No Security Risks Detected
This domain appears to be safe and secure
100%
Score
Disclaimer: This assessment is based on automated analysis of publicly available information. Results are for informational purposes only. For critical applications, consult security professionals.
Scan Information
Last checked:October 22, 2025 16:39:14
Scan Complete
Refresh page after 10 minutes
for updated results
Page Information
Target URL
https://sora.chatgpt.com/onboarding?redirect=/explore
Page Title
Sora
Site FaviconStatus
Active
Host Information
Domain
sora.chatgpt.com
Server
cloudflare
Country
United States
IP Address
172.64.149.182
ASN Information
13335
CLOUDFLARENET
Technologies
Envoy
Reverse proxies
HSTS
Security
Cloudflare Browser Insights
Analytics
Cloudflare
CDN
SSL Certificate
HTTPS Enabled
Secure
Certificate Issuer
N/A
Valid From
2025-10-21 16:39:19
Valid Until
2026-10-22 16:39:19
Subject Name
sora.chatgpt.com
Performance Statistics
59
Total Requests
6
Domains
6
IP Addresses
2.26 MB
Transfer Size
Content Size5.71 MB
HTTP Headers
CF-RAY
992a6e1b8f7f17f2-SJC
Cache-Control
private, no-cache, no-store, max-age=0, must-revalidate
Connection
keep-alive
Content-Encoding
gzip
Content-Type
text/html; charset=utf-8
Date
Wed, 22 Oct 2025 16:39:19 GMT
Server
cloudflare
Server-Timing
cfCacheStatus;desc="DYNAMIC"
cfOrigin;dur=88,cfEdge;dur=34
Strict-Transport-Security
max-age=31536000; includeSubDomains; preload
Transfer-Encoding
chunked
X-Content-Type-Options
nosniff
cf-cache-status
DYNAMIC
content-security-policy
default-src 'self'; base-uri 'self'; font-src 'self' data: https://cdn.openai.com https://fonts.gstatic.com https://fonts.googleapis.com https://use.typekit.net; form-action 'self'; frame-ancestors 'self'; img-src 'self' blob: data: https:; object-src 'none'; script-src 'self' https://chatgpt.com/sentinel/ https://chatgpt.com/backend-api/ https://sora-cdn.oaistatic.com https://cdn.oaistatic.com 'nonce-754b265c-989a-4c61-9a16-bb06742d1f5e'; style-src 'self' 'unsafe-inline' https://sora-cdn.oaistatic.com https://fonts.googleapis.com; connect-src 'self' https: wss: ; media-src 'self' blob: data: https://cdn.openai.com https://videos.openai.com https://chatgpt.com/backend-api/estuary/ https://ogimg.chatgpt.com https://*.oaiusercontent.com; worker-src 'self' blob:; frame-src 'self' https://chatgpt.com/; report-uri https://browser-intake-datadoghq.com/api/v2/logs?dd-api-key=pub1f79f8ac903a5872ae5f53026d20a77c&dd-evp-origin=content-security-policy&ddsource=csp-report&ddtags=version%3Asora-csp
vary
RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-envoy-upstream-service-time
14
x-openai-proxy-wasm
v0.1
x-vg-client
web
17 headers detected
Technology Stack Analysis
Envoy
Reverse proxies
Envoy is an open-source edge and service proxy, designed for cloud-native applications.
HSTS
Security
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.
Cloudflare Browser Insights
AnalyticsRUM
Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.
