What Is SaveFrom.net?

Savefrom.net is an internet video downloader, famous for its Facebook, Instagram, Twitter, and YouTube downloader. You use the box directly on the savefrom.net website to paste your YouTube, Facebook, Instagram, or Twitter video or music links and they are downloaded directly to your computer. Savefrom.net also works for dailymotion.com, vimeo.com, vk.com, odnoklassniki.ru, soundcloud.com, tiktok.com, and reddit.com video and music links.

Website: https://savefrom.net/

Is SaveFrom.net Safe?

I conducted a series of malware tests to find out if savefrom.net is safe and legit. Here are the results:

I installed the Malwarebytes Browser Guard on my Edge browser and was able to browse the site savefrom.net without any issues.

To check this further I ran malware scans with Malwarebytes and Spybot on my computer after browsing the site savefrom.net and they returned no malware detection. I also ran a system-wide scan with Microsoft Defender and no malware was found.

To try to confirm that the site is clean, I also checked the site savefrom.net on the online malware scanner Sucuri and it returned with no issues. You can see the same here: https://sitecheck.sucuri.net/results/savefrom.net

SaveFrom.net Sucuri results

Sucuri says that it didn’t detect any malware on the site savefrom.net during its scan. It also says that no associated security vendor has blacklisted the site, meaning they don’t think it’s malicious.

Some improvements could be made to the missing security headers listed below:

Missing security header for ClickJacking Protection. Alternatively, you can use Content-Security-Policy: frame-ancestors ‘none’.

Missing security header to prevent Content Type sniffing.

Missing Strict-Transport-Security security header.

Missing Content-Security-Policy directive. We recommend to add the following CSP directives (you can use default-src if all values are the same): script-src, object-src, base-uri, frame-src

Leaked PHP version. Your site is displaying your PHP version in the HTTP headers. Please set expose_php = Off. Affected pages:
https://en.savefrom.net/383/ for Google’s UA

However, these missing security headers don’t change the overall grade of the scan from being a low security risk.

On a positive note, I can see the site savefrom.net is already using a website firewall to protect against website hacks which considerably lowers the risk of the domain being compromised.

I also checked the site savefrom.net on the online security service Unmask Parasites and it returned with one suspicious inline script found. I have listed it below:

(function() {
if (!_sf.app || typeof sfApp === 'undefined') {
$('#sf_form').append($('< input type="hidden" nam...

Lastly, I ran a malware scan with VirusTotal on the domain savefrom.net and no security vendor has flagged the domain as malicious. You can see the same here: https://www.virustotal.com/gui/domain/savefrom.net

SaveFrom.net VirusTotal results

In conclusion, the site savefrom.net doesn’t have malware and no security vendor associated with Sucuri or VirusTotal has flagged the domain as malicious. Unmask Parasites found one suspicious script, but it appears a minor script that isn’t malware. This site is safe.