FRESH

Hacker News

Home

The URL shortener that makes your links look as suspicious as possible

768 points by dreadsword

by postalcoder

4 subcomments

There may actually be some utility here. LLM agents refuse to traverse the links. Tested with gemini-3-pro, gpt-5.2, and opus 4.5.
edit: gpt-oss 20B & 120B both eagerly visit it.

by tcgv

0 subcomment

Hole in one!

I shortened a link and when trying to access it in Chrome I get a red screen with this message:

  Dangerous site
  Attackers on the site you tried visiting might trick you into installing software or revealing things like your passwords, phone, or credit card numbers. Chrome strongly recommends going back to safety.

by gnabgib

2 subcomments

Related: A URL shortener not shortening the URL but makes it look very dodgy (434 points, 2023, 100 comments) https://news.ycombinator.com/item?id=34609461

by arjvik

4 subcomments

My favorite link of all time:
https://jpmorgan.c1ic.link/logger_zcGFC2_bank_xss.docm
Definitely not meta

by latexr

6 subcomments

I think it’s perfectly reasonable to make something useless for fun, it’s an interesting idea.
But what I’d like to understand is why there are so many of the same thing. I know I’ve seen this exact idea multiple times on HN. It’s funny the first time, but once it’s done once and the novelty is gone (which is almost immediately), what’s the point of another and another and another?

by qnleigh

2 subcomments

What's up with the creepy ads on this website? It seems like they are actually sketchy ads and not just fake ads for comedic effect. One shows some scammy nonsense about your device being infected and the other links to a real VPN app.

by bityard

1 subcomments

IIRC, shadyurl was the original version of this. Doesn't seem to be around anymore, though.

by champagnepapi

2 subcomments

https://jpmorgan.c1ic.link/G4JQKX_money_request.dll

by caminanteblanco

0 subcomment

I'm not sure what the use case for this is, but I've been using it as a inefficient messaging service with my girlfriend, ie:
https://c1ic.link/campaign_WxjLdF_login_page_2.bat
You seem to be able to encode arbitrary text, so long as it follows [A-Za-z0-9]+\.[A-Za-z0-9]+

by codemogul

0 subcomment

BRILLIANT! Even Chrome says nope/DANGEROUS to a creepified link to mail.google.com

by zX41ZdbW

1 subcomments

I would also like to have something like this, but for "vintage" links - something that looks like it was from the late 90s.
I use them in tests, just for fun: https://github.com/ClickHouse/ClickHouse/blob/master/tests/q...

by jmward01

1 subcomments

This had to be done:
https://wellsfargo.c1ic.link/TODO_obfuscate_url_8wyS7G_hot_s...

by vhurg

1 subcomments

Please don’t use 3rd party relays for your URLs. It’s bad enough to have your own server, domain, etc. as single points of failure and bottlenecks without adding a 3rd party into the mix, who either themselves or someone that takes over their domain later track users, randomly redirect your users to a malicious site, or just fail.
I know people have fond memories of long ago when they thought surely some big company’s URL shortener would never be taken down and learned from that when it later was.

by jhalderm

0 subcomment

Fantastic! I miss the original ShadyURL.
https://news.ycombinator.com/item?id=31386108

by autoexec

0 subcomment

Every URL shortener is suspicious.
While this seems like it would make it harder for them I wouldn't be surprised if scammers eventually try to abuse this service too and I have no doubt that people would happily click these if they found in them in a phishing email, that said I give the folks behind this a lot of credit for having a way to contact them and report links if that happens.

by domoregood

2 subcomments

For funsies I shortened https://creepylink.com
And got: https://c1ic.link/account_kPvfG7_download_now.bat

by dreadsword

3 subcomments

Saw this on relaunched Digg and figured HN would appreciate it.

by zefhous

0 subcomment

My city utility provider used secured-server.biz for billing for a long time. I always thought it was hilarious and very suspicious looking.

by phoe-krk

4 subcomments

I wouldn't call it a shortener, since most of the links it creates are longer than the originals.
What would be a good name here? A URL redirector?

by juliangmp

0 subcomment

This is legit! If you disable your adblock you even get a suspicious ad

by Avamander

0 subcomment

It would've been top-notch if it actually sometimes just used Outlook/O365 or similar vendor's "safelinks" redirector that they use.

by yc784567

0 subcomment

This is cool, since the links are actually short, but for properly suspicious links I prefer phishyurl [1] .
[1] https://news.ycombinator.com/item?id=45295898
edit: fixed typo

by falsedev

0 subcomment

I can't tell if the website works as advertised because I don't want to open the generated links

by dieggsy

2 subcomments

This is fun. Is it not checking for previously submitted URLs though? I can seemingly re-submit the exact same URL and get a new link every time. I would expect this to fill the database unnecessarily but I have no idea how the backend works.

0 subcomment

by unnouinceput

0 subcomment

My link: https://update.web-safe.link/iy1bxm_money_request

by danielpetrica

0 subcomment

As someone who built a standard shortener (coz.jp), this is hilarious. I spent so much time trying to make links look trustworthy; doing the exact opposite is a surprisingly fun concept.

by bsza

0 subcomment

Yeah but have fun explaining yourself to the police when the author abandons the project and an actual scammer ends up buying up all those domains.

by TomMasz

0 subcomment

This is great. It created a link to my personal site that Firefox blocked me from going to.

by lzap

0 subcomment

I like how old-school HN comment section does not care about creepy links at all. Or link for that matter.

by victorevogor

0 subcomment

Just wondering. so you bought c1ic.link and web-safe.link. That's very cool

by CupricTea

0 subcomment

The other day in a Facebook Messenger group chat I tried to link to https://motherfuckingwebsite.com/ as a joke, but Messenger kept blocking it. It's quite overzealous with its blocking.

by zakki

1 subcomments

Is this suspicious: https://microsoft.c1ic.link/0B7jqd_invoice.vbs ?

by dizhn

0 subcomment

Firefox is freaking out on some of these. It's hilarious.

by fancychancy

1 subcomments

Haha, it's fun. Just thinking, is there some place where creepy links would be better ?

by FuturisticLover

0 subcomment

I am sharing content using these creepy links to send to office people.

by abhinai

0 subcomment

Please take my upvote. :)

by CGMthrowaway

1 subcomments

Use case? Besides humor and phishing tests

by lzzzam

0 subcomment

I can just say thanks

by thimkerbell

0 subcomment

Add this to "HN for psychopaths" please.

by virajk_31

0 subcomment

why do creepy links look creepy?...

by neuroelectron

0 subcomment

/instagram.c1ic.link/mCLIIp_free_vacation_offer.zip

by rendall

0 subcomment

This is the best article on Wikipedia!
https://c1ic.link/bzSBpN_login_page_2
Edit: Chrome on Android warned me not to visit the site!

by awesome_dude

1 subcomments

For humour I shortened "https://www.facebook.com/"
And got https://twitter.web-safe.link/root_4h3ku0_account_verificati...

by fuddle

0 subcomment

lol, I'm not clicking a .vbs link

by CrimsonCape

0 subcomment

It is hilarious and i'm not clicking any link lol.

by manthangupta109

0 subcomment

by hnst1

0 subcomment

[dead]

by olya_pllkh

0 subcomment

[dead]

0 subcomment

by thesebas

0 subcomment

[dead]

by pryncevv

0 subcomment

[dead]

by pabs3

2 subcomments

Please don't make any more URL shorteners, they are just a bad idea.
https://wiki.archiveteam.org/index.php/URLTeam