context safety score
A score of 42/100 indicates multiple risk signals were detected. This entity shows patterns commonly associated with malicious intent.
encoded payload
suspicious base64-like blobs detected in page content
brand impersonation
The site operates on domain mangakakalot.gg while consistently branding itself as 'MangaKakalot.com' in the page title, meta tags, og:title, and slogan ('MangaKakalot | Mangakakalot.com | Read Manga Online Free Update Daily'). This impersonates the original mangakakalot.com brand using a lookalike .gg TLD to capture traffic intended for the legitimate site. (location: page.html:8, page.html:15, page.html:19, page.html:129)
malicious redirect
Two JavaScript files are loaded from 'yougetwhatyoupayfor.net', a third-party domain with a name strongly suggesting a monetization/ad-injection or popup redirect operation: 'popup-v4.js' (explicitly named popup script) and '6b19cf019d81.js' (obfuscated filename). A third script 'banners-web/mangakakalot.gg.js' is also loaded from the same domain at the end of the body. These scripts execute with full page access and are highly likely to deliver unwanted popups, forced redirects, or malvertising. (location: page.html:26, page.html:27, page.html:3597)
social engineering
A persistent notification banner instructs users to bookmark the site using Ctrl+D / Command+D and add it to their home screen, citing 'search engine updates' as the reason the site may not appear in Google results. This is a social engineering tactic used by infringing or low-trust sites to build a persistent user base despite being delisted or demoted by search engines, which typically indicates policy violations. (location: page.html:348-353, page-text.txt:58-61)
hidden content
Footer contains a text-link list with 'opacity: 0.01' applied inline (effectively invisible to users), containing dofollow outbound links to external sites including 'fun88.supply' and 'fun88.social' (gambling sites) and 'shortflix.net'. These hidden links are used for SEO link-juice manipulation and may redirect users or expose them to high-risk external domains. (location: page.html:3425-3427)
hidden content
An H1 element with class 'hidden' ('MangaKakalot - Manga Online Free') is present in the page body. The CSS class 'screen-reader-text' uses clip-path and absolute positioning to visually hide content from users while keeping it in the DOM, a technique commonly used for both accessibility and for hiding content from human viewers while exposing it to crawlers or agents. (location: page.html:252-265, page.html:357)
curl https://api.brin.sh/domain/mangakakalot.ggCommon questions teams ask before deciding whether to use this domain in agent workflows.
mangakakalot.gg currently scores 42/100 with a suspicious verdict and low confidence. The goal is to protect agents from high-risk context before they act on it. Treat this as a decision signal: higher scores suggest lower observed risk, while lower scores mean you should add review or block this domain.
Use the score as a policy threshold: 80–100 is safe, 50–79 is caution, 20–49 is suspicious, and 0–19 is dangerous. Teams often auto-allow safe, require human review for caution/suspicious, and block dangerous.
brin evaluates four dimensions: identity (source trust), behavior (runtime patterns), content (malicious instructions), and graph (relationship risk). Analysis runs in tiers: static signals, deterministic pattern checks, then AI semantic analysis when needed.
Identity checks source trust, behavior checks unusual runtime patterns, content checks for malicious instructions, and graph checks risky relationships to other entities. Looking at sub-scores helps you understand why an entity passed or failed.
brin performs risk assessments on external context before it reaches an AI agent. It scores that context for threats like prompt injection, hijacking, credential harvesting, and supply chain attacks, so teams can decide whether to block, review, or proceed safely.
No. A safe verdict means no significant risk signals were detected in this scan. It is not a formal guarantee; assessments are automated and point-in-time, so combine scores with your own controls and periodic re-checks.
Re-check before high-impact actions such as installs, upgrades, connecting MCP servers, executing remote code, or granting secrets. Use the API in CI or runtime gates so decisions are based on the latest scan.
Learn more in threat detection docs, how scoring works, and the API overview.
Assessments are automated and may contain errors. Findings are risk indicators, not confirmed threats. This is a point-in-time assessment; security posture can change.
integrate brin in minutes — one GET request is all it takes. query the api, browse the registry, or download the full dataset.