I built SiteRay (siteray.eu) to scratch my own itch. I was getting tired of manually checking WHOIS records, SSL certs, and threat databases every time I landed on a site that felt slightly "off." Phishing and scam sites look too good these days, and the manual verification process has too much friction.
SiteRay is a web platform that aggregates multiple trust vectors to generate a 0-100 reputation score. It doesn't just check standard malware blocklists; it looks at domain age, company registry information, the existence of valid emails and phone numbers, and other signals. The web app gives you a fully transparent report so you can see exactly why a site was flagged or trusted, rather than just giving you a black-box number.
Because checking a web app still requires context-switching, I also built a companion extension for Chrome, Firefox, and Firefox for Android. It acts as a visual "traffic light" (via a top/bottom colored stripe) to give you an instant read on the domain you're currently visiting.
Privacy is obviously the biggest concern with any extension that monitors your browsing. The extension is designed to only send the root domain to our API to fetch the score—no full URL paths, no page content, and no personal data.
I'd love your technical feedback on a few specific things:
- The scoring algorithm: What edge cases or false positives/negatives are you seeing?
- Data vectors: Are there other signals I should be incorporating into the trust score?
- The architecture and UI: Does the transparency report give you enough actionable data?
I'll be hanging out in the comments to answer questions and take notes. Thanks for taking a look!
Hi HN,
I built SiteRay (siteray.eu) to scratch my own itch. I was getting tired of manually checking WHOIS records, SSL certs, and threat databases every time I landed on a site that felt slightly "off." Phishing and scam sites look too good these days, and the manual verification process has too much friction.
SiteRay is a web platform that aggregates multiple trust vectors to generate a 0-100 reputation score. It doesn't just check standard malware blocklists; it looks at domain age, company registry information, the existence of valid emails and phone numbers, and other signals. The web app gives you a fully transparent report so you can see exactly why a site was flagged or trusted, rather than just giving you a black-box number.
Because checking a web app still requires context-switching, I also built a companion extension for Chrome, Firefox, and Firefox for Android. It acts as a visual "traffic light" (via a top/bottom colored stripe) to give you an instant read on the domain you're currently visiting.
Privacy is obviously the biggest concern with any extension that monitors your browsing. The extension is designed to only send the root domain to our API to fetch the score—no full URL paths, no page content, and no personal data.
I'd love your technical feedback on a few specific things:
- The scoring algorithm: What edge cases or false positives/negatives are you seeing? - Data vectors: Are there other signals I should be incorporating into the trust score? - The architecture and UI: Does the transparency report give you enough actionable data?
I'll be hanging out in the comments to answer questions and take notes. Thanks for taking a look!