ScanMalware.com

Security Scan Report: dashboard.ngrok.com

Redirected to: https://dashboard.ngrok.com/login

Site favicon
Submitted: Nov 24, 2025, 11:39:34 AMCompleted: Nov 24, 2025, 11:42:06 AMpubliccompleted
Loading additional data...

Summary

This website contacted 82 IPs in 2 countries across 17 domains to perform 135 HTTP transactions. The main domain is dashboard.ngrok.com and was registered NaN years ago.

Submitted URL: https://dashboard.ngrok.com/

Effective URL: https://dashboard.ngrok.com/loginRedirected

The Cisco Umbrella rank of the primary domain is #148,189 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing site harvesting credentials for ngrok

Risk Factors
Malicious Indicators of Compromise on primary domain
Credential‑harvesting login form on a suspicious domain
Low ranking for brand impersonation
Suspicious privacy notice with typographical errors
Port‑proxy activity flagged as suspicious
Domain age information unavailable

Details

Page Title

ngrok — Log in

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(63%)

Domain Information

You're looking at domain 'dashboard.ngrok.com' on the commercial generic top-level domain (.com) and includes subdomain 'dashboard'. Its registrable label 'ngrok' stretches across 5 characters containing 1 vowel alongside four consonants. Splitting it apart reveals two words: ng, rok. Expect 2.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://dashboard.ngrok.com/

Page Load Overview

2.30s
Total Load Time
135
HTTP Requests
17
Domains
1.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:2,299 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software63% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
63%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7435.159.187.188Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
10146.75.121.91Frankfurt am Main, Hesse, Germany
AS54113FASTLY
83.233.158.26Ashburn, Virginia, United States
AS14618AMAZON-AES
818.245.46.112United States
AS16509AMAZON-02
83.174.46.36United States
AS16509AMAZON-02
4142.250.186.67United States
AS15169GOOGLE
354.187.159.182Boardman, Oregon, United States
AS16509AMAZON-02
3142.250.185.136United States
AS15169GOOGLE
2146.75.120.176Frankfurt am Main, Hesse, Germany
AS54113FASTLY
2216.239.34.36United States
AS15169GOOGLE
13582--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14424A4F86C90167FB5B7856B7399D21DF369905B9F1CE91530C230DA4798BE2C8223E2

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:ZGwebx/c64Jysq7vsVQQNlFtYE1YDU2qd9Uz5:ZTeyQQPNaQA

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:221764:bAGchas1ACgWQYAhGeEWTGGoFOYAQQ2wFQAE3AFygvRxgyM4cYkPIgs4IVVBAUmSEIJtEOiSOFEDKktZaQIwJIIAwTTQOZBA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:003c3c3c3c3c3800
Perceptual Hash:cf927433644cb333
Difference Hash:067169717971610e
Wavelet Hash:3c3c3c3c3c3c3c1c
Color Hash:#962dd2

Other Hashes

Crop Resistant:067169717971610e

Scan History

Scan history not available

Unable to load historical scan data