Paste or upload the email
Drop in the full email — headers and body — or upload a .eml / .msg file. No account needed.
$10B+
lost to phishing every year
1 in 3
users can’t spot a scam email
0
bytes of your email stored
Drop in the full email — headers and body — or upload a .eml / .msg file. No account needed.
Sender, domain, SPF/DKIM/DMARC, reply-to, content, links and attachments are scored in seconds.
A 0–100 risk score, PASS/FAIL/WARN breakdown, and exactly what to do next.
A real check on a sample scam email — computed by the same engine.
Every email is scored across the signals scammers rely on — so nothing slips through.
Catches impersonation where the name says “PayPal” but the address doesn’t.
Flags look-alike domains and freshly registered lookalikes of real brands.
Verifies the email is genuinely from who it claims to be.
Warns when replies would go somewhere other than the sender.
Surfaces shorteners, IP links, and dangerous file types before you click.
Every verdict ends with a clear, calm next step — not jargon.
No. Checks run in your browser/session and we never persist your email content. You can optionally save a result to your account.
Not to check an email — it’s free and instant. Accounts are only for saving history and trusted senders.
Never. We only inspect file names and types for risk signals; attachments are never executed or uploaded unless you choose to.
Use “Report wrong verdict” on any result. Admins review false positives to improve the engine.