
POST /api/payments/webhook
POST /api/xcrow/transactions/{id}/confirm-fulfillment
POST /api/xcrow/transactions/{id}/confirm-payment
POST /api/xcrow/transactions/{id}/dispute
POST /api/xcrow/transactions/{id}/release-funds
POST /api/xcrow/transactions/{id}/resolve-dispute
PUT /api/auth/reset-password/{token}
PUT /api/cheque/{id}/cancel
PUT /api/dono/campaigns/{id}/verify
PUT /api/xcrow/transactions/{id}/status

Found on 2025-11-30 22:26

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: cm-app.co.uk
Port: 443
URL: https://cm-app.co.uk

First seen 2025-10-25 08:46
Last seen 2026-01-08 23:57
Open for 75 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43f64db88e64000a87b38db934a6d669333b684233
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /api/{sid}/files/{id}
GET /api/oauth
GET /api/{sid}/conversations
GET /api/{sid}/conversations/latest
GET /api/{sid}/conversations/{id}/messages
GET /api/{sid}/custom-menus
GET /api/{sid}/events/appointments
GET /api/{sid}/events/calendars
GET /api/{sid}/files
GET /api/{sid}/metrics/opportunities
GET /api/{sid}/opportunities
GET /api/{sid}/posts
GET /api/{sid}/posts/{id}
POST /api/opportunities/webhook
POST /api/{sid}/posts/bulk-delete
```
  Found on 2026-01-08 23:57
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: vendor-api-swagger.therealreal.com
Port: 443
URL: https://vendor-api-swagger.therealreal.com

First seen 2025-10-19 19:52
Last seen 2026-01-08 22:09
Open for 81 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd18553ecf7f0bf9d390efdba3ef7d9b3513259cc84ce5134d7
```
Public Swagger UI/API detected at path: /swagger-ui.html - sample paths:
DELETE /vendor/addresses/{address_id}
GET /consignments
GET /consignments/{consignment_id}
GET /items
GET /items/{item_id}
GET /vendor
GET /vendor/addresses
POST /cancellations
POST /consignments/{consignment_id}/items
POST /token
```
  Found on 2026-01-08 22:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: blpy.attilafarago.hu
Port: 443
URL: https://blpy.attilafarago.hu

First seen 2025-10-16 02:22
Last seen 2026-01-08 19:06
Open for 84 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff4310c9394e7f0b9b6bfed55db2af759b2f7d8e10e8
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /convert/graph
GET /convert/plain
GET /convert/preview
GET /convert/python
GET /convert/raw
```
  Found on 2026-01-08 19:06
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.finatlassigorta.com.tr
Port: 443
URL: https://www.finatlassigorta.com.tr

First seen 2025-09-04 08:42
Last seen 2026-01-05 08:53
Open for 123 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb3d9d3b4
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/MertGedik35/finatlassigorta-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-05 08:53
  
  317 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: www.paceintl.com
Port: 443
URL: https://www.paceintl.com

First seen 2025-10-28 14:02
Last seen 2026-01-05 08:04
Open for 68 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6ce3b765f39bbcf6d5ddee373da4a22cf0acf5bcf

GraphQL introspection enabled at /api/graphql
Types: 680 (by kind: ENUM: 46, INPUT_OBJECT: 142, INTERFACE: 18, OBJECT: 436, SCALAR: 11, UNION: 27)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Detected: Magento
Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2026-01-05 08:04

791.9 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6d9ef58a0185e75a4f2af7414521dd9acf8505496

GraphQL introspection enabled at /api/graphql
Types: 665 (by kind: ENUM: 46, INPUT_OBJECT: 140, INTERFACE: 18, OBJECT: 425, SCALAR: 11, UNION: 25)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Detected: Magento
Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2025-12-26 19:33

782.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6e9f0b6e8126c344c0b64492ce96b1e44d99393ce

GraphQL introspection enabled at /api/graphql
Types: 664 (by kind: ENUM: 46, INPUT_OBJECT: 140, INTERFACE: 18, OBJECT: 424, SCALAR: 11, UNION: 25)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Detected: Magento
Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2025-12-13 15:38

780.1 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d677e566943ff25a5803355e5825558bd0563eadff

GraphQL introspection enabled at /api/graphql
Types: 648 (by kind: ENUM: 46, INPUT_OBJECT: 135, INTERFACE: 18, OBJECT: 415, SCALAR: 11, UNION: 23)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2025-12-01 16:47

762.1 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d628aa618223682612ee2143baf5e61a8e0b1b8eb5

GraphQL introspection enabled at /api/graphql
Types: 645 (by kind: ENUM: 46, INPUT_OBJECT: 135, INTERFACE: 18, OBJECT: 412, SCALAR: 11, UNION: 23)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2025-11-10 16:55

758.7 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6cbd5933ccbcabc002c0def30b913016836ef72c7

GraphQL introspection enabled at /api/graphql
Types: 637 (by kind: ENUM: 45, INPUT_OBJECT: 134, INTERFACE: 18, OBJECT: 407, SCALAR: 11, UNION: 22)
Operations:
- Query: Query | fields: channel, customer, inventory, node, site
- Mutation: Mutation | fields: cart, checkout, login, logout, wishlist
Directives: cacheControl, deprecated, include, oneOf, shopperPreferences, skip (total: 6)

Readable stores: 2
channel (args: none) : entityId=1
store (args: none) : entityId=417723

Found on 2025-10-28 14:02

753.1 kBytes 2 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mscontractorsandbuilders.com
Port: 443
URL: https://mscontractorsandbuilders.com

First seen 2025-09-07 02:04
Last seen 2026-01-05 00:36
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbef2bad2b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/Chaitanya-Varma-Sykam/MS_Contractors-Builders.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-05 00:36
  
  362 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: themoldslayers.com
Port: 443
URL: https://themoldslayers.com

First seen 2025-09-06 19:18
Last seen 2026-01-04 17:46
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e352d140
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Leadflow-AI/mold-slayers-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[pull]
	rebase = false
```
  Found on 2026-01-04 17:46
  
  282 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.gotomarketsolutions.co.ke
Port: 443
URL: https://www.gotomarketsolutions.co.ke

First seen 2025-11-04 15:38
Last seen 2026-01-04 17:03
Open for 61 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb0e81001
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Wanjiru-se/gtm-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-04 17:03
  
  396 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: raydesigntechnologies.com
Port: 443
URL: https://raydesigntechnologies.com

First seen 2025-07-07 12:07
Last seen 2026-01-04 14:13
Open for 181 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb204385af
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Farjaadrizvi110/Ray-Design.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
	merge = refs/heads/main
```
  Found on 2026-01-04 14:13
  
  374 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: data.ecoscopium.eu
Port: 443
URL: https://data.ecoscopium.eu

First seen 2025-11-05 13:42
Last seen 2026-01-04 12:54
Open for 59 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-01-04 12:54

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb07547b30de73

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false
Machines (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Components (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
TopLevelCategories (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
Categories (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Posts (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Docs (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Tags (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10

Found on 2025-11-30 13:25

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754a5232107

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Machines (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Components (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
TopLevelCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Categories (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Posts (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Docs (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Tags (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false

Found on 2025-11-28 11:18

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754207108ff

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Machines (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Components (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Menus (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
CatalogueCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
TopLevelCategories (args: optional/default) : nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10
Categories (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Posts (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Docs (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Tags (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1

Found on 2025-11-26 13:23

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754b2400b47

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Machines (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Components (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
TopLevelCategories (args: optional/default) : nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10
Categories (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Posts (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Docs (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Tags (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10

Found on 2025-11-22 16:55

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754e0309363

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10
Machines (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Components (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false
TopLevelCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Categories (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Posts (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Docs (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Tags (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1

Found on 2025-11-20 13:45

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754019e8f7b

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false
Machines (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Components (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Menus (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
CatalogueCategories (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
TopLevelCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Categories (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Posts (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Docs (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Tags (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1

Found on 2025-11-16 07:56

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754e79b838b

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Machines (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Components (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
TopLevelCategories (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
Categories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Posts (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Docs (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Tags (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1

Found on 2025-11-14 09:15

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754e972eb5b

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Machines (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Components (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Menus (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
CatalogueCategories (args: optional/default) : limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false
TopLevelCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Categories (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Posts (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Docs (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Tags (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false

Found on 2025-11-12 07:09

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb075478f50947

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10
Machines (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Components (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
TopLevelCategories (args: optional/default) : hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true
Categories (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Posts (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Docs (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Tags (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10

Found on 2025-11-10 07:03

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754f180fc9b

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Machines (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Components (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Menus (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
CatalogueCategories (args: optional/default) : nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10
TopLevelCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Categories (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Posts (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Docs (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Tags (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false

Found on 2025-11-08 05:20

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb075480910003

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Machines (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Components (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Menus (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
CatalogueCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
TopLevelCategories (args: optional/default) : hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1
Categories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Posts (args: optional/default) : hasPrevPage=false limit=10 page=1 pagingCounter=1 hasNextPage=false
Docs (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
Tags (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false

Found on 2025-11-07 10:42

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb0754e2ab637b

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
Machines (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Components (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Menus (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
CatalogueCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
TopLevelCategories (args: optional/default) : limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false
Categories (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Posts (args: optional/default) : limit=10 page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false
Docs (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Tags (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10

Found on 2025-11-05 13:42

2.6 MBytes 53 rows

Severity: high
Fingerprint: c2db3a1c40d490db2337d3d6989fc4de0539844e4f63329a24cb07541c6b7c17

GraphQL introspection enabled at /api/graphql
Types: 3931 (by kind: ENUM: 81, INPUT_OBJECT: 542, OBJECT: 3289, SCALAR: 8, UNION: 11)
Operations:
- Query: Query | fields: CatalogueEntries, CatalogueEntry, Machine, Machines, docAccessCatalogueEntry
- Mutation: Mutation | fields: createCatalogueEntry, createMachine, deleteCatalogueEntry, updateCatalogueEntry, updateMachine
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 10
CatalogueEntries (args: optional/default) : pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2 page=1
Machines (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Components (args: optional/default) : hasNextPage=false hasPrevPage=false limit=10 page=1 pagingCounter=1
Menus (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1
CatalogueCategories (args: optional/default) : hasPrevPage=false limit=10 nextPage=2 page=1 pagingCounter=1 hasNextPage=true
TopLevelCategories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=true hasPrevPage=false limit=10 nextPage=2
Categories (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Posts (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Docs (args: optional/default) : page=1 pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10
Tags (args: optional/default) : pagingCounter=1 hasNextPage=false hasPrevPage=false limit=10 page=1

Found on 2025-11-05 13:42

2.6 MBytes 53 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thabata.work
Port: 443
URL: https://thabata.work

First seen 2025-07-07 01:08
Last seen 2026-01-04 04:34
Open for 181 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba0308a2c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/t-larruda/site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-04 04:34
  
  355 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: matchmed.org
Port: 443
URL: https://matchmed.org

First seen 2025-07-06 22:16
Last seen 2026-01-04 01:44
Open for 181 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b61c1a67
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:danicode12/mm-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-04 01:44
  
  306 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: jaunt.app
Port: 443
URL: https://jaunt.app

First seen 2025-07-06 19:31
Last seen 2026-01-03 23:16
Open for 181 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe1147f7d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/MMMurugan/jaunt.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[branch "development"]
	remote = origin
	merge = refs/heads/development
	vscode-merge-base = origin/development
[user]
	email = mmm.muruganmca@gmail.com

Found on 2026-01-03 23:16

516 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cosipometro.com.br
Port: 443
URL: https://cosipometro.com.br

First seen 2025-09-05 19:56
Last seen 2026-01-03 18:16
Open for 119 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbfed1f90b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/HugoCDM/cosipometro-2.0.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2026-01-03 18:16

305 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbda53063f

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/HugoCDM/cosipometro.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-09-10 13:47

334 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6a52e6aa

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/HugoCDM/cosipometro.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-09-05 19:56

301 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bibeshbasnet.com.np
Port: 443
URL: https://bibeshbasnet.com.np

First seen 2025-11-04 17:22
Last seen 2026-01-03 16:38
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb22808d49
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kalu667/nepal-history-timeline.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-03 16:38
  
  254 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: netlify.chanjet.me
Port: 443
URL: https://netlify.chanjet.me

First seen 2025-09-05 05:42
Last seen 2026-01-03 04:02
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb734106a9
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitee.com/umore/umoretech-www.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-03 04:02
  
  333 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: larguxa.com
Port: 443
URL: https://larguxa.com

First seen 2025-09-02 11:44
Last seen 2026-01-03 01:08
Open for 122 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb00dc7e6e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/jecobz/2127-little-fashion.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-03 01:08
  
  312 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hilight.pro
Port: 443
URL: https://hilight.pro

First seen 2025-07-28 12:10
Last seen 2026-01-03 00:31
Open for 158 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9033aa9e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[user]
	email = highlight-pro@example.com
	name = Highlight Pro Team
[remote "origin"]
	url = https://github.com/smilesolutionzz/highlight-pro.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-03 00:31
  
  322 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ragit.ch
Port: 443
URL: https://ragit.ch

First seen 2025-08-04 12:09
Last seen 2026-01-03 00:31
Open for 151 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1f9d3008
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/BenkyCH/AGIT.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-03 00:31
  
  329 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mta-sts.datahelix.bio
Port: 443
URL: https://mta-sts.datahelix.bio

First seen 2025-12-13 08:59
Last seen 2026-01-02 20:51
Open for 20 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652223310e10
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:rczms/mta-sts-datahelix.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 20:51
  
  308 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: buzzoverflow.com
Port: 443
URL: https://buzzoverflow.com

First seen 2025-11-26 15:43
Last seen 2026-01-02 20:51
Open for 37 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa389aa2afc1fe827400c7d7b20b8150aabd5aab138

GraphQL introspection enabled at /graphql
Types: 72 (by kind: ENUM: 8, INPUT_OBJECT: 17, OBJECT: 43, SCALAR: 4)
Operations:
- Query: Query | fields: Answer, Tag, User, ratingsCount, userCount
- Mutation: Mutation | fields: AddTagQuestions, CreateTag, MergeTagQuestions, RemoveTagQuestions, upvote
Directives: MutationMeta, additionalLabels, cypher, deprecated, include, neo4j_ignore, relation, skip (total: 8)

Found on 2026-01-02 20:51

127.5 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: trooper.nl
Port: 443
URL: https://trooper.nl

First seen 2025-10-27 11:48
Last seen 2026-01-02 20:40
Open for 67 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67c42e5051478b6c78673ce64a40222378e03a4f1

GraphQL introspection enabled at /api/graphql
Types: 231 (by kind: ENUM: 18, INPUT_OBJECT: 67, INTERFACE: 3, OBJECT: 136, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2026-01-02 20:40

267.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d621b35c04cb1a7648e53297137c50bc8cbe6651fc

GraphQL introspection enabled at /api/graphql
Types: 228 (by kind: ENUM: 19, INPUT_OBJECT: 65, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-01 14:10

264.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b051d5706ad22d74683d93e70e782bb076775b10

GraphQL introspection enabled at /api/graphql
Types: 227 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-11-18 10:05

261.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6da3e8120aa5f0324aa57fdb7ac067fc0cc54fbe0

GraphQL introspection enabled at /api/graphql
Types: 225 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 132, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-10-29 04:56

259.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: estately.com.ng
Port: 443
URL: https://estately.com.ng

First seen 2025-10-25 19:56
Last seen 2026-01-02 20:39
Open for 69 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d69569fc5d58370f3f2019b0215b4180963a1dc540
```
GraphQL introspection enabled at /api/graphql
Types: 30 (by kind: ENUM: 3, INPUT_OBJECT: 9, OBJECT: 13, SCALAR: 5)
Operations:
- Query: Query | fields: Health, Me, Profile, User, Users
- Mutation: Mutation | fields: DeleteUser, Login, Register, TwoFa, UpdateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 20:39
  
  37.7 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: franqup.com.br
Port: 443
URL: https://franqup.com.br

First seen 2025-08-18 21:42
Last seen 2026-01-02 20:39
Open for 136 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf37558c4
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/franqupoficial/tdvagbneqiyzssaipmax
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 20:39
  
  255 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: www.zu.garden
Port: 443
URL: https://www.zu.garden

First seen 2025-11-09 06:22
Last seen 2026-01-02 20:24
Open for 54 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67390ccab7d3b4be97b9a50419fd171a7d0a9e07f

GraphQL introspection enabled at /api/graphql
Types: 1295 (by kind: ENUM: 37, INPUT_OBJECT: 151, OBJECT: 1091, SCALAR: 8, UNION: 8)
Operations:
- Query: Query | fields: Zuberlin_page, Zuberlin_pages, countZuberlin_pages, docAccessZuberlin_page, versionZuberlin_page
- Mutation: Mutation | fields: createZuberlin_page, deleteZuberlin_page, duplicateZuberlin_page, restoreVersionZuberlin_page, updateZuberlin_page
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 20:24

827.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2025-12-03 00:12

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: app.beampipe.io
Port: 443
URL: https://app.beampipe.io

First seen 2025-10-20 09:42
Last seen 2026-01-02 20:08
Open for 74 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b0e90583be4c4281bc371a9a4e20452021681572
```
GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 2, INPUT_OBJECT: 11, OBJECT: 19, SCALAR: 7)
Operations:
- Query: Query | fields: domains, events, liveUnique, maxDomains, maxPageViews
- Mutation: Mutation | fields: cancelSubscription, createPasswordReset, createUser, resetPassword, subscribe
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 20:08
  
  43.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: houdinigraphql.com
Port: 443
URL: https://houdinigraphql.com

First seen 2025-10-18 13:43
Last seen 2026-01-02 19:53
Open for 76 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa312ee0a2e37a50ede28dfd07c93bcf2626e42c944
```
GraphQL introspection enabled at /graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 10, SCALAR: 3)
Operations:
- Query: Query | fields: giveMeAnError, links, sponsors, welcome
- Mutation: Mutation | fields: hello
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0
```
  Found on 2026-01-02 19:53
  
  20.1 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: app.usemorrow.com
Port: 443
URL: https://app.usemorrow.com

First seen 2025-10-18 20:42
Last seen 2026-01-02 19:48
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6c8a82dd48bd0161879eaf58bc36adbda88d2f6a6

GraphQL introspection enabled at /api/graphql
Types: 165 (by kind: ENUM: 28, INPUT_OBJECT: 38, OBJECT: 91, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, downloadEmployeeTemplate, employeePayoutData, employees
- Mutation: Mutation | fields: archiveFinancialScorecard, cancelEmployeeUpload, confirmEmployeeUpload, createEducationContent, createEducationCourse
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 19:48

224.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d647892191df2fbc531f5736a6405c03b754080d0f

GraphQL introspection enabled at /api/graphql
Types: 161 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 88, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, downloadEmployeeTemplate, employeePayoutData, employees
- Mutation: Mutation | fields: archiveFinancialScorecard, cancelEmployeeUpload, confirmEmployeeUpload, createEducationContent, createEducationCourse
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-16 07:02

221.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6f863cb312264cd33faf39306499394973e68fa2f

GraphQL introspection enabled at /api/graphql
Types: 160 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 87, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, downloadEmployeeTemplate, employeePayoutData, employees
- Mutation: Mutation | fields: archiveFinancialScorecard, cancelEmployeeUpload, confirmEmployeeUpload, createEducationContent, createEducationCourse
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-30 11:54

218.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6732f0b30798a6ab4a5dc7c7f382e52e62411a942

GraphQL introspection enabled at /api/graphql
Types: 157 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 84, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, downloadEmployeeTemplate, employeePayoutData, employees
- Mutation: Mutation | fields: archiveFinancialScorecard, cancelEmployeeUpload, confirmEmployeeUpload, createEducationContent, createEducationCourse
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-24 09:56

214.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6978f73c4644fbe88ac86d85b6806730ae7c7c856

GraphQL introspection enabled at /api/graphql
Types: 156 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 83, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, downloadEmployeeTemplate, employeePayoutData, employees
- Mutation: Mutation | fields: archiveFinancialScorecard, cancelEmployeeUpload, confirmEmployeeUpload, createEducationContent, createEducationCourse
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-10 21:09

213.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6c6d60924619faea8cc5d86158c50ad6072b80390

GraphQL introspection enabled at /api/graphql
Types: 144 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 71, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, employeePayoutData, employees, enrollmentBreakdownByCountryConnection
- Mutation: Mutation | fields: archiveFinancialScorecard, createEducationContent, createEducationCourse, createHrisUpload, createMediaUpload
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-05 04:13

202.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b132a9f8b4e4d91cd03897c1a491cb843e7692a4

GraphQL introspection enabled at /api/graphql
Types: 143 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 70, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, employeePayoutData, employees, enrollmentBreakdownByCountryConnection
- Mutation: Mutation | fields: archiveFinancialScorecard, createEducationContent, createEducationCourse, createHrisUpload, createMediaUpload
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-03 07:54

200.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b132a9f8b4e4d91c9f01b931422950f4c858ba14

GraphQL introspection enabled at /api/graphql
Types: 143 (by kind: ENUM: 27, INPUT_OBJECT: 38, OBJECT: 70, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, employeePayoutData, employees, enrollmentBreakdownByCountry
- Mutation: Mutation | fields: archiveFinancialScorecard, createEducationContent, createEducationCourse, createHrisUpload, createMediaUpload
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-28 19:54

201.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d68d7e837edb49afae83c9765bab797bbae21a6846

GraphQL introspection enabled at /api/graphql
Types: 138 (by kind: ENUM: 26, INPUT_OBJECT: 36, OBJECT: 68, SCALAR: 8)
Operations:
- Query: Query | fields: calculateSimulatedPayout, coaches, employeePayoutData, employees, enrollmentBreakdownByCountry
- Mutation: Mutation | fields: archiveFinancialScorecard, createEducationContent, createEducationCourse, createHrisUpload, createMediaUpload
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-20 20:02

196.1 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: nadel.cloud
Port: 443
URL: https://nadel.cloud

First seen 2025-12-07 16:32
Last seen 2026-01-02 19:48
Open for 26 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5df2f0f1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/IsaacOsah124/Nadel.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 19:48
  
  242 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rojiprai.com.np
Port: 443
URL: https://rojiprai.com.np

First seen 2025-12-07 17:56
Last seen 2026-01-02 19:48
Open for 26 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb15d3468f
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/technext/mark.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 19:48
  
  295 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: bb.orchard.ltd
Port: 443
URL: https://bb.orchard.ltd

