bootlegg · CDN malware scanner

1,960 GitHub Pages sites caught
loading Funnull malware CDNs.
Is yours one of them?

1,960
sites infected
786
via polyfill.io
1,191
via Funnull CDNs

Check a site

Run a live check

The lookup above searches our static scan from June 2026. For a live crawl — current page content, GitHub source search, and linked-page walking — install the CLI from our GitHub repo.

# install $ pip install bootlegg # check a github.io site (source scan + live crawl) $ bootlegg https://user.github.io/repo/ # with GitHub token for source search (30 req/min vs 10) $ bootlegg https://user.github.io/repo/ --token ghp_xxx # any URL, no GitHub search, single page $ bootlegg https://example.com --no-github --max-pages 1 # JSON output, exits 1 if infected $ bootlegg https://user.github.io/ --json | jq .summary
All 1,960 infected sites ↗ GitHub ↗ Sansec report ↗