Help
RSS
API
Feed
Maltego
Contact
Domain > api2.zipay.io
×
Welcome!
Right click nodes and scroll the mouse to navigate the graph.
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2024-02-01
172.67.209.15
(
ClassC
)
2024-10-30
185.81.98.131
(
ClassC
)
Port 80
HTTP/1.1 200 OKDate: Wed, 30 Oct 2024 19:06:38 GMTServer: ApacheExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheVary: Accept-EncodingContent-Type: text/html; charsetUTF-8Set-Cookie: JSESSIONIDcuncugbmblcv9je5lq3piljttk; path/; secure; HttpOnlySet-Cookie: _csrfab8c82e96199bd732e60e35c477f0ab3161ca2b9302c2b723887c6b4c0a163b3a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22ObYisf8VcHvreAsgCWzZaAzpyFSPN-z_%22%3B%7D; path/; HttpOnly; SameSiteLaxTransfer-Encoding: chunked !DOCTYPE html>html langen-US>head> meta charsetUTF-8> meta http-equivX-UA-Compatible contentIEedge> meta nameviewport contentwidthdevice-width, initial-scale1> title>Document/title> meta namecsrf-param content_csrf>meta namecsrf-token content-Gw97pIOHMYg-EnCTaFVu7lHrsU6fjH-FeqQGoiPr623DmSH4WgkkEOwP7Ao4Cbc-hDUn1s_S45srMNKxqLV8g>link href/assets/a39768a1/css/bootstrap.css relstylesheet>link href/css/site.css relstylesheet> link relstylesheet href/css/bootstrap.css?2> style> body{ color:#14213D !important;; background: #E5E5E5; } /style>/head>body>div classwrap> nav idw0 classnavbar-default navbar-fixed-top navbar-inverse navbar stylebackground:#14213D !important>div classcontainer>div classnavbar-header>button typebutton classnavbar-toggle data-togglecollapse data-target#w0-collapse>span classsr-only>Toggle navigation/span>span classicon-bar>/span>span classicon-bar>/span>span classicon-bar>/span>/button>a classnavbar-brand href/>API Documentation/a>/div>div idw0-collapse classcollapse navbar-collapse>ul idw1 classnavbar-nav navbar-right nav>li>a href/en>EN/a>/li>li>a href/fa>FA/a>/li>/ul>/div>/div>/nav> br>br>br> div classcontainer stylebackground: #FFFFFF;border-radius: 15px;box-shadow: 0px 0px 5px #c6c6c6;> ul classbreadcrumb>li>a href/>Home/a>/li>li>a href/en>Document/a>/li>/ul>div classsite-about> p classactive>blockquote> a href/en>Get Started/a> br> a href/en/document-invoice>Invoice/a> br> a href/en/document-invoice-flow>Invoice Flow/a> br> a href/en/document-balance>Balance/a> br> a href/en/document-rate>Rate/a> br> a href/en/document-exchange>Exchange/a> br> a href/en/document-transfer>Transfer/a> br> /blockquote>/p> h3>Getting Started/h3> p> First, you will need an code>api_key/code> and code>secret_key/code>. These API keys are located in your account. You require it when you want to use the API key to interact with the service. br> Also, youll need it to restrict the API access to your secure IP addresses. If you do not know your servers IP address, you can run this command on your server. br> pre>curl https://api.zipay.io/api//pre> /p> br> h3>API Key Setup/h3> p> First, get an API key and secret key from the panel and choose the methods that you need. br> strong>Never share your API key/secret key with ANYONE./strong> br> API key and secret key will be something like this: br> pre>API Key: 4f3c12fa0a1d1ac8b026298b980f16b2SECRET KEY: f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6/pre> For each request you must send two params in header, one of this is code>api_key/code> and another is code>api_sign/code> you must create b>api_sign/b> by b>hmac_hash sha256/b> on params that you will be sent! br> b>for example:/b> you want to send code>par1value1/code> and code>par2value2/code> to API br> at the first you must create code>api_sign/code> string by code>secret_key/code> . br> br> b>PHP:/b> pre>$post_encode http_build_query( par1>value1, par2>value2 );$s hash_hmac(sha256, $post_encode, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6, true);echo base64_encode($s); //g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk /pre> br> br> b>Node.js:/b> pre>var crypto require(crypto);var hash crypto.createHmac(SHA256, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6).update(par1value1&par2value2).digest(base64); /pre> /p>br> br> b>Python:/b> pre>import hashlibimport hmacimport base64dataToBeSigned bytes(par1value1&par2value2).encode(utf-8)portalKey bytes(f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6).encode(utf-8)signature base64.b64encode(hmac.new(portalKey, dataToBeSigned, digestmodhashlib.sha256).digest()) /pre> br> br> b>Ruby:/b> pre>require opensslrequire base64hash OpenSSL::HMAC.digest(sha256, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6, par1value1&par2value2)token Base64.encode64(hash)token.delete(\n) /pre> br> br> b>Java:/b> pre>import javax.crypto.Mac;import