Is github.io a scam? Score 36/100

By /

Website safety scanner

Is github.io legit?

Be careful with this website

Our scanner found several signals that may make github.io risky for visitors. Avoid payments, logins or downloads unless you can verify the site independently.

Our score 36/100

High caution

Threat lists Match found Warning
SSL Valid Passed
Domain age 4824 days Established
Email protection Incomplete Check
Popularity #125 Ranked

Our verdict

Our automated scanner gives github.io a trust score of 36/100. Stronger trust signals include No malicious detections reported, Certificate valid with 42 days remaining, 4824 days old. The main warnings or unknowns are openphish, Abuse confidence score 39/100, No mail exchange records found.

This is an automated trust analysis. It checks technical signals, public threat feeds, domain records and website configuration. It cannot prove intent, but it helps you decide whether extra caution is needed before you log in, pay, download files or share personal information.

Recommended action Do not enter payment details, passwords or personal information unless you can verify the website through an official source.

Website preview

Screenshot preview of github.io

Preview image generated from the scanned homepage. Visual appearance can change after the scan.

What to watch for

  • Phishing or malware list match -40 openphish
  • AbuseIPDB reports found -10 Abuse confidence score 39/100
  • No MX records -3 No mail exchange records found
  • Missing DMARC record -4 No DMARC policy found
  • Redirects to another domain -10 https://pages.github.com/
  • Limited security headers -4 Missing: content-security-policy, strict-transport-security, x-content-type-options, x-frame-options

What this means for you

  • Browsing the homepage: review normally, but watch for browser warnings or forced downloads.
  • Entering passwords: only continue if the domain clearly matches the official website.
  • Payments: verify company details, refund policy and payment method first.
  • Downloads: avoid files when threat intelligence or reputation warnings are present.

Is github.io safe to use?

github.io currently has a low trust profile in our automated analysis. The score combines blacklist results, SSL status, DNS configuration, WHOIS data, redirect behavior, security headers, domain heuristics, IP reputation and popularity signals.

A high score does not guarantee that a website is legitimate, and a low score does not prove criminal intent. The purpose of this report is to show the technical evidence so visitors can make a more informed decision.

Brand and domain checks

Brand-like pattern
No common pattern detected
Redirects elsewhere
Yes
Final URL
https://pages.github.com/
Punycode detected
No

Contact and company signals

About page
Yes
Contact page
Yes
Privacy policy
Yes
Terms page
Yes
Refund policy
No

Payment risk indicators

Risk terms found
No data available
External links
28
Recommendation
Do not enter payment details, passwords or personal information unless you can verify the website through an official source.

Trust signals found

  • VirusTotal clean result No malicious detections reported
  • Valid SSL certificate Certificate valid with 42 days remaining
  • Established domain age 4824 days old
  • SPF record present SPF policy found
  • Company information pages found about page, contact page, privacy policy, terms page
  • Recognized website popularity Tranco rank #125

Website popularity

90 Popularity score
05-24
Rank source
Tranco
Tranco rank
125
Estimated visitors
5M-50M monthly visits

Additional threat intelligence

AlienVault OTX pulses
0
OTX reputation
No data available
AbuseIPDB score
39/100
AbuseIPDB reports
18
IP owner / ISP
GitHub, Inc.

VirusTotal details

Malicious detections
0
Suspicious detections
0
Harmless engines
63
Undetected engines
28
Reputation
67
Community votes
harmless: 14, malicious: 1
Categories
alphaMountain.ai: Information Technology, Phishing (alphaMountain.ai), BitDefender: computersandsoftware, Xcitium Verdict Cloud: software-hardware, Sophos: phishing and fraud, Forcepoint ThreatSeeker: information technology

No VirusTotal malicious or suspicious engine-level detections are available for this scan.

View all stored VirusTotal output

How this compares to trusted websites

  • Trusted websites usually use a valid SSL certificate and keep it renewed.
  • They often have clear contact details, company information, privacy terms and refund policies.
  • They rarely appear on malware, phishing or abuse intelligence lists.
  • They use stable DNS, email authentication and predictable redirects.

Sources checked

VirusTotal Google Safe Browsing URLHaus OpenPhish PhishTank AlienVault OTX AbuseIPDB WHOIS DNS SSL Security headers Tranco

Technical safety checks

These checks explain the underlying signals behind the verdict. They are useful when you want to know whether a website has a stable domain history, a valid SSL certificate, normal DNS records and expected security configuration.

Domain information

Domain
github.io
Registrar
MarkMonitor, Inc.
Domain age
4824 days
Created
2013-03-08T19:12:48+00:00
WHOIS privacy
Yes

SSL details

Valid SSL
Yes
Issuer
Let's Encrypt
Subject
*.github.io
Expires
2026-07-05T23:32:35+00:00
Days remaining
42

HTTP checks

HTTPS available
Yes
HTTP available
No
Status code
200
Final URL
https://pages.github.com/
Page title
GitHub Pages | Websites for you and your projects, hosted directly from your GitHub repository. Just edit, push, and your changes are live.

DNS records

A records
185.199.108.153, 185.199.111.153, 185.199.110.153, 185.199.109.153
MX records
No data available
Nameservers
ns-1339.awsdns-39.org, dns4.p05.nsone.net, ns-1622.awsdns-10.co.uk, ns-692.awsdns-22.net, dns1.p05.nsone.net, ns-393.awsdns-49.com, dns3.p05.nsone.net, dns2.p05.nsone.net
SPF record
v=spf1 a -all
DMARC record

Security headers

Present
No data available
Missing
content-security-policy, strict-transport-security, x-content-type-options, x-frame-options, referrer-policy, permissions-policy

Blacklist overview

VirusTotal malicious
0
Google Safe Browsing unsafe
No
URLHaus listed
No data available
OpenPhish listed
Yes
PhishTank listed
No data available

Technical analysis

IP address
185.199.108.153
ASN / organization
AS54113 Fastly, Inc.
Hosting provider
AS54113 Fastly, Inc.
Location
San Francisco, California, US
High entropy score
2.585
Suspicious TLD
No
Suspicious keywords
No data available

Redirect chain

  1. https://github.io/

github.io safety FAQ

Is github.io a scam?

This automated report cannot make a legal accusation. It gives github.io a trust score of 36/100 based on the security and reputation signals available at scan time. Review the warnings, threat detections and technical checks above before using the site.

Why did github.io get this trust score?

The score is weighted from multiple signals, including threat-list matches, domain age, SSL status, redirects, DNS records, SPF/DMARC, security headers, suspicious keywords, IP reputation and popularity data.

Should I enter personal or payment information?

Do not enter payment details, passwords or personal information unless you can verify the website through an official source.

How often is this analysis updated?

The report is generated from stored scan data. When the automation script refreshes the domain, the page updates the score, threat intelligence, technical checks and popularity history.

Scan timestamp: 2026-05-24T17:00:36+00:00

Related Posts

Scroll to Top