Scan URLs for Security Threats with urlscan.io and GPT-4o mini

Created by

Calistus Christian

Last update

Last update 3 days ago

How it works

• Webhook → urlscan.io → GPT-4o mini → Gmail
• Payload example: { "url": "https://example.com" }
• urlscan.io returns a Scan ID and raw JSON.
• AI node classifies the scan as malicious / suspicious / benign, assigns a 1-10 risk score, and writes a two-sentence summary.
• Gmail sends an alert that includes the URL, Scan ID, AI verdict, screenshot link, and full report link.

Set-up steps (~5 min)

• Create three credentials in n8n

urlscan.io API key
OpenAI API key (GPT-4o mini access)
Gmail OAuth (or SMTP)
• Replace those fields in the nodes, or reference env vars like {{ $env.OPENAI_API_KEY }}.
• Switch the Webhook to Production → copy the live URL.
• Test with:

curl -X POST &lt;your-webhook-url&gt; \
     -H "Content-Type: application/json" \
     -d '{ "url": "https://example.com" }'

Scan URLs for Security Threats with urlscan.io and GPT-4o mini

How it works

Set-up steps (~5 min)

There’s nothing you can’t automate with n8n