Domain Intelligence

Is raw.githubusercontent.com a scam?

This domain is flagged in our threat intelligence database. Review the evidence below before visiting.

Warn a Friend Post to X Reddit

Community Verdict

Potential Threat

Users have reported this domain for suspicious activity. Exercise extreme caution. Do not visit or enter personal details.

Risk Score
85
Evidence Sources
0
Community Safety Rating
★★☆☆☆ 2/5 (1 report)
1 = Dangerous · 5 = Safe
Independent Verification
Google Search Whois Lookup

Recent Evidence

May 19, 2026 via User Report

""GitHub CDN abused to host shellcode binary payload. Scammer directs victims to download binary claiming to be security patch. Victim's system executes shellcode establishing unauthorized access.""

May 1, 2026 via User Report

""Domain impersonates GitHub raw content delivery. Scammer hosts malicious FiveM spoofer executable (CFXBypass.exe) to trick users into downloading game cheating/anti-cheat bypass software. Victim is directed to download and execute the file"

View Evidence
Apr 28, 2026 via User Report

""Abuse of legitimate GitHub infrastructure to host malicious configuration file disguised as image resource. Scammer leverages trusted domain reputation for payload delivery bypass. Victims download loader script when accessing compromised repository.""

+ Add your experience

Safety Checklist: What to do next

Do Not Visit

Close the tab immediately. Do not download any files or enter passwords.

Clear Cache

Clear your browser cookies and cache to remove tracking scripts.

Report Abuse

Report the URL to Google Safe Browsing and the domain registrar.

Recommended Security Tool
NordPass

If you visited a suspicious site, change your passwords.

NordPass autofill only triggers on real domains. Even if you click a clone of a real login page, it will not enter your saved password.

Try NordPass

Frequently Asked Questions

Is raw.githubusercontent.com a scam website?

raw.githubusercontent.com is flagged in our threat intelligence database with a risk score of 85/100. Exercise caution — do not enter personal information on this site.

What kind of scam does raw.githubusercontent.com run?

Reported domains in our database are typically phishing sites, fake online stores, credential-harvesting pages, or malware distribution points. Check the evidence section above for specific details about this domain.

How do I report a scam website?

Report to Google Safe Browsing at safebrowsing.google.com/safebrowsing/report_phish/, to the FTC at ReportFraud.ftc.gov, and to URLhaus at urlhaus.abuse.ch. You can also submit a report on RecentScam using the button above.

Will my antivirus block this website?

Most modern antivirus and browser security tools use real-time URL databases. If the domain is listed in major threat feeds, it may already be blocked. However, new scam sites often evade detection for days or weeks — always check manually before visiting.

Can I get my money back if I was scammed by this site?

Contact your bank or credit card issuer immediately to file a chargeback — typically within 60 days of the transaction. Also file a complaint with the FTC at ReportFraud.ftc.gov. If you paid with cryptocurrency or wire transfer, recovery is significantly harder.

Data Sources: Domain records are sourced from public cybersecurity threat feeds (URLhaus by abuse.ch, OpenPhish). RecentScam does not independently verify all claims. The Risk Score is a calculated metric, not a legal judgment. To dispute a record, visit our Removal Request page.