A small tool to view real-world ActivityPub objects as JSON! Enter a URL
or username from Mastodon or a similar service below, and we'll send a
request with
the right
Accept
header
to the server to view the underlying object.
{
"@context": [
"https://www.w3.org/ns/activitystreams",
{
"ostatus": "http://ostatus.org#",
"atomUri": "ostatus:atomUri",
"inReplyToAtomUri": "ostatus:inReplyToAtomUri",
"conversation": "ostatus:conversation",
"sensitive": "as:sensitive",
"toot": "http://joinmastodon.org/ns#",
"votersCount": "toot:votersCount",
"litepub": "http://litepub.social/ns#",
"directMessage": "litepub:directMessage",
"blurhash": "toot:blurhash",
"focalPoint": {
"@container": "@list",
"@id": "toot:focalPoint"
},
"Hashtag": "as:Hashtag"
}
],
"id": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871",
"type": "Note",
"summary": null,
"inReplyTo": "https://mastodon.online/users/vwbusguy/statuses/113879739504018598",
"published": "2025-01-23T22:53:31Z",
"url": "https://infosec.exchange/@ErikvanStraten/113880125384919871",
"attributedTo": "https://infosec.exchange/users/ErikvanStraten",
"to": [
"https://www.w3.org/ns/activitystreams#Public"
],
"cc": [
"https://infosec.exchange/users/ErikvanStraten/followers",
"https://mastodon.online/users/vwbusguy"
],
"sensitive": false,
"atomUri": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871",
"inReplyToAtomUri": "https://mastodon.online/users/vwbusguy/statuses/113879739504018598",
"conversation": "tag:mastodon.online,2025-01-23:objectId=450449253:objectType=Conversation",
"content": "<p><span class=\"h-card\" translate=\"no\"><a href=\"https://mastodon.online/@vwbusguy\" class=\"u-url mention\">@<span>vwbusguy</span></a></span> : non-ACME certs suck big time.</p><p>However, now the internet has turned into a malicious phishing mess.</p><p>People can no longer determine who is responsible for a website, and nobody cares.</p><p>Google hosted fake websites (using ACME certs from Let's Encrypt) on their cloud servers called:<br />• cancel-google[.]com<br />• adsupport-google[.]com<br />• helpdesk-google[.]com</p><p>See (Dutch) <a href=\"https://infosec.exchange/@ErikvanStraten/113837934294209517\" target=\"_blank\" rel=\"nofollow noopener\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">infosec.exchange/@ErikvanStrat</span><span class=\"invisible\">en/113837934294209517</span></a>.</p><p>Google also doesn't give a fsck about HSTS, see <a href=\"https://infosec.exchange/@ErikvanStraten/113856108585517842\" target=\"_blank\" rel=\"nofollow noopener\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">infosec.exchange/@ErikvanStrat</span><span class=\"invisible\">en/113856108585517842</span></a>.</p><p>Worse, last year a phishing site with a domain name containing "google" was proxied by Cloudflare - and had a "GOOGLE TRUST SERVICES" DV certificate.</p><p>Did I mention that browsers suck and that Big Tech, making Big Money, is knowingly complicit to cybercrime?</p><p>And did I mention that certificates were not invented to please admins?</p><p><a href=\"https://infosec.exchange/tags/Phishing\" class=\"mention hashtag\" rel=\"tag\">#<span>Phishing</span></a> <a href=\"https://infosec.exchange/tags/DV\" class=\"mention hashtag\" rel=\"tag\">#<span>DV</span></a> <a href=\"https://infosec.exchange/tags/GoogleIsEvil\" class=\"mention hashtag\" rel=\"tag\">#<span>GoogleIsEvil</span></a> <a href=\"https://infosec.exchange/tags/BigTechIsEvil\" class=\"mention hashtag\" rel=\"tag\">#<span>BigTechIsEvil</span></a> <a href=\"https://infosec.exchange/tags/GTS\" class=\"mention hashtag\" rel=\"tag\">#<span>GTS</span></a> <a href=\"https://infosec.exchange/tags/BrowsersSuck\" class=\"mention hashtag\" rel=\"tag\">#<span>BrowsersSuck</span></a> <a href=\"https://infosec.exchange/tags/AnonymousWebsites\" class=\"mention hashtag\" rel=\"tag\">#<span>AnonymousWebsites</span></a></p>",
"contentMap": {