Cloudflare
CDN
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Website Cookies 9
oai-sc
.chatgpt.com
Secure None
Value
0gAAAAABo-Qi6or18zbSjao5tv5SsExLqu5jxOQwUibnXtrao_LQ8QvWneY0Pnq3lgMf60dhhC00R5yZYNuUBB2A-GlVUecQ_8cb2Ohz_Fgx3V_aaiXjA1KDQ4nIkCN1B14Oe4Y2ylqxpRFMdQWVxyeHjb0gZ-Dz2IKeFcVn_gbFiuX0Qf3Qi1vs1jsIX2EqohRSI08D3BN5425KRPXtfTP_CXAftYh439g
Expires:10/22/2026
cf_clearance
.sora.chatgpt.com
HttpOnly Secure None
Value
uz1wPZd5cab4ATnUVcQZHVRrBjxANuoyOfBDEG8ScHc-1761151161-1.2.1.1-6An78x8jhSLUWou.jaGKbXeMiFYpShbOF5LqKY4MNiNIZPWMxOzd8SzQzJhzdE.Vk1XH5loTkXLJd20Vy8wxaonoCD8TQgOd8I1nVRzjDgSr9bSOA_nCmH5MdPYkkajkm7.9BmN2rOse88SOnZAUq4PzfyWFTvSCwddOtLwKPmOqtN87t2louI0k.pGteScrJgGTKFROD9pvuZ3M9UOFY6xINHRd.FNR7.VhJ_IRekM
Expires:10/22/2026
_cfuvid
.sora.chatgpt.com
HttpOnly Secure None
Value
OPtOj9nluOZiHc5ewOCFsFZWmM4oEIzqfUIYfi2UcRk-1761151159559-0.0.1.1-604800000
Expires:Session
__cf_bm
.sora.chatgpt.com
HttpOnly Secure None
Value
HpLcqhIWvzCk8k7M0dNTS.VlRVMIaH151oGqAtFooDg-1761151159-1.0.1.1-KuQwQX2PWiTuBxqNBfHCHHjZgTzChO64FMumIMTgY6vIVjIlEKxwGNnmp5tndZct6u7Q7lyiXi__WA04rmRl8Jra4.0qUr7ymWt9xaIgNFI
Expires:10/22/2025
__cflb
sora.chatgpt.com
HttpOnly Secure None
Value
0H28vBjUqcdJN5F5i82S5HyHebMAKB1d4idEtvmBtn1
Expires:10/22/2025
cf_clearance
.chatgpt.com
HttpOnly Secure None
Value
lKY4PEJ4mGsstVB0355RgvEEUBLXv_CLdXOeWxErE.k-1761151162-1.2.1.1-G2rfabhufUtjdh6p6NFNrll7lpoq5E82iGUYEahJu4frSVv4Q62pd65qx7QLtv2KBkMK8KbeRtjbPkUZuehSVg.jgdW0viNF_f3BU_fI0ESBqEFORUT8eLihLYPT9zU5XVxigfNn29deG6DUSdnxjUOvzJGz1Hp7ERKgkJSSIkyM6syDXoHJgRVU9ZM_M3qnO4Mxh0GMqLm.1QkXGtnFH5UwaTu_UQwxiFnTA5i5Bbg
Expires:10/22/2026
__Secure-next-auth.callback-url
sora.chatgpt.com
HttpOnly Secure Lax
Value
[__Secure-next-auth.callback-url redacted]
Expires:Session
__cf_bm
.chatgpt.com
HttpOnly Secure None
Value
b2MKqVN2vWoRtTMvRAADFsqC1riGQupxH_E6n42yZFU-1761151160-1.0.1.1-pzy3puRh.B22pecseUHTzBbZt3k5248M1syO2U.4v3JpjgsXmS0P1l.zvsqP5hZKeZ1eUIt0XbeaXyJ8Mn4XkLHmIOVuFxYO1Iy5tS0FoMA
Expires:10/22/2025
__Host-next-auth.csrf-token
sora.chatgpt.com
HttpOnly Secure Lax
Value
[__Host-next-auth.csrf-token redacted]
Expires:Session
External Links 0
Requested Domains 6
ab.chatgpt.com
Unknown Type
No category information available
cdn.openai.com
Unknown Type
No category information available
chatgpt.com
Unknown Type
No category information available
sora-cdn.oaistatic.com
Unknown Type
No category information available
sora.chatgpt.com
Subdomain
No category information available
static.cloudflareinsights.com
Unknown Type
No category information available