Datacenter geo scanner

Cloaking is often geo-fenced: a malicious site serves its payload only to visitors from the countries it targets, and a clean decoy to everyone else. A scanner that always exits from one place can’t see that. whack.sh is a datacenter geo scanner — it loads any URL from an in-country datacenter exit in a country you choose, then diffs that capture against your baseline. When the page changes by country, that difference is the geo-cloak slipping.

Scan a URL as if you were in another country

Pin a scan to a country and every leg exits from an IP there, so the target decides what to serve based on where it thinks you are. To surface a geo-fenced branch, run the URL in one country and compare that report against a scan from another country — or against your US baseline: the traffic-distribution system, doorway or phishing kit that only fires for one region shows itself in the difference. It’s the same split-horizon technique whack.sh uses across network sources, aimed at the geography axis.

Countries you can pin

Geo exits are vetted for coverage and accuracy — each is confirmed to actually land in-country before it’s offered:

The exit is a geo-targeted best effort, not a guarantee — so every report geolocates and shows the true exit IP, country and network for each leg. For the strongest signal, pair a geo exit with residential and mobile sources.

What a geo scan returns

Geo datacenter egress is metered — a small base credit per leg covers an included bandwidth allowance, then a low per-MB overage, and offline or unreachable legs are never charged. See pricing and the API docs.