"en": "<p><span class=\"h-card\" translate=\"no\"><a href=\"https://mastodon.online/@vwbusguy\" class=\"u-url mention\">@<span>vwbusguy</span></a></span> : non-ACME certs suck big time.</p><p>However, now the internet has turned into a malicious phishing mess.</p><p>People can no longer determine who is responsible for a website, and nobody cares.</p><p>Google hosted fake websites (using ACME certs from Let's Encrypt) on their cloud servers called:<br />• cancel-google[.]com<br />• adsupport-google[.]com<br />• helpdesk-google[.]com</p><p>See (Dutch) <a href=\"https://infosec.exchange/@ErikvanStraten/113837934294209517\" target=\"_blank\" rel=\"nofollow noopener\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">infosec.exchange/@ErikvanStrat</span><span class=\"invisible\">en/113837934294209517</span></a>.</p><p>Google also doesn't give a fsck about HSTS, see <a href=\"https://infosec.exchange/@ErikvanStraten/113856108585517842\" target=\"_blank\" rel=\"nofollow noopener\" translate=\"no\"><span class=\"invisible\">https://</span><span class=\"ellipsis\">infosec.exchange/@ErikvanStrat</span><span class=\"invisible\">en/113856108585517842</span></a>.</p><p>Worse, last year a phishing site with a domain name containing "google" was proxied by Cloudflare - and had a "GOOGLE TRUST SERVICES" DV certificate.</p><p>Did I mention that browsers suck and that Big Tech, making Big Money, is knowingly complicit to cybercrime?</p><p>And did I mention that certificates were not invented to please admins?</p><p><a href=\"https://infosec.exchange/tags/Phishing\" class=\"mention hashtag\" rel=\"tag\">#<span>Phishing</span></a> <a href=\"https://infosec.exchange/tags/DV\" class=\"mention hashtag\" rel=\"tag\">#<span>DV</span></a> <a href=\"https://infosec.exchange/tags/GoogleIsEvil\" class=\"mention hashtag\" rel=\"tag\">#<span>GoogleIsEvil</span></a> <a href=\"https://infosec.exchange/tags/BigTechIsEvil\" class=\"mention hashtag\" rel=\"tag\">#<span>BigTechIsEvil</span></a> <a href=\"https://infosec.exchange/tags/GTS\" class=\"mention hashtag\" rel=\"tag\">#<span>GTS</span></a> <a href=\"https://infosec.exchange/tags/BrowsersSuck\" class=\"mention hashtag\" rel=\"tag\">#<span>BrowsersSuck</span></a> <a href=\"https://infosec.exchange/tags/AnonymousWebsites\" class=\"mention hashtag\" rel=\"tag\">#<span>AnonymousWebsites</span></a></p>"
},
"attachment": [
{
"type": "Document",
"mediaType": "image/png",
"url": "https://media.infosec.exchange/infosec.exchange/media_attachments/files/113/880/078/095/828/947/original/163437be2a37d794.png",
"name": "Screenshot (smartphone, landscape view) of the top of https://www.virustotal.com/gui/ip-address/185.232.205.130/relations showing a number of phishing site domain names:\n\ngamdomrewards[.]com\n12518234-coinbase[.]com\n127253-ledger[.]com\n128594-gemini[.]com\n129645-coinbase[.]com\n143516-coinbase[.]com\n14522564-coinbase[.]com\n147253-exodus[.]com\n148942-coinbase[.]com\n149024-google[.]com\n\nEach of them resolved to 185.232.205[.]130 yesterday and each of them is detected by at least 2 (of 94) virusscanners, and 15/94 at most. The last one, 149024-google[.]com is detected by 7/94 scanners.\n\n",
"blurhash": "UT6u9,ayaxoftWj[jsfRtVj[j[ayo%j[j[ay",
"focalPoint": [
0.46,
-0.89
],
"width": 1750,
"height": 1185
}
],
"tag": [
{
"type": "Mention",
"href": "https://mastodon.online/users/vwbusguy",
"name": "@vwbusguy@mastodon.online"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/phishing",
"name": "#phishing"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/dv",
"name": "#dv"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/googleisevil",
"name": "#googleisevil"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/bigtechisevil",
"name": "#bigtechisevil"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/gts",
"name": "#gts"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/browserssuck",
"name": "#browserssuck"
},
{
"type": "Hashtag",
"href": "https://infosec.exchange/tags/anonymouswebsites",
"name": "#anonymouswebsites"
}
],
"replies": {
"id": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871/replies",
"type": "Collection",
"first": {
"type": "CollectionPage",
"next": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871/replies?only_other_accounts=true&page=true",
"partOf": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871/replies",
"items": []
}
},
"likes": {
"id": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871/likes",
"type": "Collection",
"totalItems": 0
},
"shares": {
"id": "https://infosec.exchange/users/ErikvanStraten/statuses/113880125384919871/shares",
"type": "Collection",
"totalItems": 0
}
}