First seen 2025-12-09 07:36
Last seen 2026-01-02 19:34
Open for 24 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6c3f3e2229a6c09723c247c0dce0cb14daf795999
```
GraphQL introspection enabled at /api/graphql
Types: 39 (by kind: ENUM: 5, INPUT_OBJECT: 11, OBJECT: 17, SCALAR: 6)
Operations:
- Query: Query | fields: babies, me, user, userCount, users
- Mutation: Mutation | fields: changePassword, createBaby, createUser, deleteUser, updateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 19:34
  
  54.6 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: stepstudio-ks.com
Port: 443
URL: https://stepstudio-ks.com

First seen 2025-10-07 10:23
Last seen 2026-01-02 19:30
Open for 87 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1372d2b2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/step-studio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 19:30
  
  306 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: mieland.com
Port: 443
URL: https://mieland.com

First seen 2025-10-24 20:08
Last seen 2026-01-02 19:29
Open for 69 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6d5e6ea65d5e6ea65d5e6ea65d5e6ea65d5e6ea65
```
GraphQL introspection enabled at /api/graphql
Detected: Magento
```
  Found on 2026-01-02 19:29
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d63a4de5f9a0e00b9b64c86893d47a64a3870a0eb3
```
GraphQL introspection enabled at /api/graphql
Types: 1194 (by kind: ENUM: 86, INPUT_OBJECT: 237, INTERFACE: 177, OBJECT: 688, SCALAR: 5, UNION: 1)
Operations:
- Query: RootQuery | fields: allPaColor, allPaSizeTest, allSettings, cart, cartFee
- Mutation: RootMutation | fields: addCartItems, addFee, addToCart, applyCoupon, checkout
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-11-28 11:27
  
  2.5 MBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2025-11-26 10:34
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: sjuktspjall.styrkja.is
Port: 443
URL: https://sjuktspjall.styrkja.is

First seen 2025-12-01 03:53
Last seen 2026-01-02 19:07
Open for 32 days

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312255be2cfcd

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign
_ReferralTokensMeta (args: none) : singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2026-01-02 19:07

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312257561c969

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : name=Donation label=Donations singular=Donation plural=Donations path=donations key=Donation
_CheckoutsMeta (args: none) : singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-26 10:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225d68ed3b1

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : plural=Donations path=donations key=Donation name=Donation label=Donations singular=Donation
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2025-12-24 11:56

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312252f33fa37

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-22 13:41

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312255cfce2ef

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : name=Donation label=Donations singular=Donation plural=Donations path=donations key=Donation
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-20 11:18

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312254ed29437

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-19 10:27

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122590f6200b

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-17 02:56

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225429a04f1

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2025-12-13 12:23

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122540dee1bf

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : path=organizations key=Organization name=Organization label=Organizations singular=Organization plural=Organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312251819032f

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: natturuvernd.styrkja.is
Port: 443
URL: https://natturuvernd.styrkja.is

First seen 2025-12-01 03:53
Last seen 2026-01-02 19:07
Open for 32 days

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225a33a120d

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : singular=Donation plural=Donations path=donations key=Donation name=Donation label=Donations
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : path=organizations key=Organization name=Organization label=Organizations singular=Organization plural=Organizations
_CampaignsMeta (args: none) : name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2026-01-02 19:07

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312254de203bd

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-26 10:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225a8a2b11b

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-24 11:56

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122520eb0b61

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-22 13:41

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225697569dd

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events

Found on 2025-12-20 11:18

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122506e90f37

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : plural=Donations path=donations key=Donation name=Donation label=Donations singular=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-19 10:27

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312250a3940f1

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-17 02:56

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312250b477669

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : plural=Users path=users key=User name=User label=Users singular=User
_DonationsMeta (args: none) : path=donations key=Donation name=Donation label=Donations singular=Donation plural=Donations
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-13 12:23

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312253d190743

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225cd3a1aed

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: interpointcompressor.com
Port: 443
URL: https://interpointcompressor.com

First seen 2025-07-25 03:15
Last seen 2026-01-02 19:07
Open for 161 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4a1aeb84

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/HsynAslan/Interpoint.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[lfs]
	repositoryformatversion = 0
[branch "interpoint_branch"]
	remote = origin
	merge = refs/heads/interpoint_branch
	vscode-merge-base = origin/interpoint_branch

Found on 2026-01-02 19:07

495 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: scm4all.com
Port: 443
URL: https://scm4all.com

First seen 2025-10-17 22:28
Last seen 2026-01-02 18:57
Open for 76 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0b127ae7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[gui]
	wmstate = normal
	geometry = 1109x563+224+224 216 255
[remote "origin"]
	url = https://github.com/sajo-a/scm4all-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 18:57
  
  365 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: virajptl.com
Port: 443
URL: https://virajptl.com

First seen 2025-07-19 08:13
Last seen 2026-01-02 18:36
Open for 167 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1a76293a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/V2patel007/Virajptl.com--Originial-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 18:36
  
  317 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sandalnomics.lol
Port: 443
URL: https://sandalnomics.lol

First seen 2025-07-24 12:10
Last seen 2026-01-02 18:33
Open for 162 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d5dea97b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/theflopfather/theflopfather.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 18:33
  
  268 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: questa-global.com
Port: 443
URL: https://questa-global.com

First seen 2024-01-30 21:02
Last seen 2026-01-02 18:22
Open for 702 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb725e2c5c

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/theodor961/questa-new.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main

Found on 2026-01-02 18:22

369 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb445a411c

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/theodor961/questa-new.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-05-24 15:14

303 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: donnovan.online
Port: 443
URL: https://donnovan.online

First seen 2025-12-05 11:47
Last seen 2026-01-02 18:18
Open for 28 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522621d7ddf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:BiggAlert/single-page-hair-braider.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 18:18
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: monchasseurdepierre.fr
Port: 443
URL: https://monchasseurdepierre.fr

First seen 2025-08-28 22:43
Last seen 2026-01-02 18:17
Open for 126 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229dbcc7b7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[user]
	name = Antoine
	email = antoine@example.com
[remote "origin"]
	url = https://github.com/antonasantoine-maker/chasseur-immobilier-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 18:17
  
  386 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.thechaigudi.com
Port: 443
URL: https://www.thechaigudi.com

First seen 2025-09-23 18:04
Last seen 2026-01-02 18:16
Open for 101 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224253a1e8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/SarvaBharan/thechaigudi.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 18:16
  
  345 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: eliteinversiones.co
Port: 443
URL: https://eliteinversiones.co

First seen 2025-12-02 06:47
Last seen 2026-01-02 18:14
Open for 31 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbac5a7f7a

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Jointic/inversiones.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
[branch "navbar"]
	vscode-merge-base = origin/main

Found on 2026-01-02 18:14

444 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: portfolio.masriq.tech
Port: 443
URL: https://portfolio.masriq.tech

First seen 2025-09-30 23:18
Last seen 2026-01-02 18:14
Open for 93 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd4278d97
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Sawood-Ahmed17/MASRIQ_Portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 18:14
  
  405 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: scope4.dev
Port: 443
URL: https://scope4.dev

First seen 2025-08-21 16:15
Last seen 2026-01-02 18:12
Open for 134 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba0108a11
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/tommasodesantis/sco4_landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 18:12
  
  314 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: taskstornado.tech
Port: 443
URL: https://taskstornado.tech

First seen 2025-08-10 11:44
Last seen 2026-01-02 18:03
Open for 145 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbcecb8655
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Quadraticx9/BB_M.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 18:03
  
  331 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: menu-digjitale.com
Port: 443
URL: https://menu-digjitale.com

First seen 2025-06-02 14:48
Last seen 2026-01-02 17:46
Open for 214 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb91f0389d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/menudigjitale.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2026-01-02 17:46

308 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdb413b12

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/menu-digjitale.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-10-02 15:25

309 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: 3d.woodprojects-diy.com
Port: 443
URL: https://3d.woodprojects-diy.com

First seen 2025-08-04 13:12
Last seen 2026-01-02 17:46
Open for 151 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbebc1fad2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/Notimpresd/my-webpage.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 17:46
  
  318 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hotelvishal.in
Port: 443
URL: https://hotelvishal.in

First seen 2025-10-05 08:14
Last seen 2026-01-02 17:46
Open for 89 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220c5d6c4a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Krishang-dhar/hotel-vihsal-final-new.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 17:46
  
  325 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: conneural.com
Port: 443
URL: https://conneural.com

First seen 2025-09-13 07:13
Last seen 2026-01-02 17:23
Open for 111 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb742a63bc
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/sbmp69/conneural-website-files-final-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 17:23
  
  411 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: 5stardumps.com
Port: 443
URL: https://5stardumps.com

First seen 2025-08-23 16:13
Last seen 2026-01-02 17:14
Open for 132 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb72e2fde8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Mridul24agaga/cleaning.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 17:14
  
  304 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: www.fizz.ee
Port: 443
URL: https://www.fizz.ee

First seen 2025-11-24 17:42
Last seen 2026-01-02 17:12
Open for 38 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-02 17:12
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d693a0fa24ea0fa9a87a5fedddfec54351eb8e99a5
```
GraphQL introspection enabled at /api/graphql
Types: 2174 (by kind: ENUM: 52, INPUT_OBJECT: 394, OBJECT: 1715, SCALAR: 8, UNION: 5)
Operations:
- Query: Query | fields: Page, Pages, Post, Posts, docAccessPage
- Mutation: Mutation | fields: createPage, createPost, deletePage, updatePage, updatePost
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2025-11-30 12:00
  
  1.5 MBytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: wedigistudio.com
Port: 443
URL: https://wedigistudio.com

First seen 2023-08-28 06:32
Last seen 2026-01-02 16:52
Open for 858 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd22ee782

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/swayammedia/WeDigi-LandingPage.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2026-01-02 16:52

345 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd809d3f3

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/WeDigiStudio/WeDigiStudio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-06-17 21:53

307 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: poemsbycourtney.co.za
Port: 443
URL: https://poemsbycourtney.co.za

First seen 2025-07-05 19:12
Last seen 2026-01-02 16:43
Open for 180 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d38603ec238603ec238603ec238603ec2
```
Found 1 files trough .DS_Store spidering:

/lovable-uploads
```
  Found on 2026-01-02 16:43
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dentalverse.co
Port: 443
URL: https://dentalverse.co

First seen 2025-12-12 12:35
Last seen 2026-01-02 16:36
Open for 21 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7c29c69d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/webmasters-Team/Test.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	gk-last-accessed = 2025-12-28T13:23:58.899Z
	gk-last-modified = 2025-12-28T13:23:58.899Z

Found on 2026-01-02 16:36

352 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb25b9607b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/webmasters-Team/Test.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-12-26 23:30

244 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: termo.mrsdeveloper.pro.br
Port: 443
URL: https://termo.mrsdeveloper.pro.br

First seen 2025-09-07 17:23
Last seen 2026-01-02 16:29
Open for 116 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd0dea5a1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://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@github.com/Zora123456/pwa_aceite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 16:29
  
  410 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: jeffswear.havlink.com
Port: 443
URL: https://jeffswear.havlink.com

First seen 2025-12-03 09:43
Last seen 2026-01-02 16:27
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-02 16:27
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ashar-kavish.info
Port: 443
URL: https://ashar-kavish.info

First seen 2025-10-30 14:59
Last seen 2026-01-02 16:27
Open for 64 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2d000f95
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kavish055/Portfolio-Ashar-Kavish.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 16:27
  
  347 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: caleblaurent.dev
Port: 443
URL: https://caleblaurent.dev

First seen 2025-11-28 23:35
Last seen 2026-01-02 16:23
Open for 34 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a0d226b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/CalebLaurent509/portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 16:23
  
  269 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.ascentiqtechno.com
Port: 443
URL: https://www.ascentiqtechno.com

First seen 2025-10-20 16:17
Last seen 2026-01-02 16:15
Open for 73 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbeb4d45d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/AscentIqTechno/AscentiqTechnoPvtLtd.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 16:15
  
  317 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ultherapy-prime.co
Port: 443
URL: https://ultherapy-prime.co

First seen 2025-11-21 03:56
Last seen 2026-01-02 16:13
Open for 42 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652251bdbfba

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/JeromeTana/ultherapy-prime.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2026-01-02 16:13

212 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e22cd2db

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/JeromeTana/ultherapy-prime.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "free-parking/add-image"]
	remote = origin
	merge = refs/heads/free-parking/add-image

Found on 2025-12-01 10:17

306 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522197862fb

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/WEBCRAFTSMAN-CO/ultherapy-prime.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-11-29 09:13

275 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: paksons-enterprises-ltd.store
Port: 443
URL: https://paksons-enterprises-ltd.store

First seen 2025-11-18 10:02
Last seen 2026-01-02 16:08
Open for 45 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb03be8678
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/B3njiiii9/paksons-enterprises.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 16:08
  
  313 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kcal-ai.app
Port: 443
URL: https://kcal-ai.app

First seen 2025-08-16 16:25
Last seen 2026-01-02 15:46
Open for 138 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f226e74d
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/imraniqbal786/kcal-ai-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 15:46
  
  260 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: selinagurung.com.np
Port: 443
URL: https://selinagurung.com.np

First seen 2025-07-22 12:03
Last seen 2026-01-02 15:35
Open for 164 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdc6002ef
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Paribeshlamsal/Portfolio-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 15:35
  
  311 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: akif.pw
Port: 443
URL: https://akif.pw

First seen 2025-08-10 09:43
Last seen 2026-01-02 15:34
Open for 145 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb99061d36
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ak0f/html.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 15:34
  
  291 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: avitravels.com
Port: 443
URL: https://avitravels.com

First seen 2025-09-11 15:26
Last seen 2026-01-02 15:32
Open for 113 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652239b73d5a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/ajaykundnani/avitravels.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 15:32
  
  300 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: fram3it.com
Port: 443
URL: https://fram3it.com

First seen 2025-11-18 20:25
Last seen 2026-01-02 15:24
Open for 44 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb043061cf
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/carmeldev/fram3it.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 15:24
  
  332 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: fusioninterpreter.com
Port: 443
URL: https://fusioninterpreter.com

First seen 2025-08-25 04:43
Last seen 2026-01-02 15:21
Open for 130 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb73b65d6b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/codewithsadee/pixology.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
```
  Found on 2026-01-02 15:21
  
  343 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: inteeccsg.com
Port: 443
URL: https://inteeccsg.com

First seen 2025-10-13 16:59
Last seen 2026-01-02 15:17
Open for 80 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9e628b0b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/inteec-csg.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 15:17
  
  305 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mazentalsam.com
Port: 443
URL: https://mazentalsam.com

First seen 2025-10-27 19:55
Last seen 2026-01-02 14:57
Open for 66 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3ac19b03
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/mazentalsam/Personal-Portfolio-Website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 14:57
  
  320 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sglobal.spr-ksa.com
Port: 443
URL: https://sglobal.spr-ksa.com

First seen 2025-10-07 22:03
Last seen 2026-01-02 14:34
Open for 86 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4d79103e

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "main"]
	url = https://github.com/MuhannadAlhero/spr.git
	fetch = +refs/heads/*:refs/remotes/main/*
[branch "new"]
	vscode-merge-base = main/main
	remote = main
	merge = refs/heads/new
	github-pr-base-branch = "MuhannadAlhero#spr#main"
	github-pr-base-branch = "MuhannadAlhero#spr#main"
[branch "main"]
	vscode-merge-base = main/main
	remote = origin
	merge = refs/heads/main
	github-pr-base-branch = "MuhannadAlhero#spr#new"
	github-pr-base-branch = "MuhannadAlhero#spr#new"
	github-pr-base-branch = "MuhannadAlhero#spr#new"
[remote "origin"]
	url = https://github.com/MuhannadAlhero/spr.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2026-01-02 14:34

776 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: georgevourkas.com
Port: 443
URL: https://georgevourkas.com

First seen 2025-12-03 23:13
Last seen 2026-01-02 14:29
Open for 29 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652231e7c967

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/GeorgeVourkas/George-Vourkas-Portfolio-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0

Found on 2026-01-02 14:29

420 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf9df1ddb

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/GeorgeVourkas/George-Vourkas-Portfolio-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-12-25 04:59

389 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thewalkercollective.co.uk
Port: 443
URL: https://thewalkercollective.co.uk

First seen 2025-07-19 05:54
Last seen 2026-01-02 14:29
Open for 167 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0985f277
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/JLCode619/TheWalkerCollective.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 14:29
  
  311 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: yuri.is
Port: 443
URL: https://yuri.is

First seen 2025-03-01 22:04
Last seen 2026-01-02 14:15
Open for 306 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af247259b6c86336bd33a8f80b49bd166b48e78
```
Found 9 files trough .DS_Store spidering:

/assets
/assets/font
/assets/home
/assets/katex@0.16.25
/cardcrafting
/cardcrafting/data
/cardcrafting/img
/cardcrafting/img_2x
/cardcrafting/lib
```
  Found on 2026-01-02 14:15
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392abdc1b177d3ba82689d0d591241968252c
```
Found 7 files trough .DS_Store spidering:

/assets
/assets/font
/cardcrafting
/cardcrafting/data
/cardcrafting/img
/cardcrafting/img_2x
/cardcrafting/lib
```
  Found on 2025-09-02 17:35
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: falcon-heart.com
Port: 443
URL: https://falcon-heart.com

First seen 2025-08-24 22:45
Last seen 2026-01-02 14:14
Open for 130 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d2dd6bea
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/borisGro/falcon-heart.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 14:14
  
  310 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cursosmp.com
Port: 443
URL: https://cursosmp.com

First seen 2025-09-02 08:53
Last seen 2026-01-02 14:11
Open for 122 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4ebfe310
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/Maicc30/Futplus.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 14:11
  
  398 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mowtivationlawncare.com
Port: 443
URL: https://mowtivationlawncare.com

First seen 2025-08-22 09:04
Last seen 2026-01-02 14:04
Open for 133 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7d0aada4
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:Oak-Harbor-Kits/Starter-KitV3.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 14:04
  
  373 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: gescreativestudio.com
Port: 443
URL: https://gescreativestudio.com

First seen 2025-09-18 16:56
Last seen 2026-01-02 13:54
Open for 105 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9ba40449
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Amongas232323/GES.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 13:54
  
  299 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: academicweb.in
Port: 443
URL: https://academicweb.in

First seen 2025-07-23 07:13
Last seen 2026-01-02 13:53
Open for 163 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652225a2252b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:nmitydv/Academic_Website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 13:53
  
  264 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hibahshah.xyz
Port: 443
URL: https://hibahshah.xyz

First seen 2025-08-02 10:52
Last seen 2026-01-02 13:43
Open for 153 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb830d6a6a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/Keladose/H-Project.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 13:43
  
  368 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: staging.kanzleipilot.de
Port: 443
URL: https://staging.kanzleipilot.de

First seen 2025-10-29 02:42
Last seen 2026-01-02 13:42
Open for 65 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa354a4d27a29cb2f2abc0fc735cb5e18baaa0f10ce

GraphQL introspection enabled at /graphql
Types: 298 (by kind: ENUM: 37, INPUT_OBJECT: 103, OBJECT: 147, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: categories, categoryItem, categoryItems, libraryCategories, validateAllItemPricingFormulas
- Mutation: Mutation | fields: copyCategoryItem, createCategoryItem, deleteCategoryItem, duplicateCategoryItem, moveCategoryItem
- Subscription: Subscription | fields: cpuGraph, cpuUsage, logLine, memUsage, notification
Directives: auth, deprecated, dev, include, oneOf, signeeAuth, skip, specifiedBy, superAdminOrDev (total: 9)

Found on 2026-01-02 13:42

370.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32a97a61ad087978a7c727cd5db1843dafdba0fae

GraphQL introspection enabled at /graphql
Types: 297 (by kind: ENUM: 37, INPUT_OBJECT: 103, OBJECT: 146, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: categories, categoryItem, categoryItems, libraryCategories, validateAllItemPricingFormulas
- Mutation: Mutation | fields: copyCategoryItem, createCategoryItem, deleteCategoryItem, duplicateCategoryItem, moveCategoryItem
- Subscription: Subscription | fields: cpuGraph, cpuUsage, logLine, memUsage, notification
Directives: auth, deprecated, dev, include, oneOf, signeeAuth, skip, specifiedBy, superAdminOrDev (total: 9)

Found on 2025-11-10 20:59

369.8 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: zipcode.commente.me
Port: 443
URL: https://zipcode.commente.me

First seen 2025-09-22 15:28
Last seen 2026-01-02 13:42
Open for 101 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652229a662d7

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:zeluizr/zipcode_chile_VTEX_Excel_Generator.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "dev"]
	github-pr-base-branch = "zeluizr#zipcode_chile_VTEX_Excel_Generator#main"
	vscode-merge-base = origin/main

Found on 2026-01-02 13:42

450 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: notaphonologist.com
Port: 443
URL: https://notaphonologist.com

First seen 2025-11-08 12:03
Last seen 2026-01-02 13:38
Open for 55 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f59365a30ac01a7a0ac01a7a0ac01a7a
```
Found 2 files trough .DS_Store spidering:

/images
/site_libs
```
  Found on 2026-01-02 13:38
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ptshivpuripriest.com
Port: 443
URL: https://ptshivpuripriest.com

First seen 2025-09-23 08:26
Last seen 2026-01-02 13:29
Open for 101 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4997511d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/VeeraNagendraBabu/DraftSite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 13:29
  
  342 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: placobek.com
Port: 443
URL: https://placobek.com

First seen 2025-07-26 22:14
Last seen 2026-01-02 13:16
Open for 159 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe5c352ff
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/b4ktas/placobek.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 13:16
  
  301 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: astrokrishnna.co.in
Port: 443
URL: https://astrokrishnna.co.in

First seen 2025-09-11 20:16
Last seen 2026-01-02 13:16
Open for 112 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbb7605e4

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "upstream"]
	url = https://github.com/soulkiller31/Astrokrishna.git
	fetch = +refs/heads/*:refs/remotes/upstream/*
[remote "origin"]
	url = https://github.com/soulkiller31/Astrokrishna.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2026-01-02 13:16

463 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: panchhee.in
Port: 443
URL: https://panchhee.in

First seen 2025-09-13 10:55
Last seen 2026-01-02 13:16
Open for 111 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522df30afd8

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Code-Panchhee/landing-page.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "fix/bg"]
	vscode-merge-base = origin/master
[branch "staging"]
	vscode-merge-base = origin/master
	remote = origin
	merge = refs/heads/staging

Found on 2026-01-02 13:16

471 Bytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: marketplace.jigen.io
Port: 443
URL: https://marketplace.jigen.io

First seen 2025-12-05 09:22
Last seen 2026-01-02 13:15
Open for 28 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-02 13:15
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: theconnection.space
Port: 443
URL: https://theconnection.space

First seen 2025-08-07 18:23
Last seen 2026-01-02 13:12
Open for 147 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb989414bc

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/BeaglesWorth421/The-Connection.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "v20250715"]
	remote = origin
	merge = refs/heads/v20250715
	vscode-merge-base = origin/v20250715
[branch "v20250805"]
	remote = origin
	merge = refs/heads/v20250805
	vscode-merge-base = origin/v20250805
[branch "v20250808"]
	vscode-merge-base = origin/v20250805
	remote = origin
	merge = refs/heads/v20250808
[branch "v20250808-stripe"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-stripe
[branch "v20250808-form-repair"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-form-repair
[branch "v20250812"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250812
[branch "v20250815"]
	vscode-merge-base = origin/v20250812
	remote = origin
	merge = refs/heads/v20250815
[branch "v20250822"]
	vscode-merge-base = origin/v20250815
	remote = origin
	merge = refs/heads/v20250822

