English

Within the British Indian Ocean Territory country-code top-level domain (.io), 'zimbra-web-03ee42.webflow.io' is registered and includes subdomain 'zimbra-web-03ee42'. The registrable portion 'webflow' spans 7 characters with 2 vowels and five consonants. It segments into two words: web, flow. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

html/a2/a3/a2a390a6-0f90-445b-8b22-13e9ba5d9650_fallback.html.gz

Zimbra.web

email

name

cf-turnstile-response

email-form

html/a2/a3/a2a390a6-0f90-445b-8b22-13e9ba5d9650.html.gz

frame-ancestors 'self' https://*.webflow.com http://*.webflow.com http://*.webflow.io http://webflow.com https://webflow.com

default-src 'none'; script-src 'nonce-RO8YJlvP1kzefgcL' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms

default-src 'none'; script-src 'nonce-s7DOe1mfV1jOIFwf' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms

viewport

generator

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

!function(o,c){var n=c.documentElement,t=" w-mod-";n.className+=t+"js",("ontouchstart"in o||o.DocumentTouch&&c instanceof DocumentTouch)&&(n.className+=t+"touch")}(window,document);

Requests	IP Address	Location	AS Autonomous System
12	104.18.95.41	United States	AS13335CLOUDFLARENET
7	104.18.160.117	United States	AS13335CLOUDFLARENET
4	104.18.161.117	United States	AS13335CLOUDFLARENET
3	13.226.247.67	United States	AS16509AMAZON-02
1	172.64.151.8	United States	AS13335CLOUDFLARENET
1	104.18.94.41	United States	AS13335CLOUDFLARENET
1	13.226.247.220	United States	AS16509AMAZON-02
1	104.18.36.248	United States	AS13335CLOUDFLARENET
1	13.226.247.18	United States	AS16509AMAZON-02
1	2a06:98c1:3100::6812:24f8	United States	AS13335CLOUDFLARENET
22	16	-	-

Security Scan Report: zimbra-web-03ee42.webflow.io

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History