javax.crypto.spec.SecretKeySpec;import org.apache.commons.codec.binary.Base64;public class ApiSecurityExample { public static void main(String args) { String portalKey f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6; String dataToBeSigned par1value1&par2value2; Mac sha256_HMAC Mac.getInstance(HmacSHA256); SecretKeySpec secret_key new SecretKeySpec(portalKey.getBytes(), HmacSHA256); sha256_HMAC.init(secret_key); String hash Base64.encodeBase64String(sha256_HMAC.doFinal(dataToBeSigned.getBytes())); }} /pre> /p> br> h3>Send request/h3> p> At this level, you must have the code>api_key/code> and code>api_sign/code> that you want to send code>par1value1&par2value2/code>. br> Send params via post method to the API and set code>api_key/code> and code>api_sign/code> in the header . br> br> b>CURL/b> pre>curl -H api_key:4f3c12fa0a1d1ac8b026298b980f16b2 -H api_sign:g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk --data par1value1&par2value2 https://api.zipay.io/api/example/pre> br> b>PHP/b> pre>$_headers api_key:4f3c12fa0a1d1ac8b026298b980f16b2, api_sign:g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk,;$ch curl_init();curl_setopt($ch, CURLOPT_HTTPHEADER, $_headers);curl_setopt($ch, CURLOPT_URL, https://api.zipay.io/api/example);curl_setopt($ch, CURLOPT_POSTFIELDS, par1value1&par2value2);curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);$result curl_exec($ch);curl_close($ch);echo $result; /pre> /p> br> h3>Response/h3> p> All responses are in JSON format. br> br> b>Success Sample:/b>br> pre>{ ... success: true, status: 200} /pre> The success will be true if everything is fine and the status is the same as the HTTP status code. br> br> b>Failed Sample:/b>br> pre>{ errors: { auth: INVALID_API_SIGN }, success: false, status: 403} /pre> /p> hr> h3>Random/h3> code>POST https://api.zipay.io/api/random/code> p> table classtable> tr> td>b>Name/b>/td> td>b>Type/b>/td> td>b>Mandatory/b>/td> td>b>Description/b>/td> /tr> tr> td>min/td> td>integer/td> td>yes/td> td>set min of range/td> /tr> tr> td>max/td> td>integer/td> td>yes/td> td>set max of range/td> /tr> /table> br>br> b>Response:/b>br> pre>{ trackid: 08B171-F259CB-3E300C-9ABE83, result: 15, success: true, status: 200} /pre> /p> hr>/div> /div>/div>br>script src/assets/efd3968f/jquery.js>/script>script src/assets/2ef3724a/yii.js>/script>script src/assets/a39768a1/js/bootstrap.js>/script>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Wed, 30 Oct 2024 19:06:39 GMTServer: ApacheExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheVary: Accept-EncodingContent-Type: text/html; charsetUTF-8Set-Cookie: JSESSIONID5040gjhqpig9al9aul29gmauhb; path/; secure; HttpOnlySet-Cookie: _csrff2ebd3aef1031e05ebeff648ddc8b0ba1072c31347c9524fb69e670a52a1b94da%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22KcUr-hKxIICNfDf-2gpsz6LwdsGPvKDM%22%3B%7D; path/; HttpOnly; SameSiteLaxTransfer-Encoding: chunked !DOCTYPE html>html langen-US>head> meta charsetUTF-8> meta http-equivX-UA-Compatible contentIEedge> meta nameviewport contentwidthdevice-width, initial-scale1> title>Document/title> meta namecsrf-param content_csrf>meta namecsrf-token contentaQ3xlbdHpRBe6SV6cH_rIoHaYc4Xhe7mNVtOy0kqqLsibqTnmi_uaBegZjQWO40Ps70RvW2zopFRKAmbP2Hs9g>link href/assets/a39768a1/css/bootstrap.css relstylesheet>link href/css/site.css relstylesheet> link relstylesheet href/css/bootstrap.css?2> style> body{ color:#14213D !important;; background: #E5E5E5; } /style>/head>body>div classwrap> nav idw0 classnavbar-default navbar-fixed-top navbar-inverse navbar stylebackground:#14213D !important>div classcontainer>div classnavbar-header>button typebutton classnavbar-toggle data-togglecollapse data-target#w0-collapse>span classsr-only>Toggle navigation/span>span classicon-bar>/span>span classicon-bar>/span>span classicon-bar>/span>/button>a classnavbar-brand href/>API Documentation/a>/div>div idw0-collapse classcollapse navbar-collapse>ul idw1 classnavbar-nav navbar-right nav>li>a href/en>EN/a>/li>li>a href/fa>FA/a>/li>/ul>/div>/div>/nav> br>br>br> div classcontainer stylebackground: #FFFFFF;border-radius: 15px;box-shadow: 0px 0px 5px #c6c6c6;> ul classbreadcrumb>li>a href/>Home/a>/li>li>a href/en>Document/a>/li>/ul>div classsite-about> p classactive>blockquote> a href/en>Get Started/a> br> a href/en/document-invoice>Invoice/a> br> a href/en/document-invoice-flow>Invoice Flow/a> br> a href/en/document-balance>Balance/a> br> a href/en/document-rate>Rate/a> br> a href/en/document-exchange>Exchange/a> br> a href/en/document-transfer>Transfer/a> br> /blockquote>/p> h3>Getting Started/h3> p> First, you will need an