Found on 2026-01-02 13:12

1.2 kBytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdf4fe0ac

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/BeaglesWorth421/The-Connection.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "v20250715"]
	remote = origin
	merge = refs/heads/v20250715
	vscode-merge-base = origin/v20250715
[branch "v20250805"]
	remote = origin
	merge = refs/heads/v20250805
	vscode-merge-base = origin/v20250805
[branch "v20250808"]
	vscode-merge-base = origin/v20250805
	remote = origin
	merge = refs/heads/v20250808
[branch "v20250808-stripe"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-stripe
[branch "v20250808-form-repair"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-form-repair
[branch "v20250812"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250812
[branch "v20250815"]
	vscode-merge-base = origin/v20250812

Found on 2025-08-22 16:27

1.1 kBytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb653830ab

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/BeaglesWorth421/The-Connection.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "v20250715"]
	remote = origin
	merge = refs/heads/v20250715
	vscode-merge-base = origin/v20250715
[branch "v20250805"]
	remote = origin
	merge = refs/heads/v20250805
	vscode-merge-base = origin/v20250805
[branch "v20250808"]
	vscode-merge-base = origin/v20250805
	remote = origin
	merge = refs/heads/v20250808
[branch "v20250808-stripe"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-stripe
[branch "v20250808-form-repair"]
	vscode-merge-base = origin/v20250808
	remote = origin
	merge = refs/heads/v20250808-form-repair

Found on 2025-08-14 08:41

913 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb22a0b539

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/BeaglesWorth421/The-Connection.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "v20250715"]
	remote = origin
	merge = refs/heads/v20250715
	vscode-merge-base = origin/v20250715

Found on 2025-08-07 18:23

451 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: apanda.dev
Port: 443
URL: https://apanda.dev

First seen 2025-11-09 02:26
Last seen 2026-01-02 13:07
Open for 54 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227fb8bc60
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/pizzalover125/pizzalover125tech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 13:07
  
  262 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: truezentechnologies.com
Port: 443
URL: https://truezentechnologies.com

First seen 2025-09-07 09:34
Last seen 2026-01-02 13:01
Open for 117 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb96f2734b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/TrueLearn-Academy/truezen-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 13:01
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: safapublicschool.in
Port: 443
URL: https://safapublicschool.in

First seen 2025-12-05 11:00
Last seen 2026-01-02 12:57
Open for 28 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0d4d32cb
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/naseeb0007/safa-public-school-portfolio-main.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:57
  
  326 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.cincatequila.com
Port: 443
URL: https://www.cincatequila.com

First seen 2025-07-26 07:43
Last seen 2026-01-02 12:56
Open for 160 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522cf83e424
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/robertbkoch/Cinca.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "holding-page"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/holding-page
```
  Found on 2026-01-02 12:56
  
  413 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: techsistema.com.br
Port: 443
URL: https://techsistema.com.br

First seen 2025-10-02 18:28
Last seen 2026-01-02 12:56
Open for 91 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb97c45362
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:pedrowork/portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:56
  
  297 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aquasafeguards.com
Port: 443
URL: https://aquasafeguards.com

First seen 2025-09-25 11:31
Last seen 2026-01-02 12:56
Open for 99 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb70ded880
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Marzooklathief/new_formula.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:56
  
  308 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: midnightoil.online
Port: 443
URL: https://midnightoil.online

First seen 2025-08-28 18:45
Last seen 2026-01-02 12:52
Open for 126 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c0e34cc3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/afc1804/test1
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:52
  
  253 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: claritio.com.br
Port: 443
URL: https://claritio.com.br

First seen 2025-12-02 12:22
Last seen 2026-01-02 12:48
Open for 31 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5cf2377c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/VicMalac/claritio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 12:48
  
  358 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: byfiruza.cloud
Port: 443
URL: https://byfiruza.cloud

First seen 2025-10-29 18:54
Last seen 2026-01-02 12:44
Open for 64 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb395f1d36
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Firuza-pl/MyResume.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:44
  
  300 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thinkdesign.org.in
Port: 443
URL: https://thinkdesign.org.in

First seen 2025-09-16 08:46
Last seen 2026-01-02 12:43
Open for 108 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb09d7fbf8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Raviipandey/ThinkDesign.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 12:43
  
  338 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: csg.com.ar
Port: 443
URL: https://csg.com.ar

First seen 2025-11-12 12:31
Last seen 2026-01-02 12:36
Open for 51 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb44ec45f0
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/MarianoTimistit23/csg-seguros.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 12:36
  
  401 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cuadrosdeluz.com.ar
Port: 443
URL: https://cuadrosdeluz.com.ar

First seen 2025-10-17 17:43
Last seen 2026-01-02 12:31
Open for 76 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522474aa93e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/walterdiaz78/cuadrosdeluz.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:31
  
  269 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kalipdftools.com
Port: 443
URL: https://kalipdftools.com

First seen 2025-08-11 10:27
Last seen 2026-01-02 12:30
Open for 144 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdb451bcd
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/KALIFX/PDFTOOLSTRIO.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:30
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: telesoko.store
Port: 443
URL: https://telesoko.store

First seen 2025-10-03 18:52
Last seen 2026-01-02 12:24
Open for 90 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1fc548fc
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/telesoko/telesokostore.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:24
  
  304 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: farmersmarketla.com
Port: 443
URL: https://farmersmarketla.com

First seen 2025-11-25 18:09
Last seen 2026-01-02 12:23
Open for 37 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62f9ffa0d7934fd2f00bb52477606dfac8b7c17e2
```
GraphQL introspection enabled at /api/graphql
Types: 105 (by kind: ENUM: 7, INPUT_OBJECT: 40, OBJECT: 50, SCALAR: 8)
Operations:
- Query: Query | fields: countBlog, countBlogCategory, getBlog, listBlog, listBlogCategory
- Mutation: Mutation | fields: createBlog, createBlogCategory, deleteBlog, publishBlog, updateBlog
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0
```
  Found on 2026-01-02 12:23
  
  512.8 kBytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bhavyhomes.tech
Port: 443
URL: https://bhavyhomes.tech

First seen 2025-08-07 16:09
Last seen 2026-01-02 12:21
Open for 147 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb818e678e

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/PRITHVIBO/DiscussionForum
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/main

Found on 2026-01-02 12:21

340 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb1fb787b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/PRITHVIBO/DiscussionForum
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2025-08-07 16:09

307 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pepeponke.xyz
Port: 443
URL: https://pepeponke.xyz

First seen 2025-08-24 20:02
Last seen 2026-01-02 12:15
Open for 130 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f2afb161
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/veppy1/pepeponke.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 12:15
  
  309 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.phoenixofresilience.org
Port: 443
URL: https://www.phoenixofresilience.org

First seen 2025-12-13 00:13
Last seen 2026-01-02 12:11
Open for 20 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe84e8ae7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Jalita19/phoenixofresilience_website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 12:11
  
  318 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.movenpickamman.com
Port: 443
URL: https://www.movenpickamman.com

First seen 2023-04-09 14:00
Last seen 2026-01-02 12:06
Open for 998 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652282838ff1

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/AmmanDynamics/movenpick-menu-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
	vscode-merge-base = origin/develop
[branch "master"]
	remote = origin
	merge = refs/heads/master
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[branch "feature/new-menue-index"]
	remote = origin
	merge = refs/heads/feature/new-menue-index

Found on 2026-01-02 12:06

688 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652220cff140

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/AmmanDynamics/movenpick-menu-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[branch "master"]
	remote = origin
	merge = refs/heads/master
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[branch "feature/new-menue-index"]
	remote = origin
	merge = refs/heads/feature/new-menue-index

Found on 2025-05-28 03:02

652 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: calculatehome.com
Port: 443
URL: https://calculatehome.com

First seen 2025-11-25 16:49
Last seen 2026-01-02 11:59
Open for 37 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb51d6d73e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/ntharaka430-bot/CalculateHome.com-Local.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 11:59
  
  356 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.sopresi.fr
Port: 443
URL: https://www.sopresi.fr

First seen 2025-08-14 16:44
Last seen 2026-01-02 11:19
Open for 140 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652266b3ee95
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Users/olgaleletalla/Documents/cleaning_web_site
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 11:19
  
  274 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: augmentcrafter.org
Port: 443
URL: https://augmentcrafter.org

First seen 2025-09-28 21:07
Last seen 2026-01-02 11:08
Open for 95 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb17029de1

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/rhanna3991/augmentcrafter
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2026-01-02 11:08

303 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc64c7536

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/rhanna3991/augmentcrafter.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-10-02 21:52

340 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8abe1f8a

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/rhanna3991/augmentcrafter.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-09-30 19:34

249 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bionexaglobal.com
Port: 443
URL: https://bionexaglobal.com

First seen 2025-11-11 12:19
Last seen 2026-01-02 10:54
Open for 51 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb582ad3a2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://<YOUR_TOKEN>@github.com/charslanasif0/Bionexa_portal.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 10:54
  
  327 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: app.sensorfield.com
Port: 443
URL: https://app.sensorfield.com

First seen 2025-10-18 17:32
Last seen 2026-01-02 10:52
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d68eb81256936d4786629b85c08c01bf782d637200

GraphQL introspection enabled at /api/graphql
Types: 120 (by kind: ENUM: 2, INPUT_OBJECT: 10, OBJECT: 103, SCALAR: 5)
Operations:
- Query: Query | fields: fota, me, user, users, usersRe
- Mutation: Mutation | fields: ackAlarm, addAPIKey, addComment, addCompany, addCustomKeyCode
Directives: deprecated, include, skip (total: 3)

Found on 2026-01-02 10:52

155.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6def279538ea4c91186ab211d0ba0f435dc6c0055

GraphQL introspection enabled at /api/graphql
Types: 119 (by kind: ENUM: 2, INPUT_OBJECT: 10, OBJECT: 102, SCALAR: 5)
Operations:
- Query: Query | fields: fota, me, user, users, usersRe
- Mutation: Mutation | fields: ackAlarm, addAPIKey, addComment, addCompany, addCustomKeyCode
Directives: deprecated, include, skip (total: 3)

Found on 2025-12-26 14:58

153.5 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sampling-with-hard-constraints.site
Port: 443
URL: https://sampling-with-hard-constraints.site

First seen 2025-11-28 20:27
Last seen 2026-01-02 10:48
Open for 34 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221f0817c6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:alexrosen45/spatial_constraints_site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 10:48
  
  280 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: student-bridge.com
Port: 443
URL: https://student-bridge.com

First seen 2025-09-08 19:09
Last seen 2026-01-02 10:36
Open for 115 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc6322c7a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/talhazafarsb/studentBridge.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 10:36
  
  308 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: amazonwoods.in
Port: 443
URL: https://amazonwoods.in

First seen 2025-10-08 18:04
Last seen 2026-01-02 10:28
Open for 85 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5a3bf664
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Developer-Blessy/amazonwoods-door.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[user]
	email = deveblessyfreelance7@gmail.com
	name = Developer-Blessy
```
  Found on 2026-01-02 10:28
  
  329 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: denmith.com
Port: 443
URL: https://denmith.com

First seen 2025-08-02 02:43
Last seen 2026-01-02 10:20
Open for 153 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d4f31f12
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/nayan-em/Denmith.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 10:20
  
  305 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dreamcoffeepr.com
Port: 443
URL: https://dreamcoffeepr.com

First seen 2025-08-22 21:40
Last seen 2026-01-02 10:16
Open for 132 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d4632442
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:Lyan-OS/Dreamcoffee.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 10:16
  
  292 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: crowdselling.eu
Port: 443
URL: https://crowdselling.eu

First seen 2025-10-21 13:06
Last seen 2026-01-02 10:13
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67c42e5051478b6c78673ce64a40222378e03a4f1

GraphQL introspection enabled at /api/graphql
Types: 231 (by kind: ENUM: 18, INPUT_OBJECT: 67, INTERFACE: 3, OBJECT: 136, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2026-01-02 10:13

267.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d621b35c04cb1a7648e53297137c50bc8cbe6651fc

GraphQL introspection enabled at /api/graphql
Types: 228 (by kind: ENUM: 19, INPUT_OBJECT: 65, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-01 08:29

264.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b051d5706ad22d74683d93e70e782bb076775b10

GraphQL introspection enabled at /api/graphql
Types: 227 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-11-16 19:49

261.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6da3e8120aa5f0324aa57fdb7ac067fc0cc54fbe0

GraphQL introspection enabled at /api/graphql
Types: 225 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 132, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-10-29 06:13

259.1 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: unitedpressureprosfl.com
Port: 443
URL: https://unitedpressureprosfl.com

First seen 2024-07-23 21:43
Last seen 2026-01-02 10:13
Open for 527 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9ceeb868

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/TBN22/softwashpros.org.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
[branch "talal"]
	remote = origin
	merge = refs/heads/talal
	vscode-merge-base = origin/main
[branch "testing"]
	remote = origin
	merge = refs/heads/testing
	vscode-merge-base = origin/testing

Found on 2026-01-02 10:13

589 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6fadeb45

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/TBN22/softwashpros.org.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
[branch "talal"]
	remote = origin
	merge = refs/heads/talal
	vscode-merge-base = origin/main

Found on 2025-04-10 09:53

489 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbeb8ec68

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/TBN22/softwashpros.org.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "talal"]
	github-pr-base-branch = "TBN22#softwashpros.org#main"
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/talal
[branch "testing"]
	github-pr-base-branch = "TBN22#softwashpros.org#talal"
	vscode-merge-base = origin/talal
	remote = origin
	merge = refs/heads/testing

Found on 2024-09-16 04:32

606 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: getbestinshow.com
Port: 443
URL: https://getbestinshow.com

First seen 2025-02-09 02:23
Last seen 2026-01-02 10:07
Open for 327 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d545ab09

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/shift-solutions/best_in_show_marketing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main

Found on 2026-01-02 10:07

393 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224cd58649

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/shift-solutions/best_in_show_marketing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-08-09 12:46

327 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mvrlogistics.in
Port: 443
URL: https://mvrlogistics.in

First seen 2025-12-09 11:38
Last seen 2026-01-02 09:54
Open for 23 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5f15446b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/UGS141/Mvr-logistics-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 09:54
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: basebrunos.xyz
Port: 443
URL: https://basebrunos.xyz

First seen 2025-11-10 22:30
Last seen 2026-01-02 09:38
Open for 52 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb94722c48
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Hugocorreaa/nft-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 09:38
  
  338 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: fromtheretohere.unitedtalent.com
Port: 443
URL: https://fromtheretohere.unitedtalent.com

First seen 2025-11-21 11:40
Last seen 2026-01-02 09:35
Open for 41 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d68a73f3a066dcfea44221a584091f91a7a5da007f
```
GraphQL introspection enabled at /api/graphql
Types: 1014 (by kind: ENUM: 18, INPUT_OBJECT: 124, OBJECT: 861, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 09:35
  
  649.0 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: arkanalytical.in
Port: 443
URL: https://arkanalytical.in

First seen 2025-11-16 09:58
Last seen 2026-01-02 09:27
Open for 46 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2278fabb
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Ddxx98/ark-analytical-solutions.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 09:27
  
  346 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mindrootlabs.com
Port: 443
URL: https://mindrootlabs.com

First seen 2025-08-02 15:06
Last seen 2026-01-02 09:27
Open for 152 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1226a2b2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/mindrootlabs/mindroot-labs-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 09:27
  
  316 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: junglegroves.com
Port: 443
URL: https://junglegroves.com

First seen 2025-12-12 18:52
Last seen 2026-01-02 09:17
Open for 20 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e94a3f6c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/epiphyte78-web/junglegroves.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 09:17
  
  271 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ashar-kavish.online
Port: 443
URL: https://ashar-kavish.online

First seen 2025-10-15 10:40
Last seen 2026-01-02 09:12
Open for 78 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2d000f95

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kavish055/Portfolio-Ashar-Kavish.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2026-01-02 09:12

347 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb923963f8

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kavish055/Portfolio-Ashar-Kavish.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-10-15 10:40

314 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dylanslight.net
Port: 443
URL: https://dylanslight.net

First seen 2025-12-01 20:10
Last seen 2026-01-02 09:07
Open for 31 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbcb000850
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/3elk/Website-IP-Logger.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 09:07
  
  304 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cnpred.com
Port: 443
URL: https://cnpred.com

First seen 2025-11-10 21:42
Last seen 2026-01-02 09:06
Open for 52 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb582879a0
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/haikieki/CNPREDLP.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
	vscode-merge-base = origin/master
```
  Found on 2026-01-02 09:06
  
  408 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: www.styrkja.is
Port: 443
URL: https://www.styrkja.is

First seen 2025-12-01 03:53
Last seen 2026-01-02 09:00
Open for 32 days

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225e5c35c3f

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout
_OrganizationsMeta (args: none) : path=organizations key=Organization name=Organization label=Organizations singular=Organization plural=Organizations
_CampaignsMeta (args: none) : name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2026-01-02 09:00

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312257508e741

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : singular=Organization plural=Organizations path=organizations key=Organization name=Organization label=Organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-27 02:41

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312257581d7c3

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : singular=Organization plural=Organizations path=organizations key=Organization name=Organization label=Organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-24 21:18

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225b3d9e9e9

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : name=Donation label=Donations singular=Donation plural=Donations path=donations key=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-22 21:25

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225617ac36b

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : singular=Donation plural=Donations path=donations key=Donation name=Donation label=Donations
_CheckoutsMeta (args: none) : name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-20 22:55

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312258f8b06b3

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : path=organizations key=Organization name=Organization label=Organizations singular=Organization plural=Organizations
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-19 01:59

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312254f606bab

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-16 23:23

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122588075189

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : name=Donation label=Donations singular=Donation plural=Donations path=donations key=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-13 02:01

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312253c59612d

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns
_ReferralTokensMeta (args: none) : label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2025-12-06 10:02

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225b9138987

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-02 06:28

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225ae881323

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : name=Donation label=Donations singular=Donation plural=Donations path=donations key=Donation
_CheckoutsMeta (args: none) : singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312255d4b98ef

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : plural=Donations path=donations key=Donation name=Donation label=Donations singular=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ispecs.com.ng
Port: 443
URL: https://ispecs.com.ng

First seen 2025-10-15 15:37
Last seen 2026-01-02 08:52
Open for 78 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf41f2928
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/Manuelzee/ispecs-solutions-website-template.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 08:52
  
  360 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: uk.app.dev.earlypayxdev.com
Port: 443
URL: https://uk.app.dev.earlypayxdev.com

First seen 2025-11-27 18:42
Last seen 2026-01-02 08:20
Open for 35 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 08:20

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa339337e52b82fe6a2ed66a0ffc8c1836d823896b9

GraphQL introspection enabled at /graphql
Types: 581 (by kind: ENUM: 98, INPUT_OBJECT: 111, INTERFACE: 2, OBJECT: 363, SCALAR: 7)
Operations:
- Query: Query | fields: getBouncedEmailsStats, getInvoiceHistory, getOnboardingCommStats, getUpcomingOnboardingStats, supplierEngagementBouncedEmails
- Mutation: Mutation | fields: createDefaultCustomerMarketSchedule, createFarmerRequestPaymentsClearingAudit, enableContractEntityForProgressClaimProduct, enableProgressClaimsForCustomer, updateCustomerMarketSchedule
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-01 09:11

1.2 MBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: arthurgutierrez.com.br
Port: 443
URL: https://arthurgutierrez.com.br

First seen 2025-10-25 11:53
Last seen 2026-01-02 08:10
Open for 68 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8936558a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ArthurGuti/Portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 08:10
  
  302 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dfsobreira.pt
Port: 443
URL: https://dfsobreira.pt

First seen 2025-08-19 11:13
Last seen 2026-01-02 08:09
Open for 135 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652230212ea0
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:dfsobreira/vistastone.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 08:09
  
  261 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: redhilleducationgroup.com
Port: 443
URL: https://redhilleducationgroup.com

First seen 2025-11-08 15:52
Last seen 2026-01-02 08:03
Open for 54 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652272356971
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/bhuvaneswarignanasekar/redhill-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 08:03
  
  327 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cytotecs.com
Port: 443
URL: https://cytotecs.com

First seen 2025-08-01 13:14
Last seen 2026-01-02 08:02
Open for 153 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf2ea484e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/MANSOUR-MHD/cytotec.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 08:02
  
  334 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aquaworld.co.ke
Port: 443
URL: https://aquaworld.co.ke

First seen 2025-09-11 10:12
Last seen 2026-01-02 07:41
Open for 112 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd3306292
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/shenleeosialai/aquaa.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:41
  
  302 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: redveilgames.com
Port: 443
URL: https://redveilgames.com

First seen 2025-10-26 18:42
Last seen 2026-01-02 07:41
Open for 67 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb81dce3b7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/BenPancakes/WarpWakeWebsite
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:41
  
  329 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dia4prasempre.com.br
Port: 443
URL: https://dia4prasempre.com.br

First seen 2025-12-04 04:34
Last seen 2026-01-02 07:33
Open for 29 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0c3987e7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Guilhermehenriquee/ana01.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 07:33
  
  398 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: entrepath.net
Port: 443
URL: https://entrepath.net

First seen 2025-09-20 06:15
Last seen 2026-01-02 07:32
Open for 104 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b193c0d8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/otti007/Entrepath-WEB.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:32
  
  310 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: blaban.iqrarabic.com
Port: 443
URL: https://blaban.iqrarabic.com

First seen 2025-11-16 13:49
Last seen 2026-01-02 07:22
Open for 46 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7b0564b7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/eymenelneccar/blban.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:22
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mohammad-mubaslat.com
Port: 443
URL: https://mohammad-mubaslat.com

First seen 2025-09-26 11:54
Last seen 2026-01-02 07:12
Open for 97 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8a529004
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[http]
	postBuffer = 524288000
[remote "origin"]
	url = https://github.com/mohammadmubaslat/MohammadMubaslat.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-02 07:12
  
  298 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.trmzsound.com
Port: 443
URL: https://www.trmzsound.com

First seen 2025-11-06 16:28
Last seen 2026-01-02 07:11
Open for 56 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652270ce180c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:thechipsahoy986/trmz-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:11
  
  310 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.kodea.it
Port: 443
URL: https://www.kodea.it

First seen 2025-11-23 17:10
Last seen 2026-01-02 07:11
Open for 39 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227f222cdf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@gitlab.com:kodeadev/kodea.it.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 07:11
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kcsvisaslots.com
Port: 443
URL: https://kcsvisaslots.com

First seen 2025-08-28 10:56
Last seen 2026-01-02 07:09
Open for 126 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226f298a0b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:mahendra180993/kcs-visaslots.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 07:09
  
  268 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cliqfitapp.com
Port: 443
URL: https://cliqfitapp.com

First seen 2025-11-26 23:22
Last seen 2026-01-02 06:55
Open for 36 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522eb180aec
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:EA-Projects/cliqfit.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 06:55
  
  304 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: faiths-campers.com
Port: 443
URL: https://faiths-campers.com

