context safety score
A score of 68/100 indicates minor risk signals were detected. The entity may be legitimate but has characteristics that warrant attention.
credential harvesting
The page collects first name, email address, and optional phone number via a registration form. The consent text allows Mastermind to contact users even if on the Do Not Call Registry, which is an aggressive data-harvesting consent pattern. The domain gamehaschangedevent.com is not the brand domain of Tony Robbins or Dean Graziosi (mastermind.com / tonyrobbins.com), meaning PII is collected on a third-party event-branded domain. (location: page.html:139-146, modal form inputs #input-75665-122, #input-83626-168, #input-27607)
malicious redirect
A primary CTA button links to https://thrive2025event.com/rsvp?source=mmic&a=101612 — a completely different domain from gamehaschangedevent.com. The page title and branding promote 'The Game Has Changed Event' but the actual registration redirect goes to thrive2025event.com, which is an off-domain affiliate-tracked redirect (parameter a=101612 indicates affiliate ID). Users believe they are registering on one site but are sent to another. Additionally, a commented-out JS redirect to https://learn.mastermind.com/roadmap-ebook was found in the HTML head. (location: page.html:197, page.html:93)
social engineering
The page uses multiple high-pressure urgency and scarcity tactics: 'Tickets are still available' framing implying limited supply, 'first come first serve' messaging on the CTA button, countdown timers for the event, and celebrity name-dropping (Tony Robbins, Dean Graziosi, Matthew McConaughey, etc.) to create FOMO and drive immediate form submission with personal data. (location: page.html:131-136, page.html:149, page.html:203-210)
hidden content
Multiple page sections are hidden with 'display: none !important' inline styles, including a full container section (container-31220) with an 'ATTN: Success Seekers' message, another container (container-34508), and a row (row-163) with countdown timers. These hidden sections contain content not visible to the user but present in the DOM. The base64-encoded ClickFunnels metadata IDs in meta tags (12 suspicious base64 blobs flagged by Tier 2) are ClickFunnels platform identifiers, not injection payloads — confirmed false positive. (location: page.html:220 (row-163 display:none), page.html:250 (container-31220 display:none), page.html:263 (container-34508 display:none))
brand impersonation
The domain gamehaschangedevent.com is not an official Tony Robbins or Dean Graziosi property. It uses their names, likenesses, and event branding prominently in the page title, meta tags, and content to drive registrations, but the actual event has been rebranded to 'Thrive in 2025' at thrive2025event.com. The page continues to use the old 'Game Has Changed' branding while funneling users to a differently branded event, creating a brand mismatch that could confuse users about which entity is collecting their data. (location: page.html:8-11, page.html:174-201)
curl https://api.brin.sh/domain/gamehaschangedevent.comCommon questions teams ask before deciding whether to use this domain in agent workflows.
gamehaschangedevent.com currently scores 68/100 with a caution verdict and medium confidence. The goal is to protect agents from high-risk context before they act on it. Treat this as a decision signal: higher scores suggest lower observed risk, while lower scores mean you should add review or block this domain.
Use the score as a policy threshold: 80–100 is safe, 50–79 is caution, 20–49 is suspicious, and 0–19 is dangerous. Teams often auto-allow safe, require human review for caution/suspicious, and block dangerous.
brin evaluates four dimensions: identity (source trust), behavior (runtime patterns), content (malicious instructions), and graph (relationship risk). Analysis runs in tiers: static signals, deterministic pattern checks, then AI semantic analysis when needed.
Identity checks source trust, behavior checks unusual runtime patterns, content checks for malicious instructions, and graph checks risky relationships to other entities. Looking at sub-scores helps you understand why an entity passed or failed.
brin performs risk assessments on external context before it reaches an AI agent. It scores that context for threats like prompt injection, hijacking, credential harvesting, and supply chain attacks, so teams can decide whether to block, review, or proceed safely.
No. A safe verdict means no significant risk signals were detected in this scan. It is not a formal guarantee; assessments are automated and point-in-time, so combine scores with your own controls and periodic re-checks.
Re-check before high-impact actions such as installs, upgrades, connecting MCP servers, executing remote code, or granting secrets. Use the API in CI or runtime gates so decisions are based on the latest scan.
Learn more in threat detection docs, how scoring works, and the API overview.
Assessments are automated and may contain errors. Findings are risk indicators, not confirmed threats. This is a point-in-time assessment; security posture can change.
integrate brin in minutes — one GET request is all it takes. query the api, browse the registry, or download the full dataset.