government

legitimate website

English

AMCV_0600459D5DBAF9400A495E7C%40AdobeOrg

kndctr_0600459D5DBAF9400A495E7C_AdobeOrg_identity

_ga_CSLL4ZEK4L

utag_main

kndctr_0600459D5DBAF9400A495E7C_AdobeOrg_cluster

CONSENTMGR

ak_bmsc

cms_fpid

Domain 'www.cms.gov' uses the United States government-restricted top-level domain (.gov); it also runs on subdomain 'www'. The core label 'cms' covers 3 characters holding 0 vowels versus 3 consonants. Breaking it apart gives one word: cms. No strong language cues emerged from the frequency lists.

keys

email

email-footer-submit

html/2f/5b/2f5bdf9d-01cd-439d-a3c8-fa89401e73eb.html.gz

script-src 'unsafe-eval' 'self' 'unsafe-inline' https://www.google.com https://apis.google.com https://ssl.gstatic.com https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://*.youtube.com https://*.google.com https://*.gstatic.com https://youtube.com https://www.youtube.com https://google.com https://*.doubleclick.net https://*.googleapis.com https://www.googleadservices.com https://tpc.googlesyndication.com https://www.youtubekids.com https://www.youtube-nocookie.com https://www.youtubeeducation.com https://www-onepick-opensocial.googleusercontent.com;report-uri https://csp.withgoogle.com/csp/youtube_main/allowlist, require-trusted-types-for 'script'

script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:112:0

frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://gov1.qualtrics.com/csp-report

90590df2dea86e8aadcb83b7ff5cf2142f86a7c807fff029cc77ff6c9f29e7ce

0280c0eeb22b25c0e6f74a545c1b08c421ae9ad73d8cb6e466397f36faf607b1

6245a7d2fc2f984211c3c05d5555f818c630580c982dfd52b3748ef349cef1c2

4ab07ab067410a07a64ef03c87f097298397752bf0d971add1bc03e66c661dea

063a7dc0c4b6d22ad74f6fe0b6c75c417630988ea1d6c3d0c486d5e0270cffb4

1d7702d334f9e4833b2d2fb3ee514889ad23e4a0e2af8c0e5ea0883be1f19fc0

9610cd15a4238d549108be8c5789f09f49e1cebfd0f5640d3535ba5950c59215

562209d9eed7396ffa693b977dcd31af4ce08ef45e5f92970882d73ab7bb4817

19e441352405244289d7d2da7c9618a7937e99f43ee0629d4c143a2c6395dfd8

50d1ae51db32fcbd2fcf9d5056316867d4b09951790c0011ea9775d356a8d776

2ce5c052192e20b9147a37299caf1ac85a71af68df27c3986b20a8fec8f6c2be

a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb

77b2dfc9e065286d780c87f72b5cad08761346ff564ddd3f79102f4d4027e9a6

5baec4ad34429357dabb274ea5e18fe1ffbc3a7f25aba47098dfee896ad58c3d

cfe3dd429be7432669df7589ec3c119037aeac6b8911702bd4a6b83ace23d378

febee673e9fbaf2d45b021321e2506a93139af6b118e809943807ee9a5bb738a

Generator

MobileOptimized

HandheldFriendly

viewport

1Zz9H6vs9l-q9fVNIgjKytNZG3NSQHvL500-iQIPJzQ

google-site-verification

efUbcdKHT97m_HVhiG4lQXm_ZySJqJCLrdGG89GJFLQ

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

Requests	IP Address	Location	AS Autonomous System
25	2.16.31.213	Frankfurt am Main, Hesse, Germany	AS16625AKAMAI-AS
6	20.140.151.75	San Antonio, Texas, United States	AS8070MICROSOFT-CORP-MSN-AS-BLOCK
5	3.171.214.106	United States	AS16509AMAZON-02
2	20.140.56.69	San Antonio, Texas, United States	AS8070MICROSOFT-CORP-MSN-AS-BLOCK
2	216.239.34.36	United States	AS15169GOOGLE
2	216.58.206.46	United States	AS15169GOOGLE
2	3.174.46.54	United States	AS16509AMAZON-02
2	92.123.104.4	Frankfurt am Main, Hesse, Germany	AS20940Akamai International B.V.
1	23.52.181.12	Frankfurt am Main, Hesse, Germany	AS16625AKAMAI-AS
1	104.16.174.226	United States	AS13335CLOUDFLARENET
50	76	-	-

Security Scan Report: www.cms.gov

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History