First seen 2025-12-03 04:05
Last seen 2026-01-02 06:51
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6de38b5fec933eb2e06c74db6091e71953d9c41a1
```
GraphQL introspection enabled at /api/graphql
Types: 972 (by kind: ENUM: 6, INPUT_OBJECT: 111, OBJECT: 843, SCALAR: 8, UNION: 4)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 06:51
  
  608.3 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ssh.clarityengine.xyz
Port: 443
URL: https://ssh.clarityengine.xyz

First seen 2025-12-08 05:05
Last seen 2026-01-02 06:47
Open for 25 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb64b9b91c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = git@github.com:thoaionline/clarityengine-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 06:47
  
  332 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: fakeuploads.de
Port: 443
URL: https://fakeuploads.de

First seen 2025-11-03 07:32
Last seen 2026-01-02 06:45
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb716160d4
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/cenfoire/clean-bio-website
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 06:45
  
  304 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ibreformada.org.br
Port: 443
URL: https://ibreformada.org.br

First seen 2025-10-10 09:37
Last seen 2026-01-02 06:30
Open for 83 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8ab31ebc
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/IBReformada/IBR-Website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 06:30
  
  395 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cearaautocenter.com.br
Port: 443
URL: https://cearaautocenter.com.br

First seen 2025-11-09 19:22
Last seen 2026-01-02 06:20
Open for 53 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbec1b5850
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/renatoyx/ceara_auto_center.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 06:20
  
  365 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.kasonacreative.com
Port: 443
URL: https://www.kasonacreative.com

First seen 2025-08-18 11:12
Last seen 2026-01-02 06:07
Open for 136 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b7ca70f6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/keshxyz1/kasonawebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 06:07
  
  311 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: unser.kanzlei-pilot.de
Port: 443
URL: https://unser.kanzlei-pilot.de

First seen 2025-10-19 05:36
Last seen 2026-01-02 05:31
Open for 74 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa347cfde0012d690c47cc0b617efdc74107ba4c45c

GraphQL introspection enabled at /graphql
Types: 240 (by kind: ENUM: 34, INPUT_OBJECT: 68, OBJECT: 127, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: categories, categoryItem, categoryItems, libraryCategories, validateAllItemPricingFormulas
- Mutation: Mutation | fields: copyCategoryItem, createCategoryItem, deleteCategoryItem, duplicateCategoryItem, moveCategoryItem
- Subscription: Subscription | fields: cpuGraph, cpuUsage, logLine, memUsage, notification
Directives: auth, deprecated, dev, include, oneOf, signeeAuth, skip, specifiedBy, superAdminOrDev (total: 9)

Found on 2026-01-02 05:31

309.8 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: yang.mddcloud.cn
Port: 443
URL: https://yang.mddcloud.cn

First seen 2025-10-14 03:30
Last seen 2026-01-02 05:18
Open for 80 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb132dd3e9
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:zhongjidalao/yang-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 05:18
  
  305 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: myconciergetv.nconnections.com
Port: 443
URL: https://myconciergetv.nconnections.com

First seen 2025-10-30 22:52
Last seen 2026-01-02 05:11
Open for 63 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a63a70a86f0f498c067e8739a14db18ce5e30760
```
GraphQL introspection enabled at /graphql
Types: 10 (by kind: INPUT_OBJECT: 1, OBJECT: 5, SCALAR: 4)
Operations:
- Query: Queries | fields: inviteInfo
- Mutation: Mutations | fields: acceptInvitation, authenticate, authenticateClient, magicLink, refreshAuth
Directives: include, skip (total: 2)
```
  Found on 2026-01-02 05:11
  
  8.2 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vastuvitaa.com
Port: 443
URL: https://vastuvitaa.com

First seen 2025-11-08 05:33
Last seen 2026-01-02 05:05
Open for 54 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb26b8880b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/gourav-6477/vastuvitta-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 05:05
  
  312 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: tag.banocean.com
Port: 443
URL: https://tag.banocean.com

First seen 2023-09-24 13:31
Last seen 2026-01-02 04:54
Open for 830 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c1b1441f

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/custom-fail/tag-frontend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "redesign"]
	remote = origin
	merge = refs/heads/redesign

Found on 2026-01-02 04:54

334 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737d3d578f6e7c97979b8a3842b39fbdcc10e29074ce

[core]
	bare = false
	repositoryformatversion = 0
	filemode = false
	symlinks = false
	ignorecase = true
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/custom-fail/tag-frontend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-11-13 02:43

306 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.iradlimousine.com
Port: 443
URL: https://www.iradlimousine.com

First seen 2025-11-11 10:02
Last seen 2026-01-02 04:51
Open for 51 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbc1ee413
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/hassan1105/iradlimousine.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 04:51
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.orgaflux.dz
Port: 443
URL: https://www.orgaflux.dz

First seen 2025-11-15 17:53
Last seen 2026-01-02 04:50
Open for 47 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc6d012aa
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:ISHAQ-BM/orgaflux-linktree.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 04:50
  
  304 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: reetamm.com
Port: 443
URL: https://reetamm.com

First seen 2024-09-18 02:26
Last seen 2026-01-02 04:22
Open for 471 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772ffe4efdd8a7e0281c17968c5672a84e7
```
Found 11 files trough .DS_Store spidering:

/getreich.html
/index.html
/pubs.html
/robots.txt
/search.json
/site_libs
/static
/static/docs
/static/media
/styles.css
/updates.html
```
  Found on 2026-01-02 04:22
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbed58339e8bf015637ba2e583b6d69d529
```
Found 15 files trough .DS_Store spidering:

/bootstrap.min.css
/getreich.html
/index.html
/media
/pubs.html
/ReetamMajumder_CV.pdf
/robots.txt
/search.json
/site_libs
/sitemap.xml
/static
/static/docs
/static/media
/styles.css
/updates.html
```
  Found on 2025-03-16 23:54
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: k-osei.com
Port: 443
URL: https://k-osei.com

First seen 2025-12-01 15:33
Last seen 2026-01-02 04:07
Open for 31 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652248543a57
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://git.fhict.nl/I499804/portfolio-sem-7.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 04:07
  
  347 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: techinnovation.solutions
Port: 443
URL: https://techinnovation.solutions

First seen 2025-08-22 03:35
Last seen 2026-01-02 03:56
Open for 133 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc556b6d2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/shivamkaushik19/Tech-Innovations.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 03:56
  
  314 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: adilsayeed.info
Port: 443
URL: https://adilsayeed.info

First seen 2025-11-18 18:02
Last seen 2026-01-02 03:21
Open for 44 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229eb1f88d
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/fzee07/Adil-Sayeed-Portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 03:21
  
  317 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: orzesze.eu
Port: 443
URL: https://orzesze.eu

First seen 2025-12-02 05:34
Last seen 2026-01-02 02:52
Open for 30 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522837514b2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/koszyczek/orzesze.eu.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 02:52
  
  299 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: psimanuelandrade.com.br
Port: 443
URL: https://psimanuelandrade.com.br

First seen 2025-11-11 05:19
Last seen 2026-01-02 02:47
Open for 51 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbea6cc313
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ptmarcelo/manuelandrade.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 02:47
  
  305 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: urocaremysore.com
Port: 443
URL: https://urocaremysore.com

First seen 2025-08-30 13:49
Last seen 2026-01-02 02:42
Open for 124 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1da6bb19
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://balimysore.visualstudio.com/UroCare/_git/UroCare
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 02:42
  
  343 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: ayhan.phd
Port: 443
URL: https://ayhan.phd

First seen 2023-07-12 02:22
Last seen 2026-01-02 02:38
Open for 905 days

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e93c9758a0f23582b0761a69b233930b50
```
Found 5 files trough .DS_Store spidering:

/blog
/blog/other
/blog/pd
/site_libs
/syllabi
```
Found on 2026-01-02 02:38
Severity: low
Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc79ccffe79af6162dcc621ba72ed97426
```
Found 4 files trough .DS_Store spidering:

/blog
/blog/other
/blog/pd
/site_libs
```
Found on 2025-07-01 00:09
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9defc5466cefc5466cefc5466cefc5466c
```
Found 1 files trough .DS_Store spidering:

/blog
```
Found on 2025-04-07 01:41

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b9114acae5f4748e62fb045e34c073c7f

Found 14 files trough .DS_Store spidering:

/blog
/blog/ko
/contents
/contents/bib
/contents/logo
/contents/publications
/contents/syllabi
/cv
/media
/media/2017-02-14 외국인 장학생 273명, 전국 60개 대학서 학위 취득  12.20.31 AM
/research
/research/chapters
/syllabi
/syllabi/deleted-journal-syllabus

Found on 2024-07-18 21:45

Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247256de703d4495680786ea992a41ac10b67

Found 9 files trough .DS_Store spidering:

/blog
/blog/ko
/cv
/media
/media/2017-02-14 외국인 장학생 273명, 전국 60개 대학서 학위 취득  12.20.31 AM
/research
/research/chapters
/syllabi
/syllabi/deleted-journal-syllabus

Found on 2024-07-16 20:55

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8235a46cbf33f7fe3b73fda05898c2acf

Found 8 files trough .DS_Store spidering:

/blog
/blog/ko
/cv
/media
/research
/research/chapters
/syllabi
/syllabi/deleted-journal-syllabus

Found on 2024-06-24 11:58

Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e1de306bddc5855f740a45e7adbb9e9e0

Found 6 files trough .DS_Store spidering:

/blog
/cv
/media
/media/2017-02-14 외국인 장학생 273명, 전국 60개 대학서 학위 취득  12.20.31 AM
/research
/syllabi

Found on 2024-05-24 15:09

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d2cf8e3bcbe04de0e478ee150eb09d864

Found 12 files trough .DS_Store spidering:

/blog
/blog/2023-04-28 Overseas Koreans
/blog/2023-07-20 Galatasaray 2023-2024 Season Squad Guessing
/blog/2023-08-14 Extracting data from a complicated pdf file
/blog/2023-12-19 Countering Russian Influence
/blog/2024-04-23 Korean Trade Data
/blog/2024-04-23 Working with Korean Diplomatic Datasets
/cv
/media
/research
/research/chapters
/syllabi

Found on 2024-05-13 02:03

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a092a80e932f3bf11303ba94d5cbc2c2a8

Found 13 files trough .DS_Store spidering:

/blog
/blog/2023-04-28 Overseas Koreans
/blog/2023-07-20 Galatasaray 2023-2024 Season Squad Guessing
/blog/2023-08-14 Extracting data from a complicated pdf file
/blog/2023-12-19 Countering Russian Influence
/blog/2024-04-23 Korean Trade Data
/blog/2024-04-23 Working with Korean Diplomatic Datasets
/cv
/media
/research
/research/chapters
/syllabi
/syllabi/deleted-journal-syllabus

Found on 2024-05-08 21:56

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e93c9758a0f6249833db43b533ecee97e0

Found 5 files trough .DS_Store spidering:

/blog
/blog/2023-01-15 R codes, packages, examples - Reminder for myself 11.15.35 AM
/blog/2023-04-28 Overseas Koreans
/blog/2023-07-20 Galatasaray 2023-2024 Season Squad Guessing
/blog/2023-08-14 Extracting data from a complicated pdf file

Found on 2024-02-02 08:13

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772db4cb80f83c1447a6c06337117712c5d

Found 11 files trough .DS_Store spidering:

/contents
/contents/bib
/contents/cv
/contents/logo
/contents/syllabi
/cv
/research
/research/articles
/research/articles/2015 JIAS Why Do We Need Non-state Actors in Public Diplomacy
/research/editorials
/research/working-papers

Found on 2023-07-12 02:22

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: redolanse.com
Port: 443
URL: https://redolanse.com

First seen 2025-09-03 03:53
Last seen 2026-01-02 02:26
Open for 120 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd8de45fc
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/arhamhi/R_v6.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 02:26
  
  294 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: development.kanzleipilot.de
Port: 443
URL: https://development.kanzleipilot.de

First seen 2025-11-03 03:02
Last seen 2026-01-02 02:12
Open for 59 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa354a4d27a29cb2f2abc0fc735cb5e18baaa0f10ce

GraphQL introspection enabled at /graphql
Types: 298 (by kind: ENUM: 37, INPUT_OBJECT: 103, OBJECT: 147, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: categories, categoryItem, categoryItems, libraryCategories, validateAllItemPricingFormulas
- Mutation: Mutation | fields: copyCategoryItem, createCategoryItem, deleteCategoryItem, duplicateCategoryItem, moveCategoryItem
- Subscription: Subscription | fields: cpuGraph, cpuUsage, logLine, memUsage, notification
Directives: auth, deprecated, dev, include, oneOf, signeeAuth, skip, specifiedBy, superAdminOrDev (total: 9)

Found on 2026-01-02 02:12

370.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32a97a61ad087978a7c727cd5db1843dafdba0fae

GraphQL introspection enabled at /graphql
Types: 297 (by kind: ENUM: 37, INPUT_OBJECT: 103, OBJECT: 146, SCALAR: 10, UNION: 1)
Operations:
- Query: Query | fields: categories, categoryItem, categoryItems, libraryCategories, validateAllItemPricingFormulas
- Mutation: Mutation | fields: copyCategoryItem, createCategoryItem, deleteCategoryItem, duplicateCategoryItem, moveCategoryItem
- Subscription: Subscription | fields: cpuGraph, cpuUsage, logLine, memUsage, notification
Directives: auth, deprecated, dev, include, oneOf, signeeAuth, skip, specifiedBy, superAdminOrDev (total: 9)

Found on 2025-11-10 16:35

369.8 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kktmatrimony.com
Port: 443
URL: https://kktmatrimony.com

First seen 2025-07-21 19:53
Last seen 2026-01-02 02:12
Open for 164 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2e18b5e6
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/SuryaVs5199/kktmatrimony.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 02:12
  
  431 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: nswbegoniasociety.com
Port: 443
URL: https://nswbegoniasociety.com

First seen 2025-12-04 16:03
Last seen 2026-01-02 01:52
Open for 28 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b15162c5
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/SmeadIT2024/BegoniaSocietyNSW.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 01:52
  
  318 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: velvetpumpkinportraits.com
Port: 443
URL: https://velvetpumpkinportraits.com

First seen 2025-08-30 08:23
Last seen 2026-01-02 01:40
Open for 124 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65223fc23ea2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/mbotello12/velvet.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "working"]
	remote = origin
	merge = refs/heads/working
	vscode-merge-base = origin/working
```
  Found on 2026-01-02 01:40
  
  406 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ridosoft.majd.cloud
Port: 443
URL: https://ridosoft.majd.cloud

First seen 2025-09-23 09:16
Last seen 2026-01-02 00:53
Open for 100 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1c6140cd
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/majdya/html-css.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "ridosoft"]
	remote = origin
	merge = refs/heads/ridosoft
```
  Found on 2026-01-02 00:53
  
  363 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kaplanlarholding.com
Port: 443
URL: https://kaplanlarholding.com

First seen 2025-09-02 17:23
Last seen 2025-12-31 15:55
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb202f0228
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/RRimeKS/kaplanlar-holding.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-31 15:55
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: richguy.fun
Port: 443
URL: https://richguy.fun

First seen 2025-11-01 12:41
Last seen 2025-12-31 11:53
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226cb893fd
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/finisus/we-choose-wealth
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-12-31 11:53
  
  332 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: snackwords.ppmaiedu.cn
Port: 443
URL: https://snackwords.ppmaiedu.cn

First seen 2025-11-01 12:22
Last seen 2025-12-31 11:32
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb63fd1add
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/henrywangzy/snackwordsgame.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-31 11:32
  
  250 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.lokeshvats.com
Port: 443
URL: https://www.lokeshvats.com

First seen 2025-03-10 19:33
Last seen 2025-12-31 02:12
Open for 295 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd413fa58

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/dh00mk3tu/lokesh-vats-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-12-31 02:12

346 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a6f5339a

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/dh00mk3tu/lokesh-vats-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-10-29 15:04

353 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.marketpos.uz
Port: 443
URL: https://www.marketpos.uz

First seen 2025-12-01 00:35
Last seen 2025-12-30 14:22
Open for 29 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb820e6c47
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/rahmatillokh/marketpos_intro.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-30 14:22
  
  378 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lexadvog.com.br
Port: 443
URL: https://lexadvog.com.br

First seen 2025-11-15 20:35
Last seen 2025-12-30 14:20
Open for 44 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9cae746a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/TiagoPerri/SiteLexAdv.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 14:20
  
  303 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: breezblox.com
Port: 443
URL: https://breezblox.com

First seen 2025-07-04 19:05
Last seen 2025-12-30 13:21
Open for 178 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2f1d6f4d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/BreezBlox/breezblox.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-30 13:21
  
  338 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: 23tattoostudio.com
Port: 443
URL: https://23tattoostudio.com

First seen 2024-08-24 16:43
Last seen 2025-12-30 12:52
Open for 492 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0f9ec371

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ReljaStefanovicGitHub/23-tattoo-studio-2.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "tattoo-1"]
	github-pr-base-branch = "ReljaStefanovicGitHub#23-tattoo-studio-2#main"
	vscode-merge-base = origin/main

Found on 2025-12-30 12:52

448 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb95af4fda

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ReljaStefanovicGitHub/23tattoo.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "tattoo-1"]
	vscode-merge-base = main
	remote = origin
	merge = refs/heads/tattoo-1
[branch "tattoo-2"]
	vscode-merge-base = tattoo-1
	remote = origin
	merge = refs/heads/tattoo-2
[branch "tattoo-3"]
	vscode-merge-base = tattoo-2
	remote = origin
	merge = refs/heads/tattoo-3
[branch "tattoo-4"]
	vscode-merge-base = tattoo-3
	remote = origin
	merge = refs/heads/tattoo-4
[branch "tattoo'5"]
	vscode-merge-base = tattoo-4
	remote = origin
	merge = refs/heads/tattoo'5
[branch "tattoo-6"]
	vscode-merge-base = tattoo'5
	remote = origin
	merge = refs/heads/tattoo-6

Found on 2025-06-20 13:15

884 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dreamhomesdevelopers.co.uk
Port: 443
URL: https://dreamhomesdevelopers.co.uk

First seen 2025-07-27 02:45
Last seen 2025-12-30 12:10
Open for 156 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb09b75198
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Farjaadrizvi110/Dreamhometest.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-30 12:10
  
  377 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: www.aikenist.com
Port: 443
URL: https://www.aikenist.com

First seen 2025-03-17 05:53
Last seen 2025-12-30 11:57
Open for 288 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cff76d438ff76d4383beb58427d453c937c454564112180d7

Found 93 files trough .DS_Store spidering:

/Brochures
/careers.html
/contactdiag.html
/contactscan.html
/cookie
/cookie/css
/cookie/docs
/cookie/js
/cookiepolicy.html
/css
/fonts
/images
/images/AikenDemo.mp4
/images/Aikeninst-small-dark.png
/images/Aikenist_QuickScan6.mp4
/images/blog
/images/blog.jpeg
/images/careers.jpg
/images/certificates
/images/certificates/Anvisa copy.png
/images/certificates/anvisa1.png
/images/certificates/blank.png
/images/certificates/Cer.png
/images/certificates/dicom.png
/images/certificates/FDA copy.png
/images/certificates/FDA.png
/images/certificates/gdpr_img.png
/images/certificates/hippa.png
/images/certificates/hl7-FHIR.png
/images/certificates/iec-62304.png
/images/certificates/iso-13485.png
/images/certificates/iso-14971.png
/images/certificates/ISO.jpg
/images/certificates/iso.png
/images/certificates/iso_cert.jpg
/images/certificates/karnataka-elevate.png
/images/certificates/karnataka-GOK.png
/images/certificates/nabh.png
/images/certificates/owasp_logo.png
/images/certificates/VAPT.png
/images/certificates/zsprize.png
/images/cover-page
/images/deployment
/images/deployment3.jpeg
/images/DESKTOP.jpg
/images/feature
/images/footer
/images/header-dew copy.png
/images/header-dew.png
/images/homescreenslide.png
/images/hostings
/images/Installations
/images/logo
/images/map-marker.png
/images/nasscom.jpg
/images/nasscomproductconclave.jpg
/images/nasscomproductconclave.png
/images/news-articles
/images/Partners
/images/Productpage
/images/products
/images/QuickRad.jpeg
/images/QuickRad_1.jpeg
/images/QuickRadFeatures.jpeg
/images/QuickRadPacs.jpeg
/images/QuickRadScreen.jpg
/images/rsna.jpeg
/images/rsna2.jpeg
/images/screen
/images/shutterstock-images
/images/tablet.png
/images/tablet11inch.png
/images/tablet2.png
/images/team
/images/url.png
/images/video-bg.jpg
/images/Video_1.mp4
/index.html
/js
/legal.html
/newblogposts.html
/newspage.html
/pricing.html
/privacy.html
/process.php
/Quickdiag.html
/Quickrad.html
/QuickSuite_User_Manual.pdf
/regulatory.html
/rsna.html
/sliderStyle.js
/style.css
/UserManual

Found on 2025-12-30 11:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c0f1214d30f1214d3dff670c565ae1e56c7c8b853540e83df

Found 94 files trough .DS_Store spidering:

/Brochures
/careers.html
/contactdiag.html
/contactscan.html
/cookie
/cookie/css
/cookie/docs
/cookie/js
/cookiepolicy.html
/css
/fonts
/images
/images/AikenDemo.mp4
/images/Aikeninst-small-dark.png
/images/Aikenist_QuickScan6.mp4
/images/blog
/images/blog.jpeg
/images/careers.jpg
/images/certificates
/images/certificates/Anvisa copy.png
/images/certificates/anvisa1.png
/images/certificates/blank.png
/images/certificates/Cer.png
/images/certificates/dicom.png
/images/certificates/FDA copy.png
/images/certificates/FDA.png
/images/certificates/gdpr_img.png
/images/certificates/hippa.png
/images/certificates/hl7-FHIR.png
/images/certificates/iec-62304.png
/images/certificates/iso-13485.png
/images/certificates/iso-14971.png
/images/certificates/ISO.jpg
/images/certificates/iso.png
/images/certificates/iso_cert.jpg
/images/certificates/karnataka-elevate.png
/images/certificates/karnataka-GOK.png
/images/certificates/nabh.png
/images/certificates/owasp_logo.png
/images/certificates/VAPT.png
/images/certificates/zsprize.png
/images/compliance
/images/cover-page
/images/deployment
/images/deployment3.jpeg
/images/DESKTOP.jpg
/images/feature
/images/footer
/images/header-dew copy.png
/images/header-dew.png
/images/homescreenslide.png
/images/hostings
/images/Installations
/images/logo
/images/map-marker.png
/images/nasscom.jpg
/images/nasscomproductconclave.jpg
/images/nasscomproductconclave.png
/images/news-articles
/images/Partners
/images/Productpage
/images/products
/images/QuickRad.jpeg
/images/QuickRad_1.jpeg
/images/QuickRadFeatures.jpeg
/images/QuickRadPacs.jpeg
/images/QuickRadScreen.jpg
/images/rsna.jpeg
/images/rsna2.jpeg
/images/screen
/images/shutterstock-images
/images/tablet.png
/images/tablet11inch.png
/images/tablet2.png
/images/team
/images/url.png
/images/video-bg.jpg
/images/Video_1.mp4
/index.html
/js
/legal.html
/newblogposts.html
/newspage.html
/pricing.html
/privacy.html
/process.php
/Quickdiag.html
/Quickrad.html
/QuickSuite_User_Manual.pdf
/regulatory.html
/rsna.html
/sliderStyle.js
/style.css
/UserManual

Found on 2025-09-21 04:13

Severity: medium
Fingerprint: 5f32cf5d6962f09c62fb79d662fb79d6fa412274257fbf619a57a3ba2fdc1304

Found 95 files trough .DS_Store spidering:

/Brochures
/careers.html
/contactdiag.html
/contactscan.html
/cookie
/cookie/css
/cookie/docs
/cookie/js
/cookiepolicy.html
/css
/fonts
/images
/images/AikenDemo.mp4
/images/Aikeninst-small-dark.png
/images/Aikenist_QuickScan6.mp4
/images/blog
/images/blog.jpeg
/images/careers.jpg
/images/certificates
/images/certificates/Anvisa copy.png
/images/certificates/anvisa1.png
/images/certificates/blank.png
/images/certificates/Cer.png
/images/certificates/dicom.png
/images/certificates/FDA copy.png
/images/certificates/FDA.png
/images/certificates/gdpr_img.png
/images/certificates/hippa.png
/images/certificates/hl7-FHIR.png
/images/certificates/iec-62304.png
/images/certificates/iso-13485.png
/images/certificates/iso-14971.png
/images/certificates/ISO.jpg
/images/certificates/iso.png
/images/certificates/iso_cert.jpg
/images/certificates/karnataka-elevate.png
/images/certificates/karnataka-GOK.png
/images/certificates/nabh.png
/images/certificates/owasp_logo.png
/images/certificates/VAPT.png
/images/certificates/zsprize.png
/images/compliance
/images/cover-page
/images/deployment
/images/deployment3.jpeg
/images/DESKTOP.jpg
/images/feature
/images/footer
/images/header-dew copy.png
/images/header-dew.png
/images/homescreenslide.png
/images/hostings
/images/Installations
/images/logo
/images/map-marker.png
/images/nasscom.jpg
/images/nasscomproductconclave.jpg
/images/nasscomproductconclave.png
/images/news-articles
/images/Partners
/images/Productpage
/images/products
/images/QuickRad.jpeg
/images/QuickRad_1.jpeg
/images/QuickRadFeatures.jpeg
/images/QuickRadPacs.jpeg
/images/QuickRadScreen.jpg
/images/rsna.jpeg
/images/rsna2.jpeg
/images/screen
/images/shutterstock-images
/images/tablet.png
/images/tablet11inch.png
/images/tablet2.png
/images/team
/images/url.png
/images/video-bg.jpg
/images/Video_1.mp4
/index.html
/js
/legal.html
/newblogposts.html
/newspage.html
/pricing.html
/privacy.html
/process.php
/Quickdiag.html
/Quickrad.html
/Quickscan.html
/QuickSuite_User_Manual.pdf
/regulatory.html
/rsna.html
/sliderStyle.js
/style.css
/UserManual

Found on 2025-05-26 05:39

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pugga.site
Port: 443
URL: https://pugga.site

First seen 2025-09-20 14:44
Last seen 2025-12-30 10:51
Open for 100 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522eb0198b8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/GoodEgUY/pugga-site-latest.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 10:51
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: prompt.gerozayas.com
Port: 443
URL: https://prompt.gerozayas.com

First seen 2025-11-21 16:46
Last seen 2025-12-30 10:33
Open for 38 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a286fbd6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/GeroZayas/GZ-LLM-Prompt-Organizer.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-12-30 10:33
  
  281 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ticketbox-meet-and-greet-can-yaman-italyevent.com
Port: 443
URL: https://ticketbox-meet-and-greet-can-yaman-italyevent.com

First seen 2025-09-08 08:04
Last seen 2025-12-30 10:33
Open for 113 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbddfdfe81
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/DeBeeUche/ticketbox-clone.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[gui]
	wmstate = normal
	geometry = 1109x563+128+128 216 255
```
  Found on 2025-12-30 10:33
  
