Website safety scanner
Is netlify.app legit?
Be careful with this website
Our scanner found several signals that may make netlify.app risky for visitors. Avoid payments, logins or downloads unless you can verify the site independently.
High caution
Our verdict
Our automated scanner gives netlify.app a trust score of 21/100. Stronger trust signals include Abuse confidence score 22/100, Certificate valid with 299 days remaining, SPF policy found. The main warnings or unknowns are 1 malicious detections, openphish, WHOIS creation date unavailable.
This is an automated trust analysis. It checks technical signals, public threat feeds, domain records and website configuration. It cannot prove intent, but it helps you decide whether extra caution is needed before you log in, pay, download files or share personal information.
Website preview
Preview image generated from the scanned homepage. Visual appearance can change after the scan.
What to watch for
- VirusTotal malicious detections -17 1 malicious detections
- Phishing or malware list match -40 openphish
- Unknown domain age -5 WHOIS creation date unavailable
- No MX records -3 No mail exchange records found
- Redirects to another domain -10 https://www.netlify.com/
- Limited security headers -4 Missing: content-security-policy, x-content-type-options, x-frame-options, referrer-policy
What this means for you
- Browsing the homepage: review normally, but watch for browser warnings or forced downloads.
- Entering passwords: only continue if the domain clearly matches the official website.
- Payments: verify company details, refund policy and payment method first.
- Downloads: avoid files when threat intelligence or reputation warnings are present.
Is netlify.app safe to use?
netlify.app currently has a low trust profile in our automated analysis. The score combines blacklist results, SSL status, DNS configuration, WHOIS data, redirect behavior, security headers, domain heuristics, IP reputation and popularity signals.
A high score does not guarantee that a website is legitimate, and a low score does not prove criminal intent. The purpose of this report is to show the technical evidence so visitors can make a more informed decision.
Brand and domain checks
- Brand-like pattern
- No common pattern detected
- Redirects elsewhere
- Yes
- Final URL
- https://www.netlify.com/
- Punycode detected
- No
Contact and company signals
- About page
- Yes
- Contact page
- Yes
- Privacy policy
- Yes
- Terms page
- No
- Refund policy
- No
Payment risk indicators
- Risk terms found
- No data available
- External links
- 38
- Recommendation
- Do not enter payment details, passwords or personal information unless you can verify the website through an official source.
Trust signals found
- AbuseIPDB clean IP score Abuse confidence score 22/100
- Valid SSL certificate Certificate valid with 299 days remaining
- SPF record present SPF policy found
- DMARC record present DMARC policy found
- Company information pages found about page, contact page, privacy policy
- Recognized website popularity Tranco rank #1290
Website popularity
- Rank source
- Tranco
- Tranco rank
- 1290
- Estimated visitors
- 500K-5M monthly visits
Additional threat intelligence
- AlienVault OTX pulses
- 0
- OTX reputation
- No data available
- AbuseIPDB score
- 22/100
- AbuseIPDB reports
- 10
- IP owner / ISP
- A100 ROW GmbH
VirusTotal details
- Malicious detections
- 1
- Suspicious detections
- 0
- Harmless engines
- 61
- Undetected engines
- 29
- Reputation
- -223
- Community votes
- harmless: 0, malicious: 18
- Categories
- Sophos: information technology, Forcepoint ThreatSeeker: information technology
Detected threats by engine
| Engine | Category | Result | Method |
|---|---|---|---|
| Chong Lua Dao | malicious | malicious | blacklist |
View all stored VirusTotal output
How this compares to trusted websites
- Trusted websites usually use a valid SSL certificate and keep it renewed.
- They often have clear contact details, company information, privacy terms and refund policies.
- They rarely appear on malware, phishing or abuse intelligence lists.
- They use stable DNS, email authentication and predictable redirects.
Sources checked
Technical safety checks
These checks explain the underlying signals behind the verdict. They are useful when you want to know whether a website has a stable domain history, a valid SSL certificate, normal DNS records and expected security configuration.
Domain information
- Domain
- netlify.app
- Registrar
- Domain age
- No data available
- Created
- WHOIS privacy
- No
SSL details
- Valid SSL
- Yes
- Issuer
- DigiCert Inc
- Subject
- *.netlify.app
- Expires
- 2027-03-19T23:59:59+00:00
- Days remaining
- 299
HTTP checks
- HTTPS available
- Yes
- HTTP available
- No
- Status code
- 200
- Final URL
- https://www.netlify.com/
- Page title
- Push your ideas to the web | Netlify
DNS records
- A records
- 35.157.26.135, 63.176.8.218
- MX records
- No data available
- Nameservers
- dns4.p01.nsone.net, dns3.p01.nsone.net, dns2.p01.nsone.net, dns1.p01.nsone.net
- SPF record
- v=spf1 -all
- DMARC record
- v=DMARC1; p=reject; rua=mailto:fexahwip@ag.dmarcian.com; ruf=mailto:fexahwip@fr.dmarcian.com; fo=1
Security headers
- Present
- strict-transport-security, permissions-policy
- Missing
- content-security-policy, x-content-type-options, x-frame-options, referrer-policy
Blacklist overview
- VirusTotal malicious
- 1
- Google Safe Browsing unsafe
- No
- URLHaus listed
- No data available
- OpenPhish listed
- Yes
- PhishTank listed
- No data available
Technical analysis
- IP address
- 35.157.26.135
- ASN / organization
- AS16509 Amazon.com, Inc.
- Hosting provider
- AS16509 Amazon.com, Inc.
- Location
- Frankfurt am Main, Hesse, DE
- High entropy score
- 2.807
- Suspicious TLD
- No
- Suspicious keywords
- No data available
Redirect chain
- https://netlify.app/
netlify.app safety FAQ
Is netlify.app a scam?
This automated report cannot make a legal accusation. It gives netlify.app a trust score of 21/100 based on the security and reputation signals available at scan time. Review the warnings, threat detections and technical checks above before using the site.
Why did netlify.app get this trust score?
The score is weighted from multiple signals, including threat-list matches, domain age, SSL status, redirects, DNS records, SPF/DMARC, security headers, suspicious keywords, IP reputation and popularity data.
Should I enter personal or payment information?
Do not enter payment details, passwords or personal information unless you can verify the website through an official source.
How often is this analysis updated?
The report is generated from stored scan data. When the automation script refreshes the domain, the page updates the score, threat intelligence, technical checks and popularity history.