ScanMalware.com

Security Scan Report: entro.security

Site favicon
Submitted: Dec 3, 2025, 3:55:38 PMCompleted: Dec 3, 2025, 3:57:27 PMpubliccompleted
Loading additional data...

Summary

This website contacted 192 IPs in 4 countries across 43 domains to perform 139 HTTP transactions. The main domain is entro.security and was registered NaN years ago.

Submitted URL: https://entro.security/blog/best-practices-for-building-an-incident-response-plan/

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

No security concerns detected; the site appears legitimate.

Safety Factors
Physical address visible on the site
Established domain age (>2 years)
Standard newsletter/email capture forms only
Content matches the site’s purpose (cybersecurity blog)
Domain age information unavailable

Details

Page Title

Building an Incident Response Plan, Step by Step | Entro

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(48%)

Domain Information

The domain 'entro.security' uses the .security top-level domain and has no subdomain. The registrable portion 'entro' spans 5 characters split between two vowels and three consonants. Word splitting yields two words: entr, o. Expect 2.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://entro.security/blog/best-practices-for-building-an-incident-response-plan/

Page Load Overview

1.43s
Total Load Time
139
HTTP Requests
43
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:16,030 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software48% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
48%
news/blog
35%
corporate business
26%

Detected Features

Articles
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
51162.159.137.54United States
AS13335CLOUDFLARENET
10104.19.175.188United States
AS13335CLOUDFLARENET
6142.250.184.200United States
AS15169GOOGLE
6104.17.91.187United States
AS13335CLOUDFLARENET
6104.18.224.114United States
AS13335CLOUDFLARENET
652.242.103.142Boydton, Virginia, United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
5150.171.22.12United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
3104.16.117.43United States
AS13335CLOUDFLARENET
357.144.244.1Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
3184.24.77.26Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
139192--

Detected Technologies4

Cloudflare Bot Management
55%
HTTP/3
40%
HSTS
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10EB4F8A03D578039312F018F9103BA4C7057DDEAD3AA67EAF4B29212F1F9DA137E1659

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:XbDZ9vH9N01BSNIP16G9KQtGvHvJrpBeswdenoZM2ANWYQO+qKuhX3Ry7y9ZAX3E:XvuWT

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:538368:wigVjdwFxAkmHVx6SBx0BjlgAgDhIAQOBD4EoXkxKKLAWEMkWQMQqAagGWgAMBRwAELEhBCShURUaAoZC5gSXjq49FQwYCTy

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data