  368 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pvsceducationaccess.com
Port: 443
URL: https://pvsceducationaccess.com

First seen 2025-12-04 08:09
Last seen 2025-12-30 10:30
Open for 26 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e21772a7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "gitsafe-backup"]
	url = git://gitsafe:5418/backup.git
	fetch = +refs/heads/*:refs/remotes/gitsafe-backup/*
	skipFetchAll = true
[remote "origin"]
	url = https://github.com/hamdStack/PVSC-Education
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 10:30
  
  401 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: udaydokras.com
Port: 443
URL: https://udaydokras.com

First seen 2025-10-08 20:16
Last seen 2025-12-30 10:29
Open for 82 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0d600344
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/AnuragSaini12/Uday-Dokras.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 10:29
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.zoromobility.com
Port: 443
URL: https://www.zoromobility.com

First seen 2025-07-23 04:52
Last seen 2025-12-30 10:28
Open for 160 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6cb9084e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/RangeTech/website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 10:28
  
  281 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.pertenza.com.br
Port: 443
URL: https://www.pertenza.com.br

First seen 2025-11-09 20:12
Last seen 2025-12-30 10:15
Open for 50 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf43cba59
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/TryumOperacoes/hlg-pertenza.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-30 10:15
  
  251 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: rettuordin.styrkja.is
Port: 443
URL: https://rettuordin.styrkja.is

First seen 2025-12-01 03:53
Last seen 2025-12-30 09:59
Open for 29 days

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225a0ce0803

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : path=donations key=Donation name=Donation label=Donations singular=Donation plural=Donations
_CheckoutsMeta (args: none) : singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events

Found on 2025-12-30 09:59

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122500fbc69b

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : key=User name=User label=Users singular=User plural=Users path=users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : key=Organization name=Organization label=Organizations singular=Organization plural=Organizations path=organizations
_CampaignsMeta (args: none) : plural=Campaigns path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-26 08:13

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225515ce8c9

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events

Found on 2025-12-24 04:28

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e63122586929967

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : path=users key=User name=User label=Users singular=User plural=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts singular=Checkout
_OrganizationsMeta (args: none) : plural=Organizations path=organizations key=Organization name=Organization label=Organizations singular=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent

Found on 2025-12-18 07:41

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312250adfa527

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : singular=User plural=Users path=users key=User name=User label=Users
_DonationsMeta (args: none) : key=Donation name=Donation label=Donations singular=Donation plural=Donations path=donations
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : singular=Organization plural=Organizations path=organizations key=Organization name=Organization label=Organizations
_CampaignsMeta (args: none) : path=campaigns key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns
_ReferralTokensMeta (args: none) : path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens
_ReferralEventsMeta (args: none) : singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events

Found on 2025-12-16 05:30

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312250fb06553

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event plural=Referral Events

Found on 2025-12-14 03:50

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225f396bbdf

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : plural=Users path=users key=User name=User label=Users singular=User
_DonationsMeta (args: none) : plural=Donations path=donations key=Donation name=Donation label=Donations singular=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : singular=Organization plural=Organizations path=organizations key=Organization name=Organization label=Organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-12 13:12

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225ca9ad9df

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : plural=Donations path=donations key=Donation name=Donation label=Donations singular=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : name=Organization label=Organizations singular=Organization plural=Organizations path=organizations key=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-06 10:02

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e6312252d20efc3

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : singular=Donation plural=Donations path=donations key=Donation name=Donation label=Donations
_CheckoutsMeta (args: none) : singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout label=Checkouts
_OrganizationsMeta (args: none) : label=Organizations singular=Organization plural=Organizations path=organizations key=Organization name=Organization
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : name=ReferralToken label=Referral Tokens singular=Referral Token plural=Referral Tokens path=referral-tokens key=ReferralToken
_ReferralEventsMeta (args: none) : label=Referral Events singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent

Found on 2025-12-06 10:02

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225f4877549

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : name=User label=Users singular=User plural=Users path=users key=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : key=Checkout name=Checkout label=Checkouts singular=Checkout plural=Checkouts path=checkouts
_OrganizationsMeta (args: none) : path=organizations key=Organization name=Organization label=Organizations singular=Organization plural=Organizations
_CampaignsMeta (args: none) : label=Campaigns singular=Campaign plural=Campaigns path=campaigns key=Campaign name=Campaign
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : singular=Referral Event plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Severity: high
Fingerprint: c2db3a1c40d490db1a0bbaa3aeb4978ebc0d717e5b314ca34e631225ec24e7af

GraphQL introspection enabled at /graphql
Types: 94 (by kind: ENUM: 11, INPUT_OBJECT: 49, OBJECT: 27, SCALAR: 7)
Operations:
- Query: Query | fields: User, _UsersMeta, _allUsersMeta, allDonations, allUsers
- Mutation: Mutation | fields: createUser, createUsers, deleteUser, updateUser, updateUsers
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 7
_UsersMeta (args: none) : label=Users singular=User plural=Users path=users key=User name=User
_DonationsMeta (args: none) : label=Donations singular=Donation plural=Donations path=donations key=Donation name=Donation
_CheckoutsMeta (args: none) : label=Checkouts singular=Checkout plural=Checkouts path=checkouts key=Checkout name=Checkout
_OrganizationsMeta (args: none) : singular=Organization plural=Organizations path=organizations key=Organization name=Organization label=Organizations
_CampaignsMeta (args: none) : key=Campaign name=Campaign label=Campaigns singular=Campaign plural=Campaigns path=campaigns
_ReferralTokensMeta (args: none) : plural=Referral Tokens path=referral-tokens key=ReferralToken name=ReferralToken label=Referral Tokens singular=Referral Token
_ReferralEventsMeta (args: none) : plural=Referral Events path=referral-events key=ReferralEvent name=ReferralEvent label=Referral Events singular=Referral Event

Found on 2025-12-01 03:53

219.8 kBytes 42 rows

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: www.kapitol.cz
Port: 443
URL: https://www.kapitol.cz

First seen 2025-12-04 03:52
Last seen 2025-12-30 09:49
Open for 26 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa377606e75d9ca2d77ea8109466a24a8ef5b6e8caf
```
GraphQL introspection enabled at /graphql
Types: 533 (by kind: ENUM: 45, INPUT_OBJECT: 128, INTERFACE: 22, OBJECT: 321, SCALAR: 5, UNION: 12)
Operations:
- Query: RootQuery | fields: allSettings, branch, branchBy, branches, career
- Mutation: RootMutation | fields: createBranch, createCareer, createCategory, createComment, createContact
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-30 09:49
  
  1.0 MBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: 2scarsdetails.site
Port: 443
URL: https://2scarsdetails.site

First seen 2025-12-13 15:02
Last seen 2025-12-30 09:28
Open for 16 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb87f99425
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/LcsGomes-AMS/lava-car
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 09:28
  
  299 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: psv2residence.site
Port: 443
URL: https://psv2residence.site

First seen 2025-11-03 13:47
Last seen 2025-12-30 09:23
Open for 56 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3c57d805
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/lImFsheng/PSV2.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
	vscode-merge-base = origin/master
```
  Found on 2025-12-30 09:23
  
  405 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.imageoftext.com
Port: 443
URL: https://www.imageoftext.com

First seen 2025-09-21 13:53
Last seen 2025-12-30 08:22
Open for 99 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226936aafe
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/addelong/imageoftext.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-30 08:22
  
  330 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.jobsureqa.site
Port: 443
URL: https://www.jobsureqa.site

First seen 2025-10-17 22:15
Last seen 2025-12-30 08:22
Open for 73 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc782881c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/QAjobs/QATestingJobs.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-30 08:22
  
  244 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rollbackbjj.com
Port: 443
URL: https://rollbackbjj.com

First seen 2025-08-04 21:15
Last seen 2025-12-30 07:57
Open for 147 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b4811374
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/RollbackBJJ/rollback-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-30 07:57
  
  379 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: webshop.trooper.be
Port: 443
URL: https://webshop.trooper.be

First seen 2025-10-21 13:06
Last seen 2025-12-30 06:55
Open for 69 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67c42e5051478b6c78673ce64a40222378e03a4f1

GraphQL introspection enabled at /api/graphql
Types: 231 (by kind: ENUM: 18, INPUT_OBJECT: 67, INTERFACE: 3, OBJECT: 136, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-30 06:55

267.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d621b35c04cb1a7648e53297137c50bc8cbe6651fc

GraphQL introspection enabled at /api/graphql
Types: 228 (by kind: ENUM: 19, INPUT_OBJECT: 65, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-01 13:59

264.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b051d5706ad22d74683d93e70e782bb076775b10

GraphQL introspection enabled at /api/graphql
Types: 227 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-11-16 13:31

261.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6da3e8120aa5f0324aa57fdb7ac067fc0cc54fbe0

GraphQL introspection enabled at /api/graphql
Types: 225 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 132, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-10-28 20:04

259.1 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dbs.anypro.ai
Port: 443
URL: https://dbs.anypro.ai

First seen 2025-11-02 20:12
Last seen 2025-12-30 06:42
Open for 57 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652219ab1fd7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/danielbsh/consulting.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 06:42
  
  264 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ghazouly.site
Port: 443
URL: https://ghazouly.site

First seen 2025-10-06 16:02
Last seen 2025-12-30 06:39
Open for 84 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1c08413d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:magedghazouly/ghazouly-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-30 06:39
  
  305 Bytes
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe22d4b6c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:magedghazouly/ghazouly-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-06 16:02
  
  247 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: deschdev.com
Port: 443
URL: https://deschdev.com

First seen 2024-07-09 17:35
Last seen 2025-12-30 06:32
Open for 538 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224cdb382e

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/deschdev/new-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0

Found on 2025-12-30 06:32

436 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bdf37c56

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/deschdev/new-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0

Found on 2025-05-05 15:22

370 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bhaukaalstudios.com
Port: 443
URL: https://bhaukaalstudios.com

First seen 2025-07-27 04:04
Last seen 2025-12-30 05:44
Open for 156 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229065d68e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:Dhairya99999/BhaukaalStudios.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "changes"]
	remote = origin
	merge = refs/heads/changes
[branch "main"]
	remote = origin
	vscode-merge-base = origin/main
	merge = refs/heads/main
```
  Found on 2025-12-30 05:44
  
  410 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: nortaxnoronha.com.br
Port: 443
URL: https://nortaxnoronha.com.br

First seen 2025-09-03 23:53
Last seen 2025-12-30 05:21
Open for 117 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb60f30196

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/git-joao/projeto-nortax
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
	merge = refs/heads/main
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master

Found on 2025-12-30 05:21

464 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: katerina.today
Port: 443
URL: https://katerina.today

First seen 2025-09-26 22:45
Last seen 2025-12-29 08:16
Open for 93 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d14154f7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/katerina-axdx/katerina.today.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-12-29 08:16
  
  409 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: connect.appulse.net
Port: 443
URL: https://connect.appulse.net

First seen 2025-12-14 17:08
Last seen 2025-12-29 03:32
Open for 14 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e35024ec0432a91d5bc23203715b21e53d2014567896
```
GraphQL introspection enabled at /api
Types: 26 (by kind: ENUM: 5, INPUT_OBJECT: 2, OBJECT: 14, SCALAR: 5)
Operations:
- Query: Query | fields: app, appPackage, apps, currentUser, project
- Mutation: Mutation | fields: createProject, createStripeCheckoutBillingPortalUrl, createStripeCheckoutSession, updateProject, updateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 0
```
  Found on 2025-12-29 03:32
  
  35.1 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lesantiquaireslorrains.com
Port: 443
URL: https://lesantiquaireslorrains.com

First seen 2025-10-29 16:20
Last seen 2025-12-28 15:26
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf50ad6ca
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Antiquairesite/Antiquaire-nancy.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-12-28 15:26
  
  376 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vigiatech.cl
Port: 443
URL: https://vigiatech.cl

First seen 2025-10-29 15:53
Last seen 2025-12-28 15:14
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb58c32fba
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://www.vigiatech.cl
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-28 15:14
  
  225 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mobileups.org
Port: 443
URL: https://mobileups.org

First seen 2025-08-30 16:36
Last seen 2025-12-28 15:11
Open for 119 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225a8db935
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://shaharbh@bitbucket.org/shaharbh/mobileupswebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-28 15:11
  
  392 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: knockly.co.uk
Port: 443
URL: https://knockly.co.uk

First seen 2025-08-30 15:05
Last seen 2025-12-28 13:35
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb1535e9a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/elliotknock/Knockly-Website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-28 13:35
  
  366 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: urbanvoyage.in
Port: 443
URL: https://urbanvoyage.in

First seen 2025-08-30 10:50
Last seen 2025-12-28 09:15
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1ce04e16
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/SUJENDRANJ/urban-nexgen.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-28 09:15
  
  338 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: www.asun9.com
Port: 443
URL: https://www.asun9.com

First seen 2023-01-12 13:41
Last seen 2025-12-28 03:22
Open for 1080 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af24725dad43382a08d12638d5ca19997302541
```
Found 9 files trough .DS_Store spidering:

/icons
/images
/images/appa
/images/kumbakonam_2023
/images/mughals-modernstate
/images/trees
/js
/processed_images
/vendor
```
  Found on 2025-12-28 03:22
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392abd8ba55a4d11d696d31f4f2b3d732b66c
```
Found 7 files trough .DS_Store spidering:

/icons
/images
/images/kumbakonam_2023
/images/mughals-modernstate
/images/trees
/js
/processed_images
```
  Found on 2025-06-30 04:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc837288bfabecc478833b8c8e32fbcb18
```
Found 4 files trough .DS_Store spidering:

/icons
/images
/js
/processed_images
```
  Found on 2024-05-23 08:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e8764e31d28c0bab6d784e6fa76b3eb05
```
Found 6 files trough .DS_Store spidering:

/icons
/images
/images/kumbakonam_2023
/images/mughals-modernstate
/images/trees
/processed_images
```
  Found on 2024-03-08 11:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d956ff55a956ff55a956ff55a956ff55a
```
Found 1 files trough .DS_Store spidering:

/icons
```
  Found on 2023-01-12 13:41
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: shop.garpuhnet.com
Port: 443
URL: https://shop.garpuhnet.com

First seen 2025-10-07 06:32
Last seen 2025-12-27 07:43
Open for 81 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb662dfa16
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/rdpgz18/gshop
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-12-27 07:43
  
  295 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: srinivasgundam.com
Port: 443
URL: https://srinivasgundam.com

First seen 2025-11-08 13:26
Last seen 2025-12-27 07:37
Open for 48 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdd976722
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/thesrinivasgundam/srinivasgundam.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	vscode-merge-base = origin/main
```
  Found on 2025-12-27 07:37
  
  309 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: netlify.trooper.be
Port: 443
URL: https://netlify.trooper.be

First seen 2025-10-23 12:43
Last seen 2025-12-27 07:20
Open for 64 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67c42e5051478b6c78673ce64a40222378e03a4f1

GraphQL introspection enabled at /api/graphql
Types: 231 (by kind: ENUM: 18, INPUT_OBJECT: 67, INTERFACE: 3, OBJECT: 136, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-27 07:20

267.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d621b35c04cb1a7648e53297137c50bc8cbe6651fc

GraphQL introspection enabled at /api/graphql
Types: 228 (by kind: ENUM: 19, INPUT_OBJECT: 65, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-12-01 06:49

264.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6b051d5706ad22d74683d93e70e782bb076775b10

GraphQL introspection enabled at /api/graphql
Types: 227 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 134, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-11-16 19:47

261.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6da3e8120aa5f0324aa57fdb7ac067fc0cc54fbe0

GraphQL introspection enabled at /api/graphql
Types: 225 (by kind: ENUM: 19, INPUT_OBJECT: 64, INTERFACE: 3, OBJECT: 132, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: articlePackage, articlePackageTags, articlePackages, articleTemplates, campaign
- Mutation: Mutation | fields: removeArticle, removeArticlePackage, upsertArticle, upsertArticlePackage, upsertArticleTemplate
Directives: deprecated, include, isAuthenticated, oneOf, optionalTenantId, skip, specifiedBy (total: 7)

Found on 2025-10-27 08:30

259.1 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ocalagutter.com
Port: 443
URL: https://ocalagutter.com

First seen 2025-08-23 12:35
Last seen 2025-12-27 07:14
Open for 125 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652260e65dbf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/noahsaintlouis/ocalaguttercleaners.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-27 07:14
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: flowapp.digital
Port: 443
URL: https://flowapp.digital

First seen 2025-09-24 04:37
Last seen 2025-12-27 05:48
Open for 94 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522550afee0
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:samihasan126/flow-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-27 05:48
  
  249 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dansakifertiliser.com
Port: 443
URL: https://dansakifertiliser.com

First seen 2025-12-09 10:17
Last seen 2025-12-27 03:50
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228e06df91
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/ozoneeT/dansaki.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-27 03:50
  
  337 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hr02cabs.in
Port: 443
URL: https://hr02cabs.in

First seen 2025-10-21 14:58
Last seen 2025-12-27 03:20
Open for 66 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb01389a3e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Rajatbali/Cabs-Services-Business-webpage.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 03:20
  
  322 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: cesantana.pt
Port: 443
URL: https://cesantana.pt

First seen 2025-10-27 11:37
Last seen 2025-12-27 03:01
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbefc51152
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/henriqueffazendeiro/centro.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 03:01
  
  308 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: podium.myfihub.com
Port: 443
URL: https://podium.myfihub.com

First seen 2025-08-17 00:25
Last seen 2025-12-27 02:52
Open for 132 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb52117b7e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/myFiHub/podium-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
```
  Found on 2025-12-27 02:52
  
  360 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: avantgrande.ng
Port: 443
URL: https://avantgrande.ng

First seen 2025-07-17 06:43
Last seen 2025-12-27 02:42
Open for 162 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe5c4b841
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:caresjac/AvanteGrande.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 02:42
  
  299 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: desty.site
Port: 443
URL: https://desty.site

First seen 2025-12-12 11:57
Last seen 2025-12-27 02:14
Open for 14 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb13ccd3a0
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Staelle-desti/Projet_international.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 02:14
  
  316 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: estanny.org
Port: 443
URL: https://estanny.org

First seen 2025-06-13 05:16
Last seen 2025-12-27 01:43
Open for 196 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54477769d371caebdb64b7c7c5a82f3f7295
```
Found 18 files trough .DS_Store spidering:

/cv
/data
/posts
/site_libs 10
/site_libs 11
/site_libs 12
/site_libs 13
/site_libs 14
/site_libs 15
/site_libs 2
/site_libs 3
/site_libs 4
/site_libs 5
/site_libs 6
/site_libs 7
/site_libs 8
/site_libs 9
/teaching
```
  Found on 2025-12-27 01:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d7f25e9474ee4b4633598afbaf7ca2248
```
Found 12 files trough .DS_Store spidering:

/cv
/posts
/site_libs
/site_libs 2
/site_libs 3
/site_libs 4
/site_libs 5
/site_libs 6
/site_libs 7
/site_libs 8
/site_libs 9
/teaching
```
  Found on 2025-11-23 16:18
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8df03f504b2c5304852c50c9976792919
```
Found 8 files trough .DS_Store spidering:

