Analyze any URL for phishing, suspicious patterns, and security risks. Detects login keywords, suspicious TLDs, encoded characters, brand impersonation, and more
Before you click a suspicious link, paste it here. This analyzer inspects the URL structure for common phishing patterns, homoglyph attacks, suspicious redirects, and known-bad TLDs. It won't visit the URL, it analyzes the string itself.
Initializing in your browser…
Analyze password security with 10 criteria checks, entropy calculation, crack time estimation, character breakdown, warnings, and improvement suggestions
Check if a website has valid SSL/TLS certificate. Verify HTTPS connection and get tools for detailed certificate analysis
Build a personal knowledge base with [[bidirectional links]], tags, backlinks, search, note metadata, and import/export. Implements Zettelkasten method
A "your account is locked" email links to the URL below and you want a sober breakdown before anyone in the team clicks it.
URL pasted
http://paypa1-secure-login.account-verify.ru/login?next=update
Risk findings
⚠ Lookalike brand: "paypa1" substitutes 1 for l (typosquat) ⚠ Not HTTPS: credentials would be sent in clear text ⚠ Real domain is account-verify.ru, not paypal, brand is only a subdomain ⚠ Credential keywords: "secure-login", "verify" Verdict: High risk, classic phishing structure
The analyzer inspects the URL lexically, it never visits the link. It separates the true registrable domain (`account-verify.ru`) from the deceptive subdomain, flags homoglyph/typosquat tricks like "paypa1", and notes the missing TLS. This is structural phishing detection, so treat it as a strong warning, not a substitute for a live threat-intel blocklist.
Before you click a suspicious link, paste it here. This analyzer inspects the URL structure for common phishing patterns, homoglyph attacks, suspicious redirects, and known-bad TLDs. It won't visit the URL, it analyzes the string itself.
Check links from emails before clicking, especially those claiming to be from banks, shipping companies, or IT departments.
Verify shortened or unfamiliar URLs shared in team chat channels.
Demonstrate how phishing URLs mimic legitimate domains using character substitution and subdomain tricks.
No. It only analyzes the URL string. No HTTP requests are made to the target.
No tool can guarantee 100% detection. This catches structural patterns, but always exercise judgment with unfamiliar links.
This runs as client-side JavaScript. Keys, tokens, payloads, and other inputs never leave your device.