code>api_key/code> and code>secret_key/code>. These API keys are located in your account. You require it when you want to use the API key to interact with the service. br> Also, youll need it to restrict the API access to your secure IP addresses. If you do not know your servers IP address, you can run this command on your server. br> pre>curl https://api.zipay.io/api//pre> /p> br> h3>API Key Setup/h3> p> First, get an API key and secret key from the panel and choose the methods that you need. br> strong>Never share your API key/secret key with ANYONE./strong> br> API key and secret key will be something like this: br> pre>API Key: 4f3c12fa0a1d1ac8b026298b980f16b2SECRET KEY: f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6/pre> For each request you must send two params in header, one of this is code>api_key/code> and another is code>api_sign/code> you must create b>api_sign/b> by b>hmac_hash sha256/b> on params that you will be sent! br> b>for example:/b> you want to send code>par1value1/code> and code>par2value2/code> to API br> at the first you must create code>api_sign/code> string by code>secret_key/code> . br> br> b>PHP:/b> pre>$post_encode http_build_query( par1>value1, par2>value2 );$s hash_hmac(sha256, $post_encode, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6, true);echo base64_encode($s); //g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk /pre> br> br> b>Node.js:/b> pre>var crypto require(crypto);var hash crypto.createHmac(SHA256, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6).update(par1value1&par2value2).digest(base64); /pre> /p>br> br> b>Python:/b> pre>import hashlibimport hmacimport base64dataToBeSigned bytes(par1value1&par2value2).encode(utf-8)portalKey bytes(f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6).encode(utf-8)signature base64.b64encode(hmac.new(portalKey, dataToBeSigned, digestmodhashlib.sha256).digest()) /pre> br> br> b>Ruby:/b> pre>require opensslrequire base64hash OpenSSL::HMAC.digest(sha256, f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6, par1value1&par2value2)token Base64.encode64(hash)token.delete(\n) /pre> br> br> b>Java:/b> pre>import javax.crypto.Mac;import javax.crypto.spec.SecretKeySpec;import org.apache.commons.codec.binary.Base64;public class ApiSecurityExample { public static void main(String args) { String portalKey f7d36fd7f60ab0bac12051e0c3240508585dba741e126669bfbc06e002b9df6ac4e457b6; String dataToBeSigned par1value1&par2value2; Mac sha256_HMAC Mac.getInstance(HmacSHA256); SecretKeySpec secret_key new SecretKeySpec(portalKey.getBytes(), HmacSHA256); sha256_HMAC.init(secret_key); String hash Base64.encodeBase64String(sha256_HMAC.doFinal(dataToBeSigned.getBytes())); }} /pre> /p> br> h3>Send request/h3> p> At this level, you must have the code>api_key/code> and code>api_sign/code> that you want to send code>par1value1&par2value2/code>. br> Send params via post method to the API and set code>api_key/code> and code>api_sign/code> in the header . br> br> b>CURL/b> pre>curl -H api_key:4f3c12fa0a1d1ac8b026298b980f16b2 -H api_sign:g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk --data par1value1&par2value2 https://api.zipay.io/api/example/pre> br> b>PHP/b> pre>$_headers api_key:4f3c12fa0a1d1ac8b026298b980f16b2, api_sign:g1seBV5gkv7n4EjIdzMjl+ntJ256kvIe2kulu2SfTPk,;$ch curl_init();curl_setopt($ch, CURLOPT_HTTPHEADER, $_headers);curl_setopt($ch, CURLOPT_URL, https://api.zipay.io/api/example);curl_setopt($ch, CURLOPT_POSTFIELDS, par1value1&par2value2);curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);$result curl_exec($ch);curl_close($ch);echo $result; /pre> /p> br> h3>Response/h3> p> All responses are in JSON format. br> br> b>Success Sample:/b>br> pre>{ ... success: true, status: 200} /pre> The success will be true if everything is fine and the status is the same as the HTTP status code. br> br> b>Failed Sample:/b>br> pre>{ errors: { auth: INVALID_API_SIGN }, success: false, status: 403} /pre> /p> hr> h3>Random/h3> code>POST https://api.zipay.io/api/random/code> p> table classtable> tr> td>b>Name/b>/td> td>b>Type/b>/td> td>b>Mandatory/b>/td> td>b>Description/b>/td> /tr> tr> td>min/td> td>integer/td> td>yes/td> td>set min of range/td> /tr> tr> td>max/td> td>integer/td> td>yes/td> td>set max of range/td> /tr> /table> br>br> b>Response:/b>br> pre>{ trackid: 08B171-F259CB-3E300C-9ABE83, result: 15, success: true, status: 200} /pre> /p> hr>/div> /div>/div>br>script src/assets/efd3968f/jquery.js>/script>script src/assets/2ef3724a/yii.js>/script>script src/assets/a39768a1/js/bootstrap.js>/script>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]