/cv
/posts
/site_libs
/site_libs 2
/site_libs 3
/site_libs 4
/site_libs 5
/teaching
```
  Found on 2025-06-30 11:34
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aoawpx.xyz
Port: 443
URL: https://aoawpx.xyz

First seen 2025-12-01 14:36
Last seen 2025-12-27 01:26
Open for 25 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb06cbd057
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ano94-prog/abc99.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 01:26
  
  298 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: examsidemann.org
Port: 443
URL: https://examsidemann.org

First seen 2025-10-10 17:59
Last seen 2025-12-27 01:03
Open for 77 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4f0f0047
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/protohacks77/examsideman.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 01:03
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ngwaketsiliftingengineeringcivilmining.co.za
Port: 443
URL: https://ngwaketsiliftingengineeringcivilmining.co.za

First seen 2025-12-13 00:46
Last seen 2025-12-27 01:03
Open for 14 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3119201d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/MaimelaTshepiso/Ngwaketsi-Lifting-Engineering.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 01:03
  
  327 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: wongchengpsychology.com
Port: 443
URL: https://wongchengpsychology.com

First seen 2025-09-23 08:42
Last seen 2025-12-27 00:26
Open for 94 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228307af97
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/suizhe01/wong-cheng.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-27 00:26
  
  308 Bytes
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c5b888d6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/suizhe01/wong-cheng.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-23 01:28
  
  250 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.smartspare.parts
Port: 443
URL: https://www.smartspare.parts

First seen 2025-07-19 15:14
Last seen 2025-12-26 23:48
Open for 160 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb614d0535
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/liveslow0/smart-spare-parts.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-26 23:48
  
  251 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: tajagame.geonwoo.co.kr
Port: 443
URL: https://tajagame.geonwoo.co.kr

First seen 2025-07-27 08:15
Last seen 2025-12-26 23:09
Open for 152 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652269ecfcfb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/GoatStack/makeweb.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-26 23:09
  
  248 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: c-aye-tan-o.shop
Port: 443
URL: https://c-aye-tan-o.shop

First seen 2025-09-10 20:28
Last seen 2025-12-26 23:09
Open for 107 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb33f54e15
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/jairo172008-cloud/cayetano_market3.0.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-26 23:09
  
  260 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: digitalsabreterminal.com
Port: 443
URL: https://digitalsabreterminal.com

First seen 2025-11-14 08:04
Last seen 2025-12-26 23:08
Open for 42 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbf7c2fc1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Sindbadtrading/terminal-training.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-26 23:08
  
  256 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: archomesoluciones.com
Port: 443
URL: https://archomesoluciones.com

First seen 2025-10-10 21:05
Last seen 2025-12-26 23:02
Open for 77 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226dfc5387
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:manuelprgit/ArchomeSoluciones.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-26 23:02
  
  302 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: 3dfied.in
Port: 443
URL: https://3dfied.in

First seen 2025-08-11 19:03
Last seen 2025-12-26 20:35
Open for 137 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb55115234
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Nirmal-RJ/khaja-catalogue.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 20:35
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vodoinstalaterski-servis.rs
Port: 443
URL: https://vodoinstalaterski-servis.rs

First seen 2025-10-08 17:05
Last seen 2025-12-26 19:50
Open for 79 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652218fcedaa
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/studiomigu/WEBSITE-VODOINSTALATERSKI-SERVIS.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 19:50
  
  367 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kodeexp.com
Port: 443
URL: https://kodeexp.com

First seen 2025-11-23 14:19
Last seen 2025-12-26 19:48
Open for 33 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225b80880c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:sayidu/kodee.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "site-improvements"]
	vscode-merge-base = origin/main
```
  Found on 2025-12-26 19:48
  
  359 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: urbanauraadz.com
Port: 443
URL: https://urbanauraadz.com

First seen 2025-10-09 19:49
Last seen 2025-12-26 19:45
Open for 77 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba017513d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Usman12k13/Urban-Aura.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 19:45
  
  303 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: karthikroy.com
Port: 443
URL: https://karthikroy.com

First seen 2022-11-23 06:33
Last seen 2025-12-26 18:42
Open for 1129 days

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb37d19b1b6e13fa1fa9689dd3b88230548

Found 29 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/headshot.jpg
/index.html
/listings.html
/listings.json
/logo.webp
/posts
/posts/blah.html
/posts/crafting-cv-and-personal-statement
/posts/embracing-new-horizons
/posts/essentials-for-sustained-community-driven-development
/posts/kazhuta-kali
/posts/kazhutakali
/posts/malayalam-typing
/posts/new-beginnings
/posts/post-with-code
/posts/storytelling-rules
/posts/systems-of-measurement
/posts/temperature-conversion
/posts/temperature_conversion
/posts/welcome
/posts/why-blog
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-12-26 18:42

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525d692393444ae60bb45a178d055321a8ba

Found 27 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/index.html
/listings.html
/listings.json
/logo.webp
/posts
/posts/blah.html
/posts/crafting-cv-and-personal-statement
/posts/embracing-new-horizons
/posts/essentials-for-sustained-community-driven-development
/posts/kazhuta-kali
/posts/kazhutakali
/posts/malayalam-typing
/posts/new-beginnings
/posts/post-with-code
/posts/storytelling-rules
/posts/temperature-conversion
/posts/temperature_conversion
/posts/welcome
/posts/why-blog
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-07-02 10:57

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45061597bc1807eabcdde6203d1d70ae9a

Found 30 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/cv.pdf
/index.html
/KR.jpeg
/kr.svg
/listings.html
/listings.json
/logo.webp
/posts
/posts/blah.html
/posts/crafting-cv-and-personal-statement
/posts/embracing-new-horizons
/posts/essentials-for-sustained-community-driven-development
/posts/kazhuta-kali
/posts/kazhutakali
/posts/malayalam-typing
/posts/new-beginnings
/posts/post-with-code
/posts/storytelling-rules
/posts/temperature-conversion
/posts/temperature_conversion
/posts/welcome
/posts/why-blog
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-05-09 04:34

Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf85d4498f7d21b1f0fd0e806c68871fe25

Found 31 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/cv.pdf
/headshot.png
/index.html
/KR.jpeg
/kr.svg
/listings.html
/listings.json
/logo.webp
/posts
/posts/blah.html
/posts/crafting-cv-and-personal-statement
/posts/embracing-new-horizons
/posts/essentials-for-sustained-community-driven-development
/posts/kazhuta-kali
/posts/kazhutakali
/posts/malayalam-typing
/posts/new-beginnings
/posts/post-with-code
/posts/storytelling-rules
/posts/temperature-conversion
/posts/temperature_conversion
/posts/welcome
/posts/why-blog
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-04-16 21:35

Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf85d4498f7d21b1f0fd0e806c60c105061

Found 31 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/cv.pdf
/headshot.jpg
/index.html
/KR.jpeg
/kr.svg
/listings.html
/listings.json
/logo.webp
/posts
/posts/blah.html
/posts/crafting-cv-and-personal-statement
/posts/embracing-new-horizons
/posts/essentials-for-sustained-community-driven-development
/posts/kazhuta-kali
/posts/kazhutakali
/posts/malayalam-typing
/posts/new-beginnings
/posts/post-with-code
/posts/storytelling-rules
/posts/temperature-conversion
/posts/temperature_conversion
/posts/welcome
/posts/why-blog
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-04-15 00:32

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe71960e9e2589d6f11f8ac27f0b9728bac2b

Found 16 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/cv.pdf
/headshot.jpg
/index.html
/KR.jpeg
/kr.svg
/listings.html
/listings.json
/posts
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2025-04-11 02:52

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbec07d245e3dd50752b9bcea6d2f826d169

Found 17 files trough .DS_Store spidering:

/about.html
/blog.html
/cv.html
/cv.pdf
/headshot.jpeg
/headshot.jpg
/index.html
/KR.jpeg
/kr.svg
/listings.html
/listings.json
/posts
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2024-11-11 21:55

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8defae55749dd1c5e068db8cc4668a143

Found 8 files trough .DS_Store spidering:

/about.html
/cv.html
/index.html
/robots.txt
/search.json
/site_libs
/sitemap.xml
/styles.css

Found on 2024-03-17 01:12

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: visort.ca
Port: 443
URL: https://visort.ca

First seen 2025-10-16 18:21
Last seen 2025-12-26 18:40
Open for 71 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e3509bb751fab52dd9aabdfbe41f2425870311c66483
```
GraphQL introspection enabled at /api
Types: 39 (by kind: ENUM: 6, INPUT_OBJECT: 2, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: inventories, inventory, me, users, vendors
- Mutation: Mutation | fields: changePassword, logError, login, resetPassword, signup
Directives: cacheControl, deprecated, include, skip, specifiedBy (total: 5)
```
  Found on 2025-12-26 18:40
  
  65.7 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thinkimpact.cosmium.app
Port: 443
URL: https://thinkimpact.cosmium.app

First seen 2025-09-06 17:24
Last seen 2025-12-26 18:40
Open for 111 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522481ad52a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/Cosmium-apps/ti-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[user]
	name = julien.p
	email = julien@cosmium.app
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 18:40
  
  319 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: menheophoto.com
Port: 443
URL: https://menheophoto.com

First seen 2025-09-25 15:56
Last seen 2025-12-26 18:02
Open for 92 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9c550188
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/hoangquan2419/profile.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 18:02
  
  303 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: dprcpn.com
Port: 443
URL: https://dprcpn.com

First seen 2025-12-14 04:26
Last seen 2025-12-26 16:35
Open for 12 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d60619e9e6c99028968146636b711dd6c00db2bea8
```
GraphQL introspection enabled at /api/graphql
Types: 15 (by kind: ENUM: 2, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: artworks
- Mutation: Mutation | fields: updateArtwork
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
```
  Found on 2025-12-26 16:35
  
  22.9 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: admin.meinbau.net
Port: 443
URL: https://admin.meinbau.net

First seen 2025-11-28 20:42
Last seen 2025-12-26 11:21
Open for 27 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3eb172d4c8c2d8610253077dd84defdfd92dd0040

GraphQL introspection enabled at /graphql
Types: 118 (by kind: ENUM: 17, INPUT_OBJECT: 27, OBJECT: 66, SCALAR: 6, UNION: 2)
Operations:
- Query: Query | fields: _empty, allAdmins, budgetEstimation, independenceDayResult, init2FA
- Mutation: Mutation | fields: _empty, createUser, independenceDaySubmit, loginWithPassword, subscribeToUpdates
Directives: auth, deprecated, include, skip, specifiedBy (total: 5)

Found on 2025-12-26 11:21

212.5 kBytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: multigamestore.store
Port: 443
URL: https://multigamestore.store

First seen 2025-12-09 00:16
Last seen 2025-12-26 06:03
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb37dabd70
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/limachi72/multigame.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-26 06:03
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: almaobrador.art
Port: 443
URL: https://almaobrador.art

First seen 2025-10-20 15:49
Last seen 2025-12-23 04:28
Open for 63 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4dd41ded
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/leandros1793/alma-obrador-frontend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-12-23 04:28
  
  351 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: fixwalletissues.com
Port: 443
URL: https://fixwalletissues.com

First seen 2025-10-31 14:10
Last seen 2025-12-20 11:17
Open for 49 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb962b5201
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/arkadyabramoff/fixwalletissues.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-20 11:17
  
  312 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: www.clubwicked.nl
Port: 443
URL: https://www.clubwicked.nl

First seen 2025-11-07 07:52
Last seen 2025-12-18 07:48
Open for 40 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d695aa366a2d6765da218df29b63359b190e05f629

GraphQL introspection enabled at /api/graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 10, OBJECT: 37, SCALAR: 8)
Operations:
- Query: Query | fields: Agenda, Agenda_aggregated, Agenda_by_id, Agenda_by_version, hero_content
- Subscription: Subscription | fields: Agenda_mutated, Headersettings_mutated, Navigation_mutated, faq_items_mutated, hero_content_mutated
Directives: deprecated, include, skip (total: 3)

Found on 2025-12-18 07:48

78.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d695aa366a2d6765da218df29b63359b199c0b8145

GraphQL introspection enabled at /api/graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 10, OBJECT: 37, SCALAR: 8)
Operations:
- Query: Query | fields: Agenda, Agenda_aggregated, Agenda_by_id, Agenda_by_version, hero_content
- Subscription: Subscription | fields: Agenda_mutated, Headersettings_mutated, Navigation_mutated, faq_items_mutated, hero_content_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
hero_content (args: optional/default) : id=1 title=DÉ COMEDY CLUB VAN GRONINGEN! cta_text=IK WIL LACHEN ECHT HE countdown_title=Volgende show over: no_events_message=Binnenkort meer evenementen! is_active=true

Found on 2025-12-16 05:21

78.1 kBytes 6 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d695aa366a2d6765da218df29b63359b19bbffe55b

GraphQL introspection enabled at /api/graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 10, OBJECT: 37, SCALAR: 8)
Operations:
- Query: Query | fields: Agenda, Agenda_aggregated, Agenda_by_id, Agenda_by_version, hero_content
- Subscription: Subscription | fields: Agenda_mutated, Headersettings_mutated, Navigation_mutated, faq_items_mutated, hero_content_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
hero_content (args: optional/default) : is_active=true id=1 title=DÉ COMEDY CLUB VAN GRONINGEN! cta_text=IK WIL LACHEN ECHT HE countdown_title=Volgende show over: no_events_message=Binnenkort meer evenementen!

Found on 2025-11-28 22:05

78.1 kBytes 6 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d695aa366a2d6765da218df29b63359b191faa82e1

GraphQL introspection enabled at /api/graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 10, OBJECT: 37, SCALAR: 8)
Operations:
- Query: Query | fields: Agenda, Agenda_aggregated, Agenda_by_id, Agenda_by_version, hero_content
- Subscription: Subscription | fields: Agenda_mutated, Headersettings_mutated, Navigation_mutated, faq_items_mutated, hero_content_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
hero_content (args: optional/default) : no_events_message=Binnenkort meer evenementen! is_active=true id=1 title=DÉ COMEDY CLUB VAN GRONINGEN! cta_text=IK WIL LACHEN ECHT HE countdown_title=Volgende show over:

Found on 2025-11-22 14:44

78.1 kBytes 6 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d695aa366a2d6765da218df29b63359b19757654cd

GraphQL introspection enabled at /api/graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 10, OBJECT: 37, SCALAR: 8)
Operations:
- Query: Query | fields: Agenda, Agenda_aggregated, Agenda_by_id, Agenda_by_version, hero_content
- Subscription: Subscription | fields: Agenda_mutated, Headersettings_mutated, Navigation_mutated, faq_items_mutated, hero_content_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 1
hero_content (args: optional/default) : title=DÉ COMEDY CLUB VAN GRONINGEN! cta_text=IK WIL LACHEN ECHT HE countdown_title=Volgende show over: no_events_message=Binnenkort meer evenementen! is_active=true id=1

Found on 2025-11-16 10:54

78.1 kBytes 6 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: comunidademigratoria.com
Port: 443
URL: https://comunidademigratoria.com

First seen 2025-11-27 03:23
Last seen 2025-12-16 22:19
Open for 19 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbad970df8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/sukamadev/P-gina-Web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-16 22:19
  
  335 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: gchkongcheng.xyz
Port: 443
URL: https://gchkongcheng.xyz

First seen 2025-05-18 18:52
Last seen 2025-12-16 12:51
Open for 211 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb82a7b97d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/GCHkongcheng/TKZC.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0

Found on 2025-12-16 12:51

424 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb37dc2205

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/GCHkongcheng/TKZC.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0

Found on 2025-06-05 11:11

358 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: blcapitalltd.com
Port: 443
URL: https://blcapitalltd.com

First seen 2025-09-09 10:45
Last seen 2025-12-16 11:42
Open for 98 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6eb11654
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/skylordking5/blcapitalltd.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-16 11:42
  
  324 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.lawnandstone.co.uk
Port: 443
URL: https://www.lawnandstone.co.uk

First seen 2025-12-02 09:41
Last seen 2025-12-16 07:05
Open for 13 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb44d0fbb2
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/savi1047/LawnAndStone.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-16 07:05
  
  303 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.halfsyshop.com
Port: 443
URL: https://www.halfsyshop.com

First seen 2025-12-01 15:12
Last seen 2025-12-14 05:04
Open for 12 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522cb824536
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/research-16alpha/halfsy_frontend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "mobileVersion"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/mobileVersion
```
  Found on 2025-12-14 05:04
  
  430 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: haloazdj.xyz
Port: 80
URL: http://haloazdj.xyz

First seen 2025-12-09 15:04
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb06cbd057
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ano94-prog/abc99.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-09 15:04
  
  298 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: myathsunaiwin.com
Port: 443
URL: https://myathsunaiwin.com

First seen 2025-08-07 19:27
Last seen 2025-12-07 14:03
Open for 121 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522eb0c51cb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/myattsu/portfolio-of-myathsu.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-12-07 14:03
  
  259 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: malajap.com
Port: 443
URL: https://malajap.com

First seen 2025-11-17 01:57
Last seen 2025-12-06 05:53
Open for 19 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65223dcfafc1
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://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@github.com/uniqwebai-dev/Malajap.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-06 05:53
  
  355 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dotcollectionglobal.com
Port: 443
URL: https://dotcollectionglobal.com

First seen 2025-10-03 17:33
Last seen 2025-12-05 15:16
Open for 62 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb64f6d143
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/AJ22326009/Dot-Collection-Global-Design.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-05 15:16
  
  321 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: lindaocherik.se
Port: 443
URL: https://lindaocherik.se

First seen 2025-11-30 10:31
Last seen 2025-12-05 14:58
Open for 5 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2025-12-05 14:58
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6623d756260956f32dfefe60ecae2d83cbf8272cc
```
GraphQL introspection enabled at /api/graphql
Types: 2918 (by kind: ENUM: 77, INPUT_OBJECT: 375, OBJECT: 2446, SCALAR: 8, UNION: 12)
Operations:
- Query: Query | fields: Page, Pages, countPages, docAccessPage, versionPage
- Mutation: Mutation | fields: createPage, deletePage, duplicatePage, restoreVersionPage, updatePage
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-11-30 10:31
  
  1.8 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 63.176.8.218
Domain: cms.ecotwinproject.eu
Port: 443
URL: https://cms.ecotwinproject.eu

First seen 2025-12-01 07:12
Last seen 2025-12-05 02:43
Open for 3 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2025-12-05 02:43
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d60bcc606310af0fa17b84fb0f7708ee26524ecc82
```
GraphQL introspection enabled at /api/graphql
Types: 3018 (by kind: ENUM: 73, INPUT_OBJECT: 432, OBJECT: 2502, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-01 07:12
  
  2.0 MBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: yanifa.com
Port: 443
URL: https://yanifa.com

First seen 2025-12-04 14:26
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb880ca32f
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/UAMYvonne/YANIFA-WEBSITE.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-12-04 14:26
  
  310 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ronitgandhi.com
Port: 443
URL: https://ronitgandhi.com

First seen 2025-12-02 15:03
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222647c0c6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/RonitGandhi/new-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[pull]
	rebase = true
```
  Found on 2025-12-02 15:03
  
  336 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ibmananciais.com.br
Port: 443
URL: https://ibmananciais.com.br

First seen 2025-09-10 01:25
Last seen 2025-12-02 12:18
Open for 83 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb80df56e1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Jackrise/mananciais.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-02 12:18
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: iklimababangida.com
Port: 443
URL: https://iklimababangida.com

First seen 2025-11-12 19:44
Last seen 2025-12-01 15:55
Open for 18 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8a21bf09
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/HasbiyallahuJafaru/sunshineinapod.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 15:55
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mtechnopower.online
Port: 443
URL: https://mtechnopower.online

First seen 2025-12-01 11:38
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226b102c83
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/mtechnopower/mtechnopower.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 11:38
  
  269 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: golfroundtracker.com
Port: 443
URL: https://golfroundtracker.com

First seen 2025-11-04 18:18
Last seen 2025-12-01 10:20
Open for 26 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652257bd7469
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/lewwilson20011/alano-club-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 10:20
  
  357 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mcdigitalservices.pro
Port: 443
URL: https://mcdigitalservices.pro

First seen 2025-11-16 19:59
Last seen 2025-12-01 09:20
Open for 14 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228eb712bb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/abdirxhmxn/portfolio
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-12-01 09:20
  
  338 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thebhaispecial.com
Port: 443
URL: https://thebhaispecial.com

First seen 2025-07-25 01:17
Last seen 2025-12-01 05:17
Open for 129 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522946fb393

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Appstep-Technologies-Private-Limited/The_Bhai_Special_HTML.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "sonali-dev"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/sonali-dev

Found on 2025-12-01 05:17

483 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: srivick.com
Port: 443
URL: https://srivick.com

First seen 2025-11-22 08:21
Last seen 2025-12-01 04:47
Open for 8 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb73bd58d9
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/trispacesofficial-cpu/Trispaces_Static_Pages.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 04:47
  
  326 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: greateasterntrading.in
Port: 443
URL: https://greateasterntrading.in

First seen 2025-11-19 02:16
Last seen 2025-12-01 02:48
Open for 12 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb2712d65
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/dishastudioz/ds_underdev
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 02:48
  
  302 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lushbyzain.com
Port: 443
URL: https://lushbyzain.com

First seen 2025-08-11 02:54
Last seen 2025-12-01 02:44
Open for 111 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbafb226bd
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/haseeb0335/Lush-by-zain.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-12-01 02:44
  
  305 Bytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: dev-auth.viildz.com
Port: 443
URL: https://dev-auth.viildz.com

First seen 2025-11-30 17:52

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3162fc1bdbce46f5f516f3d846150721ade1429ed

GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 17, SCALAR: 3)
Operations:
- Query: Query | fields: getUser, getUsers
- Mutation: Mutation | fields: createUser, deleteUser, loginUser, updateFirstTimeLogin, updateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 2
getUser (args: optional/default) : code=401 message=UNAUTHORIZED
getUsers (args: optional/default) : code=401 message=UNAUTHORIZED

Found on 2025-11-30 17:52

39.6 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3162fc1bdbce46f5f516f3d846150721ad465657b

GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 17, SCALAR: 3)
Operations:
- Query: Query | fields: getUser, getUsers
- Mutation: Mutation | fields: createUser, deleteUser, loginUser, updateFirstTimeLogin, updateUser
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 2
getUser (args: optional/default) : message=UNAUTHORIZED code=401
getUsers (args: optional/default) : code=401 message=UNAUTHORIZED

Found on 2025-11-30 17:52

39.6 kBytes 4 rows

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: enestiryaki.me
Port: 443
URL: https://enestiryaki.me

First seen 2025-10-16 09:25
Last seen 2025-11-30 16:43
Open for 45 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb288c8b29
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/tiryakienes/tiryakienes.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-30 16:43
  
  257 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: albertzeqiri.com
Port: 443
URL: https://albertzeqiri.com

First seen 2025-09-05 03:34
Last seen 2025-11-30 15:04
Open for 86 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb75d19f51
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/albertzeqiri.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-30 15:04
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: curelaserclinic.com
Port: 443
URL: https://curelaserclinic.com

First seen 2025-11-30 09:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3c856c91
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/hyper220502-byte/clinic01.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-30 09:45
  
  249 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: theentrepreneurjunction.com
Port: 443
URL: https://theentrepreneurjunction.com

First seen 2025-11-12 06:00
Last seen 2025-11-29 07:11
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd15519dd
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Dev-V-Trivedi/theentrepreneurjunction.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-29 07:11
  
  319 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hellochicken.iqrarabic.com
Port: 443
URL: https://hellochicken.iqrarabic.com

