Security Scan Report: nlefia.org

Site favicon
Submitted: Jun 28, 2026, 8:39:44 AMCompleted: Jun 28, 2026, 8:41:15 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 1 country across 6 domains to perform 2 HTTP transactions. The main domain is nlefia.org and was registered NaN years ago.

Submitted URL: https://nlefia.org

AI Security Verdict

Moderate Risk

Confidence: 82%

5
Risk Score

High risk due to a credential‑collecting form and heavily obfuscated JavaScript, despite an established domain.

Risk Factors
Credential form with password field
Heavy JavaScript obfuscation and extensive eval() usage
Excessive number of redirects (55)
Unranked domain (not in Cisco Umbrella top 1M) despite age
Safety Factors
Domain age >12 years (well‑established)
No known IoC or malware matches
No cross‑origin credential exfiltration detected
Self‑branding aligns with domain
Established domain (4403 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

NLEFIA - Firearms Instructors Association

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social_media

(50%)

Domain Information

You're looking at domain 'nlefia.org' on the non-profit oriented generic top-level domain (.org) with no subdomain. Count 6 characters in 'nlefia' split between three vowels and 3 consonants. It segments into two words: nle, fia. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nlefia.org

Page Load Overview

4.67s
Total Load Time
119
HTTP Requests
15
Domains
5.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,985 chars
Detector Agreement:100%

Website Classification

Primary Category

social_media50% confidence
Type: webapp
Method: structural

All Detected Categories

social_media
50%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2499.84.152.19United States
AS16509Amazon.com, Inc.
1934.226.77.200Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
1999.84.152.83United States
AS16509Amazon.com, Inc.
19142.251.151.119United States
AS15169Google LLC
19142.251.13.97United States
AS15169Google LLC
19172.64.147.188United States
AS13335Cloudflare, Inc.
1196--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13E63733292591937966391C0F0B0EB4972D3E74ECB431C58BEBD42AAFBCADB458105ED

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:WX5wqXyOe6rT6fDz6NMmQ8BLSZ6s+mR6+oOF1FB1P1H1K1d1y1o1G1a1hW77IOH2:W8Oe6v6fDz6NMmQmSZ6YR6OF1FB1P1Hk

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:71253:gBMCkfRWgEEIWAmHgICARrIXzAFdRCzMAhHjIMBAUAhgwBUAyRhnLMMLQhJDCqDnyDAACQESOBFHBCToiApBwDgSAkABBQ0g

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c3c3d3c3c3ffc3ff
Perceptual Hash:ac6cc3636331cb6c
Difference Hash:9696b69687719f69
Wavelet Hash:c34341c343ff413f
Color Hash:#53bf40

Scan History

Scan history not available

Unable to load historical scan data