First seen 2025-11-05 07:18
Last seen 2025-11-28 20:29
Open for 23 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc9543405

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/eymenelneccar/menuhello.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-11-28 20:29

305 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb27d2f7b0

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/eymenelneccar/menukas.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-11-05 07:18

303 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: perspectivepaint.com
Port: 443
URL: https://perspectivepaint.com

First seen 2025-08-18 00:26
Last seen 2025-11-28 19:26
Open for 102 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbac01599e

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Kurisuo/PerspectivePaint.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-11-28 19:26

339 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb92b8c76a

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Kurisuo/PerspectivePainting.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-09-07 06:45

342 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: artarun.in
Port: 443
URL: https://artarun.in

First seen 2025-10-10 16:54
Last seen 2025-11-28 14:31
Open for 48 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd4f49824
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Arunkumar6522/artarun_portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-11-28 14:31
  
  317 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: app.titan-office.com
Port: 443
URL: https://app.titan-office.com

First seen 2025-11-26 15:07
Last seen 2025-11-28 10:52
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652276df9ddd
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/HarryNC92/Titan-Landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-11-28 10:52
  
  371 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: creandosolucionesglobales.com.ar
Port: 443
URL: https://creandosolucionesglobales.com.ar

First seen 2025-11-27 19:31
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb44ec45f0
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/MarianoTimistit23/csg-seguros.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-27 19:31
  
  401 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: octuriontech.com
Port: 443
URL: https://octuriontech.com

First seen 2025-11-23 03:19
Last seen 2025-11-27 04:25
Open for 4 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba401ecd6
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/kayceeeneh/OcturionTech-demo.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-27 04:25
  
  345 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: xitytour.com
Port: 443
URL: https://xitytour.com

First seen 2025-10-13 07:39
Last seen 2025-11-27 00:01
Open for 44 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe5e08cf5
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/nversahakyanc/xitytour.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-11-27 00:01
  
  400 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ebisuexports.com
Port: 443
URL: https://ebisuexports.com

First seen 2025-11-15 01:33
Last seen 2025-11-26 18:27
Open for 11 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbca42cd5e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ebisuexports-cpu/EBISU-EXPORTS.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-26 18:27
  
  254 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: di.blaban.iqrarabic.com
Port: 443
URL: https://di.blaban.iqrarabic.com

First seen 2025-11-22 18:56
Last seen 2025-11-26 16:44
Open for 3 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7b0564b7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/eymenelneccar/blban.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-26 16:44
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: femmefatalepoledancingstudio.com
Port: 443
URL: https://femmefatalepoledancingstudio.com

First seen 2025-11-16 15:48
Last seen 2025-11-26 12:29
Open for 9 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652214a57a61
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/DavideSchirru17/lapdance.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-26 12:29
  
  346 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: kodratech.com
Port: 443
URL: https://kodratech.com

First seen 2025-11-07 02:09
Last seen 2025-11-23 08:53
Open for 16 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb18351f5a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/albertzeqiri/kodratech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-23 08:53
  
  304 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: test.yxs.ch
Port: 443
URL: https://test.yxs.ch

First seen 2025-11-18 22:02
Last seen 2025-11-23 08:02
Open for 4 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652279e4fc56
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/xNightW0lfz/yxs-cdn.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-11-23 08:02
  
  367 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: meaganpalmer.com
Port: 443
URL: https://meaganpalmer.com

First seen 2025-11-23 05:17
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf53f02d3
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/meagsp/personal_website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-23 05:17
  
  247 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dandycookies.com
Port: 443
URL: https://dandycookies.com

First seen 2025-09-08 01:03
Last seen 2025-11-22 22:53
Open for 75 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228f721257
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/jermaine999/dandy-cookies
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-22 22:53
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sociopotents.in
Port: 443
URL: https://sociopotents.in

First seen 2025-08-09 06:21
Last seen 2025-11-22 18:40
Open for 105 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbcee49cc1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/KYRAS-2023/SocioPotents.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	gk-merge-base = origin/main
```
  Found on 2025-11-22 18:40
  
  367 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lakrorane1.com
Port: 443
URL: https://lakrorane1.com

First seen 2025-10-29 18:55
Last seen 2025-11-22 17:36
Open for 23 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5b120909
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/amarildopisha/Lakrorane.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-22 17:36
  
  338 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aldwrablaban.iqrarabic.com
Port: 443
URL: https://aldwrablaban.iqrarabic.com

First seen 2025-11-22 17:26
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7b0564b7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/eymenelneccar/blban.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-22 17:26
  
  301 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: cogotv.nconnections.com
Port: 443
URL: https://cogotv.nconnections.com

First seen 2025-10-30 22:52
Last seen 2025-11-20 14:09
Open for 20 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a63a70a86f0f498c067e8739a14db18ce5e30760
```
GraphQL introspection enabled at /graphql
Types: 10 (by kind: INPUT_OBJECT: 1, OBJECT: 5, SCALAR: 4)
Operations:
- Query: Queries | fields: inviteInfo
- Mutation: Mutations | fields: acceptInvitation, authenticate, authenticateClient, magicLink, refreshAuth
Directives: include, skip (total: 2)
```
  Found on 2025-11-20 14:09
  
  8.2 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: paletteandfit.site
Port: 443
URL: https://paletteandfit.site

First seen 2025-11-20 09:59
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe233e1d8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/AfeefaRehan/palettefit-backend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-20 09:59
  
  312 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: margindepartment.co
Port: 443
URL: https://margindepartment.co

First seen 2025-11-19 18:59
Last seen 2025-11-19 18:59
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652260abc83c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/chanceriley6/margindept-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-19 18:59
  
  262 Bytes
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.157.26.135
Domain: uat.makemystuff.com.au
Port: 443
URL: https://uat.makemystuff.com.au

First seen 2025-11-19 16:23

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4b4c3c7736742e537d69d6101a5ca07d35f309d8f

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /maker/estimationProfile/{id}
DELETE /maker/location/{id}
DELETE /maker/material/{id}
DELETE /maker/materialType/{id}
DELETE /maker/shippingrate/{id}
DELETE /maker/technology/{id}
GET /CurrentUser
GET /GetMakerOrders
GET /GetOpenOrders
GET /RefreshStripeAccount
GET /StripeAccountLink
GET /currentMaker
GET /maker
GET /maker/dashboard
GET /maker/emailtemplates
GET /maker/estimationProfiles
GET /maker/info/{storeName?}
GET /maker/locations
GET /maker/materialTypes
GET /maker/materials
GET /maker/paymentrates
GET /maker/shippingrates
GET /maker/technologies
POST /AcceptOrder
POST /CancelOrder
POST /Checkout
POST /CompleteOrder
POST /DebugClaims
POST /GetShippingQuote
POST /OnboardStripeAccount
POST /OrderReadyForPickup
POST /OrderShipped
POST /RefundOrder
POST /freetrial/submit
POST /maker/bulkDiscountOptions
POST /maker/emailtemplate/test
POST /maker/emailtemplate/update
POST /maker/estimationProfile
POST /maker/estimationProfile/update
POST /maker/info/update
POST /maker/location
POST /maker/location/update
POST /maker/material
POST /maker/material/update
POST /maker/materialType
POST /maker/materialType/update
POST /maker/paymentrate/update
POST /maker/shippingrate
POST /maker/shippingrate/delete
POST /maker/shippingrate/update
POST /maker/shippo/integrate
POST /maker/shippo/integrate/complete
POST /maker/signup
POST /maker/technology
POST /maker/technology/update

Found on 2025-11-19 16:23

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: jabbestembo.com
Port: 443
URL: https://jabbestembo.com

First seen 2025-11-18 16:49
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf66c12ab
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Jabbes-Tembo/Portfolio-Site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-18 16:49
  
  342 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: y.gsv2.com
Port: 443
URL: https://y.gsv2.com

First seen 2025-10-08 15:17
Last seen 2025-11-16 22:47
Open for 39 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522fac55736

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/xNightW0lfz/GSV2.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0

Found on 2025-11-16 22:47

430 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: premierboatdetailingfl.com
Port: 443
URL: https://premierboatdetailingfl.com

First seen 2025-10-19 16:19
Last seen 2025-11-16 22:29
Open for 28 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd31fb432
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:premierautomarine/PremierDetailingWeb.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-16 22:29
  
  257 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lessengine.se
Port: 443
URL: https://lessengine.se

First seen 2025-11-14 20:04

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb9fafca5

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/shorty1111/BTCv01.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0

Found on 2025-11-14 20:04

391 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vodoinstalater-ontop.rs
Port: 443
URL: https://vodoinstalater-ontop.rs

First seen 2025-08-22 12:24
Last seen 2025-11-14 14:28
Open for 84 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222ee538b6

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/studiomigu/Vodoinstalater-OnTop.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-11-14 14:28

388 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a5661f3c

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/studiomigu/Vodoinstalater-Mlaznica.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-10-21 11:37

358 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: commandcentersabre.com
Port: 443
URL: https://commandcentersabre.com

First seen 2025-10-19 18:07
Last seen 2025-11-14 03:12
Open for 25 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbf7c2fc1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Sindbadtrading/terminal-training.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-14 03:12
  
  256 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lojatikvah.com.br
Port: 443
URL: https://lojatikvah.com.br

First seen 2025-11-11 02:17
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbad077401
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/lucasalves0722/Hospedador-de-links.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-11 02:17
  
  349 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pdfsplitter.app
Port: 443
URL: https://pdfsplitter.app

First seen 2025-11-10 12:15
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522031d68a8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/sarahokafor-gif/splitsmart.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-10 12:15
  
  350 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: archilabs.ai
Port: 443
URL: https://archilabs.ai

First seen 2025-11-03 01:54
Last seen 2025-11-08 09:02
Open for 5 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d63333eee3d801bf21daa10cc165f066b36a27a89b
```
GraphQL introspection enabled at /api/graphql
Types: 3897 (by kind: ENUM: 105, INPUT_OBJECT: 477, OBJECT: 3291, SCALAR: 8, UNION: 16)
Operations:
- Query: Query | fields: Page, Pages, countPages, docAccessPage, versionPage
- Mutation: Mutation | fields: createPage, deletePage, duplicatePage, restoreVersionPage, updatePage
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-11-08 09:02
  
  2.5 MBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: orhideaqadraku.xyz
Port: 443
URL: https://orhideaqadraku.xyz

First seen 2025-11-07 16:47
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb795b085d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/OrhideaQadraku/orhidea_portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-07 16:47
  
  314 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hanantrading.com
Port: 443
URL: https://hanantrading.com

First seen 2025-08-25 10:06
Last seen 2025-11-07 04:10
Open for 73 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522323edf99
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://abdulmalik.creations@gitlab.com/abdulmalik.creations/saudi-company-page.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	gk-merge-base = origin/main
```
  Found on 2025-11-07 04:10
  
  411 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sabo-sports.com
Port: 443
URL: https://sabo-sports.com

First seen 2025-11-06 23:46
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1a130337
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:ninghaomiao2002/SportsWebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-11-06 23:46
  
  342 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sssoftwareservices.in
Port: 443
URL: https://sssoftwareservices.in

First seen 2025-11-05 14:00
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3332beea
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/swathisuren77/SS-Wesite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-11-05 14:00
  
  320 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dexinexhibition.com
Port: 443
URL: https://dexinexhibition.com

First seen 2025-11-05 03:22
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4a486643
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/r7ings/dexinexhibition.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-05 03:22
  
  246 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: website.gameflux.nl
Port: 443
URL: https://website.gameflux.nl

First seen 2025-11-04 20:28
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8df82e26
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/nlgamevibes-create/Wesbite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-04 20:28
  
  308 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rublevka-game.ru
Port: 443
URL: https://rublevka-game.ru

First seen 2025-11-04 09:05
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb41dac4db
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Atenzo/rublev-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-04 09:05
  
  242 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: simplydevign.com
Port: 443
URL: https://simplydevign.com

First seen 2025-07-29 19:06
Last seen 2025-11-03 11:40
Open for 96 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bb388a5a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/aaugust22/Personal-Website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-11-03 11:40
  
  257 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vodoinstalater-beograda.rs
Port: 443
URL: https://vodoinstalater-beograda.rs

First seen 2025-10-28 14:22
Last seen 2025-11-01 16:44
Open for 4 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652273aa433e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/studiomigu/WEBSITE-VODOINSTALATERSKI-SERVIS.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-01 16:44
  
  356 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dimas-dev.com
Port: 443
URL: https://dimas-dev.com

First seen 2025-10-30 13:44
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba0667354
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/dev-juliadimas/cartaoVisita.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-10-30 13:44
  
  313 Bytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 35.157.26.135
Domain: vittsjobeer.club
Port: 443
URL: https://vittsjobeer.club

First seen 2025-10-25 09:21
Last seen 2025-10-29 10:18
Open for 4 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d69162149da61173fff508501d01c537e86e83c108
```
GraphQL introspection enabled at /api/graphql
Types: 518 (by kind: ENUM: 14, INPUT_OBJECT: 69, OBJECT: 424, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: User, Users, countUsers, docAccessUser, meUser
- Mutation: Mutation | fields: createUser, deleteUser, logoutUser, refreshTokenUser, updateUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-10-29 10:18
  
  342.5 kBytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: amirawebstyles.online
Port: 443
URL: https://amirawebstyles.online

First seen 2025-08-11 04:21
Last seen 2025-10-29 06:26
Open for 79 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba04a7895
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Ami2490/armeria.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-29 06:26
  
  239 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: justinisaiahmadison-portfolio.com
Port: 443
URL: https://justinisaiahmadison-portfolio.com

First seen 2025-08-27 23:13
Last seen 2025-10-29 02:10
Open for 62 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba2947926
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/uci-inf-133/a1-personal-website-jimadiso.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
```
  Found on 2025-10-29 02:10
  
  361 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: adbureau.xyz
Port: 443
URL: https://adbureau.xyz

First seen 2025-09-27 18:38
Last seen 2025-10-28 11:18
Open for 30 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbbf8ded7
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ItesiwajuTechnologies/landing-page.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-10-28 11:18
  
  320 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: stackon.com.au
Port: 443
URL: https://stackon.com.au

First seen 2025-10-26 15:52
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e51e933a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://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@github.com/sudheerpalyam/stackon-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-26 15:52
  
  359 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: adithyaiasacademy.org
Port: 443
URL: https://adithyaiasacademy.org

First seen 2025-10-26 12:54
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe94634ec
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kesavaram9751/Adithya-IAS-Academy.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-26 12:54
  
  348 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: asaphdesign.com
Port: 443
URL: https://asaphdesign.com

First seen 2025-10-26 04:16
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227344c524
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/LifeSentences/asaphdesign.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-26 04:16
  
  349 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: erakkomaja.com
Port: 443
URL: https://erakkomaja.com

First seen 2025-10-23 13:38
Last seen 2025-10-23 13:38
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224bb95997
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/KAYTTAJA/erakkomaja.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-23 13:38
  
  250 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aiofbb.minproducer.com
Port: 443
URL: https://aiofbb.minproducer.com

First seen 2025-10-14 06:23
Last seen 2025-10-20 06:54
Open for 6 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb72ccaa03
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/minproducer/fbaiomod.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-20 06:54
  
  284 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: wrtpros.com
Port: 443
URL: https://wrtpros.com

First seen 2025-10-19 21:17
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6b2c5dbb
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/edwardlchiarini/wrtpros-report.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-19 21:17
  
  347 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: digital-sabre.com
Port: 443
URL: https://digital-sabre.com

First seen 2025-10-05 17:48
Last seen 2025-10-19 12:40
Open for 13 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbf7c2fc1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Sindbadtrading/terminal-training.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-19 12:40
  
  256 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: balpokharel.com.np
Port: 443
URL: https://balpokharel.com.np

First seen 2025-10-17 06:06
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7a3705b4
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/balkrishna62/todolist.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-17 06:06
  
  303 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: before-disaster.juicesapps.xyz
Port: 443
URL: https://before-disaster.juicesapps.xyz

First seen 2025-10-03 02:17
Last seen 2025-10-16 13:49
Open for 13 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d34be60a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/xNightW0lfz/before-disaster-game.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-16 13:49
  
  411 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: docecor.com.br
Port: 443
URL: https://docecor.com.br

First seen 2025-10-16 04:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb086a4470
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:alexanderdevbr/docecor.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-16 04:20
  
  333 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rocketnatic.com
Port: 443
URL: https://rocketnatic.com

First seen 2025-10-15 13:26
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6e13cece
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/vanilla-admin/R-Official.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[lfs]
	repositoryformatversion = 0
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
```
  Found on 2025-10-15 13:26
  
  380 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: emirates-sabre.com
Port: 443
URL: https://emirates-sabre.com

First seen 2025-10-13 17:37
Last seen 2025-10-15 05:53
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbf7c2fc1
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Sindbadtrading/terminal-training.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-15 05:53
  
  256 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: btbi.cc
Port: 443
URL: https://btbi.cc

First seen 2025-10-12 13:21
Last seen 2025-10-15 02:23
Open for 2 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbdea273c
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/xoanm520/btbi-portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-15 02:23
  
  247 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: alessiotecleme.com
Port: 443
URL: https://alessiotecleme.com

First seen 2025-09-07 19:47
Last seen 2025-10-13 04:12
Open for 35 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a527a31a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/alessiotecleme/personal-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[pull]
	rebase = false
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-13 04:12
  
  340 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aptsun.co.kr
Port: 443
URL: https://aptsun.co.kr

First seen 2025-08-27 07:02
Last seen 2025-10-13 01:46
Open for 46 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3fd7e735

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/hakik-html.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	gk-merge-base = origin/main
[branch "branch/dev"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/dev
	gk-merge-base = origin/main

Found on 2025-10-13 01:46

493 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1deb3730

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/hakik-html.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/dev_home"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/dev_home
[user]
	name = ParkSeokho
	email = psh9797@gmail.com

Found on 2025-09-17 11:24

498 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbba4f6db5

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/hakik-html.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/dev_home"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/dev_home

Found on 2025-09-06 08:28

445 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2d4d39e3

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/hakik-html.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/dev"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/dev

Found on 2025-08-29 09:12

435 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: urbanmountainride.com
Port: 443
URL: https://urbanmountainride.com

First seen 2025-10-12 20:48
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb06765211
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/drononsky-source/urbanmountainridefgfdgd.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-12 20:48
  
  357 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: theapnaajob.in
Port: 443
URL: https://theapnaajob.in

First seen 2025-08-05 08:44
Last seen 2025-10-12 20:00
Open for 68 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8f5eb7c6
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@github.com:vishalmaurya850/JOB.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	vscode-merge-base = origin/master
	vscode-merge-base = origin/master
```
  Found on 2025-10-12 20:00
  
  327 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 3.6.190.168
Domain: synsara2k25.live
Port: 443
URL: https://synsara2k25.live

First seen 2025-09-25 12:59
Last seen 2025-10-11 06:22
Open for 15 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652288447ae4

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AlamGeeth/synsara-convergence.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

//# sourceMappingURL=data:application/json;base64,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

Found on 2025-10-11 06:22

1.6 kBytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4bf7774b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/AlamGeeth/synsara-wait.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main

Found on 2025-09-25 12:59

337 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: tikoneglobal.com
Port: 443
URL: https://tikoneglobal.com

First seen 2025-09-30 17:48
Last seen 2025-10-11 03:18
Open for 10 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c24ef5f7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/pradipbhor/tikoneimportexport.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-10-11 03:18
  
  318 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: austonmatthewsfund.com
Port: 443
URL: https://austonmatthewsfund.com

First seen 2025-10-10 19:46
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8924bb8a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Metta-Tony/Auston-Matthews-main.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-10 19:46
  
  346 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: comp4537-lab0.pouyannorouzi.com
Port: 443
URL: https://comp4537-lab0.pouyannorouzi.com

First seen 2025-09-05 18:47
Last seen 2025-10-10 08:08
Open for 34 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228476af36
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/PouyanNorouzi/COMP4537_Lab00.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-10 08:08
  
  305 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: instacampaign.xyz
Port: 443
URL: https://instacampaign.xyz

First seen 2025-08-13 04:55
Last seen 2025-10-05 03:07
Open for 52 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb51109190
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Dev2804D/telegram
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-05 03:07
  
  237 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: traced.fun
Port: 443
URL: https://traced.fun

First seen 2025-08-17 09:01
Last seen 2025-10-04 23:00
Open for 48 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3506a784

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ProximaTerminal/comp-sh.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main

Found on 2025-10-04 23:00

371 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8ddf9d84

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ProximaTerminal/comp-sh.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-08-21 10:08

305 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mytasa.org
Port: 443
URL: https://mytasa.org

First seen 2025-10-04 10:38
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522276606e7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:lsmucassi/mytasa.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-10-04 10:38
  
  334 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: siteshow.in
Port: 443
URL: https://siteshow.in

First seen 2025-10-01 12:51
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb772030f6
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/SetMyWeb/MaALa.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-10-01 12:51
  
  238 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.danzandoconelfuego.com
Port: 443
URL: https://www.danzandoconelfuego.com

First seen 2025-09-18 13:44
Last seen 2025-09-30 20:32
Open for 12 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf2943e71
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Laurab1528/VELAS.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-30 20:32
  
  298 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: aptstar.co.kr
Port: 443
URL: https://aptstar.co.kr

First seen 2025-09-04 04:44
Last seen 2025-09-30 15:41
Open for 26 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb43f0ea0b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/unam-xi.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/psh_dev"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/psh_dev
	gk-merge-base = origin/main

Found on 2025-09-30 15:41

469 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbd3b6111

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/unam-xi.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/psh_dev_home"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/psh_dev_home
[user]
	name = ParkSeokho
	email = psh9797@gmail.com

Found on 2025-09-24 23:45

503 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4158fc32

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ad-seo/unam-xi.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[branch "branch/psh_dev"]
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/branch/psh_dev

Found on 2025-09-20 13:31

440 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thefamilytree.in
Port: 443
URL: https://thefamilytree.in

First seen 2023-08-29 11:53
Last seen 2025-09-30 10:54
Open for 762 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb154397f8

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/kurilpratik/TheFamilyTree.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master

Found on 2025-09-30 10:54

346 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb2e5fd2b9

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/davinciism/TheFamilyTree.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2025-06-19 03:33

310 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vylandscaping.com
Port: 443
URL: https://vylandscaping.com

First seen 2025-09-30 03:33
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226249dde7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:ricardoasinr/vylandscaping.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-30 03:33
  
  311 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: carpetatributariasavan.services
Port: 443
URL: https://carpetatributariasavan.services

First seen 2025-09-29 07:27
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0e145566
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/juancuevas-ops/tributarias.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-09-29 07:27
  
  250 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rohitartandcraft.in
Port: 443
URL: https://rohitartandcraft.in

First seen 2025-09-22 09:52
Last seen 2025-09-28 08:55
Open for 5 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb390c18b6
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/fycscoder/Rohiartandcraft.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-09-28 08:55
  
  340 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thevanityunit.com
Port: 443
URL: https://thevanityunit.com

First seen 2025-09-25 05:19
Last seen 2025-09-26 19:36
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1efe38fc
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[user]
	email = shubhamdixit2555
	name = shubhamdixit2555
[remote "origin"]
	url = https://github.com/shubhamdixit2555/web_vanity_unity.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-26 19:36
  
  373 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: maison-martine.com
Port: 443
URL: https://maison-martine.com

First seen 2025-08-08 08:15
Last seen 2025-09-24 23:28
Open for 47 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221f873f02
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/ClementHerpe/maison-martine.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-24 23:28
  
  320 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: blacksunfiction.com
Port: 443
URL: https://blacksunfiction.com

First seen 2025-09-24 22:30
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba0855f7b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/jeffwilleford3162-create/jeffwilleford3162-create.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-09-24 22:30
  
  283 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sparktrading.co.ke
Port: 443
URL: https://sparktrading.co.ke

First seen 2025-08-19 04:31
Last seen 2025-09-24 22:15
Open for 36 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbda037c8b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/Jay0588/Sparktrading-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-09-24 22:15
  
  362 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: numberonebot.com
Port: 443
URL: https://numberonebot.com

First seen 2025-09-22 08:45
Last seen 2025-09-22 08:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb23030047
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/411bz-com/noba.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-22 08:45
  
  296 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www-santaander-condimais.site
Port: 443
URL: https://www-santaander-condimais.site

First seen 2025-09-19 04:12
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227c94c77e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/stepdefreitaas/asdaos.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-19 04:12
  
  345 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pujaparikrama.online
Port: 443
URL: https://pujaparikrama.online

First seen 2025-09-18 09:22
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226da63f06
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/arunabha369/puja-parikrama.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-18 09:22
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: shantech.online
Port: 443
URL: https://shantech.online

First seen 2025-09-17 13:54
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0271438a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/ammitt23/virtul-Assitant.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-17 13:54
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: gotovaranasi.com
Port: 443
URL: https://gotovaranasi.com

First seen 2025-09-17 08:50
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb6e40e71a
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/imayushseth/the_heartbeat_of_varanasi.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-09-17 08:50
  
  352 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: dev.certraptor.com
Port: 443
URL: https://dev.certraptor.com

First seen 2025-09-16 18:08
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba8caf359
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/shekhar-prateek/CertNinja.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-09-16 18:08
  
  340 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: ostravsky.guru
Port: 443
URL: https://ostravsky.guru

First seen 2025-09-16 10:41
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbbf26d5d8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/macekq/ostravsky.guru.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-09-16 10:41
  
  362 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: apiarioozoraide.com
Port: 443
URL: https://apiarioozoraide.com

First seen 2025-09-13 05:28
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb4fbe3171
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/amazonxavante/Apiario-Ozoraide20.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	github-pr-base-branch = "amazonxavante#Apiario-Ozoraide20#main"
	merge = refs/heads/master
```
  Found on 2025-09-13 05:28
  
  383 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: teknotrail.com
Port: 443
URL: https://teknotrail.com

First seen 2025-08-14 05:12
Last seen 2025-09-13 03:28
Open for 29 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbc91feaaa

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/haider32/TeknoTrail
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
	remote = origin
	merge = refs/heads/main

Found on 2025-09-13 03:28

363 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbadd83fa1

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/haider32/TeknoTrail
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-08-14 05:12

239 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.fasalgpt.biz
Port: 443
URL: https://www.fasalgpt.biz

First seen 2025-09-12 18:09

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d6cd3086

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Pratyushsharma101/Plant-Disease-Recognition-System
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[lfs]
	repositoryformatversion = 0
[remote "upstream"]
	url = https://github.com/kumarvivek9088/Plant-Disease-Recognition-System.git
	fetch = +refs/heads/*:refs/remotes/upstream/*

Found on 2025-09-12 18:09

548 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: fappr.app
Port: 443
URL: https://fappr.app

First seen 2025-09-11 14:22
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652207f7a896
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/davidsnyder-nc/fappr
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-09-11 14:22
  
  338 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: briefnews.app
Port: 443
URL: https://briefnews.app

First seen 2025-09-11 14:19
Last seen 2025-09-11 14:19
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a6951b5c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/davidsnyder-nc/briefnews
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-09-11 14:19
  
  342 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: oasisspacreations.org
Port: 443
URL: https://oasisspacreations.org

First seen 2025-09-10 20:30

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb9c2d8a3d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/elimtechlab/oasisspacreations.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
[lfs]
	repositoryformatversion = 0
[remote "upstream"]
	url = https://github.com/JustGoodThemes/Scriptor-Jekyll-Theme.git
	fetch = +refs/heads/*:refs/remotes/upstream/*

Found on 2025-09-10 20:30

543 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: plaziitasite.com
Port: 443
URL: https://plaziitasite.com

First seen 2025-09-10 09:35
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3cb0b2fe
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Plaziita/PlaziitaSite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-09-10 09:35
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lv110.dpdns.org
Port: 443
URL: https://lv110.dpdns.org

First seen 2025-09-09 07:08
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf3ef7b58
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/bbcb0013/firefly-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-09-09 07:08
  
  245 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: admin.jordancyberclub.com
Port: 443
URL: https://admin.jordancyberclub.com

First seen 2025-09-08 13:23
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652225bb7125
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AL-Hareth/jcc_admin.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-08 13:23
  
  263 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sadhakfoundation.org
Port: 443
URL: https://sadhakfoundation.org

First seen 2025-09-07 01:29
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbb2712d65
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/dishastudioz/ds_underdev
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-07 01:29
  
  302 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: turistikus.com
Port: 443
URL: https://turistikus.com

First seen 2025-09-05 02:19
Last seen 2025-09-05 02:19
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f969a01f
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:Turistikus/turistikus_site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[user]
	email = johnnyfreirejh@hotmail.com
	name = johnnydev-tech
```
  Found on 2025-09-05 02:19
  
  377 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: hypedshoe.xyz
Port: 443
URL: https://hypedshoe.xyz

First seen 2025-09-04 10:08
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb1df96d2d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/cyllene2301-art/birthday-countdown
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-09-04 10:08
  
  374 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: shibastellar.xyz
Port: 443
URL: https://shibastellar.xyz

First seen 2025-08-31 23:28
Last seen 2025-09-02 21:52
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd8582856
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/hashirShahzad0070/0xmeme.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-09-02 21:52
  
  306 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: freeaicharity.org
Port: 443
URL: https://freeaicharity.org

First seen 2025-08-29 10:16
Last seen 2025-08-31 03:38
Open for 1 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fbf3ed663c289bc8b7fefe8ff7fefe8ff
```
Found 3 files trough .DS_Store spidering:

/index.html
/js
/styles.css
```
  Found on 2025-08-31 03:38
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 35.157.26.135
Domain: flightlog.nicolasbressoud.ch
Port: 443
URL: https://flightlog.nicolasbressoud.ch

First seen 2025-08-20 16:00
Last seen 2025-08-30 16:28
Open for 10 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c773c1fb76b642b467b2402b764d7542b993

Found 50 files trough .DS_Store spidering:

/data
/img
/img/2022-10-18-XSD-ULT-01
/img/2022-10-19-XSD-ULT-01
/img/2022-10-30-XSD-ULT-02
/img/2023-01-07-XSD-ULT-01
/img/2023-03-03-XSD-ULT-01
/img/2023-03-05-XSD-ULT-01
/img/2023-07-06-XSD-ULT-01
/img/2023-07-07-manual
/img/2023-07-08-manual
/img/2023-07-15-XSD-ULT-01
/img/2023-08-09-XSD-ULT-01
/img/2023-08-11-XSD-ULT-01
/img/2023-08-15-XSD-ULT-01
/img/2023-08-20-XSD-ULT-01
/img/2023-09-09-XSD-ULT-01
/img/2023-09-30-manual
/img/2023-10-08-XSD-ULT-01
/img/2024-01-13-XSD-ULT-01
/img/2024-01-28-XSD-UB343B-01
/img/2024-02-04-XSD-UB343B-01
/img/2024-04-14-XSD-UB343B-01
/img/2024-05-25-XSD-UB343B-01
/img/2024-05-26-XSD-UB343B-01
/img/2024-08-10-XSD-UB343B-01
/img/2024-08-11-XSD-UB343B-01
/img/2024-10-31-XSD-UB343B-01
/img/2024-12-30-XSD-UB343B-01
/img/2024-12-31-XSD-UB343B-01
/img/2024-12-31-XSD-UB343B-02
/img/2025-01-17-XSD-UB343B-02
/img/2025-02-02-XSD-UB343B-01
/img/2025-02-04-XSD-UB343B-01
/img/2025-02-15-XSD-UB343B-01
/img/2025-03-02-XSD-UB343B-01
/img/2025-03-19-XSD-UB343B-01
/img/2025-03-30-XSD-UB343B-01
/img/2025-04-11-XSD-UB343B-01
/img/2025-04-26-XSD-UB343B-01
/img/2025-05-10-XSD-UB343B-01
/img/2025-05-15-XSD-UB343B-01
/img/2025-05-18-XSD-UB343B-01
/img/2025-06-14-XSD-UB343B-02
/img/2025-07-05-XSD-UB343B-01
/img/2025-07-11-XSD-UB343B-01
/img/2025-08-06-XSD-UB343B-01
/img/2025-08-08-XSD-UB343B-01
/posts
/site_libs

Found on 2025-08-30 16:28

Severity: medium
Fingerprint: 5f32cf5d6962f09c1f1b52f11f1b52f1edfc79e4a5fc8e801033030f0d192175

Found 96 files trough .DS_Store spidering:

/data
/img
/img/2022-10-18-XSD-ULT-01
/img/2022-10-19-XSD-ULT-01
/img/2022-10-30-XSD-ULT-02
/img/2023-01-07-XSD-ULT-01
/img/2023-03-03-XSD-ULT-01
/img/2023-03-05-XSD-ULT-01
/img/2023-07-06-XSD-ULT-01
/img/2023-07-07-manual
/img/2023-07-08-manual
/img/2023-07-15-XSD-ULT-01
/img/2023-08-09-XSD-ULT-01
/img/2023-08-11-XSD-ULT-01
/img/2023-08-15-XSD-ULT-01
/img/2023-08-20-XSD-ULT-01
/img/2023-09-09-XSD-ULT-01
/img/2023-09-30-manual
/img/2023-10-08-XSD-ULT-01
/img/2024-01-13-XSD-ULT-01
/img/2024-01-28-XSD-UB343B-01
/img/2024-02-04-XSD-UB343B-01
/img/2024-04-14-XSD-UB343B-01
/img/2024-05-25-XSD-UB343B-01
/img/2024-05-26-XSD-UB343B-01
/img/2024-08-10-XSD-UB343B-01
/img/2024-08-11-XSD-UB343B-01
/img/2024-10-31-XSD-UB343B-01
/img/2024-12-30-XSD-UB343B-01
/img/2024-12-31-XSD-UB343B-01
/img/2024-12-31-XSD-UB343B-02
/img/2025-01-17-XSD-UB343B-02
/img/2025-02-02-XSD-UB343B-01
/img/2025-02-04-XSD-UB343B-01
/img/2025-02-15-XSD-UB343B-01
/img/2025-03-02-XSD-UB343B-01
/img/2025-03-19-XSD-UB343B-01
/img/2025-03-30-XSD-UB343B-01
/img/2025-04-11-XSD-UB343B-01
/img/2025-04-26-XSD-UB343B-01
/img/2025-05-10-XSD-UB343B-01
/img/2025-05-15-XSD-UB343B-01
/img/2025-05-18-XSD-UB343B-01
/img/2025-06-14-XSD-UB343B-02
/img/2025-07-05-XSD-UB343B-01
/img/2025-07-11-XSD-UB343B-01
/img/2025-08-06-XSD-UB343B-01
/img/2025-08-08-XSD-UB343B-01
/posts
/posts/2022-10-18-XSD-ULT-01
/posts/2022-10-19-XSD-ULT-01
/posts/2022-10-30-XSD-ULT-02
/posts/2023-01-07-XSD-ULT-01
/posts/2023-03-03-XSD-ULT-01
/posts/2023-03-05-XSD-ULT-01
/posts/2023-07-06-XSD-ULT-01
/posts/2023-07-07-manual
/posts/2023-07-08-manual
/posts/2023-07-15-XSD-ULT-01
/posts/2023-08-09-XSD-ULT-01
/posts/2023-08-11-XSD-ULT-01
/posts/2023-08-15-XSD-ULT-01
/posts/2023-08-20-XSD-ULT-01
/posts/2023-09-09-XSD-ULT-01
/posts/2023-09-30-manual
/posts/2023-10-08-XSD-ULT-01
/posts/2024-01-13-XSD-ULT-01
/posts/2024-01-28-XSD-UB343B-01
/posts/2024-02-04-XSD-UB343B-01
/posts/2024-04-14-XSD-UB343B-01
/posts/2024-05-25-XSD-UB343B-01
/posts/2024-05-26-XSD-UB343B-01
/posts/2024-08-10-XSD-UB343B-01
/posts/2024-08-11-XSD-UB343B-01
/posts/2024-10-31-XSD-UB343B-01
/posts/2024-12-30-XSD-UB343B-01
/posts/2024-12-31-XSD-UB343B-01
/posts/2024-12-31-XSD-UB343B-02
/posts/2025-01-17-XSD-UB343B-02
/posts/2025-02-02-XSD-UB343B-01
/posts/2025-02-04-XSD-UB343B-01
/posts/2025-02-15-XSD-UB343B-01
/posts/2025-03-02-XSD-UB343B-01
/posts/2025-03-19-XSD-UB343B-01
/posts/2025-03-30-XSD-UB343B-01
/posts/2025-04-11-XSD-UB343B-01
/posts/2025-04-26-XSD-UB343B-01
/posts/2025-05-10-XSD-UB343B-01
/posts/2025-05-15-XSD-UB343B-01
/posts/2025-05-18-XSD-UB343B-01
/posts/2025-06-14-XSD-UB343B-02
/posts/2025-07-05-XSD-UB343B-01
/posts/2025-07-11-XSD-UB343B-01
/posts/2025-08-06-XSD-UB343B-01
/posts/2025-08-08-XSD-UB343B-01
/site_libs

Found on 2025-08-28 22:58

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: flipscope.app
Port: 443
URL: https://flipscope.app

First seen 2025-08-28 22:36
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbe20b5ebd
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Altaaf8901/flipscope-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-28 22:36
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: lechefvandato.com
Port: 443
URL: https://lechefvandato.com

First seen 2025-07-22 11:52
Last seen 2025-08-28 16:25
Open for 37 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbec6e7e7d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/LeChefVanDato/lechefvandato-site.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-08-28 16:25
  
  373 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mathmulti.zixlestudios.com
Port: 443
URL: https://mathmulti.zixlestudios.com

First seen 2025-08-27 05:00
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f42b1ea7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/ankitind1/mathmulti.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-27 05:00
  
  308 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rides777.com
Port: 443
URL: https://rides777.com

First seen 2025-08-20 22:38
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7e1c4547
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Riaan0326/Venues777M.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-08-20 22:38
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: gikfreelancers.com
Port: 443
URL: https://gikfreelancers.com

First seen 2025-08-20 14:09
Last seen 2025-08-20 14:09
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652203d96b00
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/FAHAD-ALI-github/ExpertSkills--E-Learning-platfom.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-20 14:09
  
  338 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: pladurypintura.es
Port: 443
URL: https://pladurypintura.es

First seen 2025-07-31 01:02
Last seen 2025-08-20 10:16
Open for 20 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb31fda115
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/HenryDc1/M-GDrywallConstrucciones.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-20 10:16
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: andrewpang.dev
Port: 443
URL: https://andrewpang.dev

First seen 2025-08-18 15:36
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8104bab3
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/4ndrrw/portfolio-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-08-18 15:36
  
  339 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: rahul.xtreamdevs.in
Port: 443
URL: https://rahul.xtreamdevs.in

First seen 2025-08-18 14:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c11c4dc3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:rahul-jerthi/portfolio.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-08-18 14:39
  
  249 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: echosenses.com
Port: 443
URL: https://echosenses.com

First seen 2025-08-16 22:32
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba6727cc5
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/echosenses-com/echosenses-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-16 22:32
  
  315 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: moderndecoplus.com
Port: 443
URL: https://moderndecoplus.com

First seen 2025-08-16 08:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb661e3755
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/mak328/moderndeco.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-16 08:20
  
  334 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: advaitaexport.com
Port: 443
URL: https://advaitaexport.com

First seen 2025-08-02 16:33
Last seen 2025-08-16 05:57
Open for 13 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb24af0376
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/yourusername/your-repo.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-08-16 05:57
  
  228 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: thegreycanvas.co
Port: 443
URL: https://thegreycanvas.co

First seen 2025-08-15 14:08
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb09298498
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/kbabyyy13/thegreycanvas.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-08-15 14:08
  
  229 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: wuwensheng.top
Port: 443
URL: https://wuwensheng.top

First seen 2025-08-13 12:58
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652297980aa4
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/XianPostsandTelecommunications/myself.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-13 12:58
  
  326 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: workystock.com
Port: 443
URL: https://workystock.com

First seen 2025-08-13 07:03

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbba80955a1

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Langerud/WorkyStock.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[branch "deploy/stripe-coupon-feature"]
	remote = origin
	merge = refs/heads/deploy/stripe-coupon-feature

Found on 2025-08-13 07:03

506 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: vpnflazer.com
Port: 443
URL: https://vpnflazer.com

First seen 2025-08-09 04:22
Last seen 2025-08-10 18:47
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb5253d045
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/fpexplanador2/deploy.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-08-10 18:47
  
  244 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: coolclads.com
Port: 443
URL: https://coolclads.com

First seen 2025-07-18 05:17
Last seen 2025-08-05 03:44
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd4bdf12f
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/njugunakennedy/Coolclads.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-05 03:44
  
  306 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 35.157.26.135
Domain: americanalliancetech.com
Port: 443
URL: https://americanalliancetech.com

First seen 2025-08-03 14:48
Last seen 2025-08-03 14:48
- Severity: critical
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0b5807e8
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://rvnthvrm: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@github.com/rvnthvrm/rvnthvrm.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-08-03 14:48
  
  349 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.qujingdaozhong.com
Port: 443
URL: https://www.qujingdaozhong.com

First seen 2025-08-03 06:40
Last seen 2025-08-03 06:40
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb680bf4e9
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[lfs]
	repositoryformatversion = 0
[remote "origin"]
	url = https://github.com/Meliodas0511/-.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-08-03 06:40
  
  335 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: laundrowellgarland.com
Port: 80
URL: http://laundrowellgarland.com

First seen 2025-08-02 21:12
Last seen 2025-08-02 21:12
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229fdd3530
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/mattkoh98/urban-wash-hub.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
```
  Found on 2025-08-02 21:12
  
  379 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: codynex.com
Port: 443
URL: https://codynex.com

First seen 2025-08-01 19:15

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbdadbe15b

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/jdiego0102/codynex-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[user]
	name = jdiegodev
	email = j.diego010297@gmail.com
[branch "ft/dev"]
	remote = origin
	merge = refs/heads/ft/dev
	vscode-merge-base = origin/ft/dev

Found on 2025-08-01 19:15

496 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.spinalsanctuary.com
Port: 443
URL: https://www.spinalsanctuary.com

First seen 2025-07-31 19:57
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb89811874
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/spinalaidforrecovery/safr.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-31 19:57
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: green-fix.uk
Port: 443
URL: https://green-fix.uk

First seen 2025-07-31 17:47
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb7be452f5
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Farjaadrizvi110/GreenFix.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-07-31 17:47
  
  339 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.udhaari.in
Port: 443
URL: https://www.udhaari.in

First seen 2025-07-22 14:57
Last seen 2025-07-30 12:03
Open for 7 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225165923f
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/quasars-tech/udhaari-landing-page.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[pull]
	ff = only
```
  Found on 2025-07-30 12:03
  
  406 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: akhuwatnetworks.site
Port: 443
URL: https://akhuwatnetworks.site

First seen 2025-07-30 05:57
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb68d5381d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Muneeb10/Akhuwat-Networks.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-30 05:57
  
  307 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sanshafastener.com
Port: 443
URL: https://sanshafastener.com

First seen 2025-07-28 07:27
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb3a6e4f38
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/soni434/sansafastener.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-07-28 07:27
  
  336 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: www.tamilvananindustries.com
Port: 443
URL: https://www.tamilvananindustries.com

First seen 2025-07-27 08:46
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb18a39fe0
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/GokulRamesh00/tamilvanan-precision-craft.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-27 08:46
  
  322 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: suzeimmo.com
Port: 443
URL: https://suzeimmo.com

First seen 2025-07-26 16:06
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb27af5944
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	ignorecase = true
[remote "origin"]
	url = https://github.com/kurtisv/frontend.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-26 16:06
  
  280 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mahavirmsme.com
Port: 443
URL: https://mahavirmsme.com

First seen 2025-07-24 16:55
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb635986c3
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/Mahavirmsme2025/mahavirmsme-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-07-24 16:55
  
  259 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: sabrinnecalone.com.br
Port: 443
URL: https://sabrinnecalone.com.br

First seen 2025-07-22 17:22
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbd40ef52e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/gabrielmbergamo/sabrinne.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2025-07-22 17:22
  
  339 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: yourruststore.com
Port: 443
URL: https://yourruststore.com

First seen 2025-07-21 17:36
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb480c384d
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/YOUR_USERNAME/rust-store-automated.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-07-21 17:36
  
  258 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bluesummitmedia.co.uk
Port: 443
URL: https://bluesummitmedia.co.uk

First seen 2025-07-17 14:49
Last seen 2025-07-21 01:11
Open for 3 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229c4aafed
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/bluesummitmedia/bluesummitmedia.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-07-21 01:11
  
  324 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: varshaelectronics.com
Port: 443
URL: https://varshaelectronics.com

First seen 2025-07-17 15:18
Last seen 2025-07-17 15:18
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb887a028e
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/technext/mirko.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-17 15:18
  
  296 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: bzanalyzer.lyarinet.com
Port: 443
URL: https://bzanalyzer.lyarinet.com

First seen 2025-07-17 06:04
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb8dc5444b
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://github.com/lyarinet/bash-script-analyzer.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2025-07-17 06:04
  
  253 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: mmcri.online
Port: 443
URL: https://mmcri.online

First seen 2025-07-16 15:09
Last seen 2025-07-16 16:08

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652213978ce0

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/devharikaushik/vagus2025.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
	vscode-merge-base = origin/main
[user]
	name = devharikaushik
	email = devharikaushik@gmail.com

Found on 2025-07-16 16:08

443 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 35.157.26.135
Domain: productstack.co.in
Port: 443
URL: https://productstack.co.in

First seen 2025-07-16 13:42
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226b73945b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Soumya26-nadgir/personal-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-07-16 13:42
  
  321 Bytes
Create report

Open service 35.157.26.135:80 · auditvault.quantamind.co

2026-01-13 01:20

HTTP/1.1 301 Moved Permanently
Content-Type: text/plain; charset=utf-8
Date: Tue, 13 Jan 2026 01:20:53 GMT
Location: https://auditvault.quantamind.co/
Server: Netlify
X-Nf-Request-Id: 01KETF21BW8FAHVC23W88Z4T47
Content-Length: 48
Connection: close


Redirecting to https://auditvault.quantamind.co/

Found 21 hours ago by HttpPlugin