Email scams cost over $10B every year

Catch scam emails before you click

EmailGuard reads a suspicious email and tells you — in plain language — whether it’s safe, suspicious, or a scam. Free, private, and instant.

Try a phishing email →Try a safe email →
100% freePrivacy-firstNo data storedNo account required

↓ Scroll to see how it works

$10B+

lost to phishing every year

1 in 3

users can’t spot a scam email

0

bytes of your email stored

Three steps. No expertise required.

01

Paste or upload the email

Drop in the full email — headers and body — or upload a .eml / .msg file. No account needed.

02

We analyze every signal

Sender, domain, SPF/DKIM/DMARC, reply-to, content, links and attachments are scored in seconds.

03

Get a plain-English verdict

A 0–100 risk score, PASS/FAIL/WARN breakdown, and exactly what to do next.

Here’s what you get

A real check on a sample scam email — computed by the same engine.

EmailGuard Analysis
Suspicious

This email has warning signs. Do not click links or open attachments until you confirm the sender independently.

Sender Analysis

FAIL
  • Display name "PayPal Security" impersonates "paypal" but the address is security@paypa1.com.

Authentication (SPF/DKIM/DMARC)

WARN
  • Live SPF/DKIM/DMARC lookup is server-side — enable the DNS API to verify (demo shows WARN).

Reply-To Check

FAIL
  • Reply-To domain "paypa1-support" differs from From domain "paypa1".

Domain Analysis

PASS
  • Domain "paypa1" shows no obvious typosquat pattern.

Content Analysis

FAIL
  • Urgency/social-engineering phrase: "urgent".
  • Urgency/social-engineering phrase: "immediately".
  • Urgency/social-engineering phrase: "verify your account".
  • Urgency/social-engineering phrase: "suspended".
  • Urgency/social-engineering phrase: "locked".
  • Urgency/social-engineering phrase: "click here".
  • Urgency/social-engineering phrase: "confirm your".
  • Requests sensitive credentials or information.

Link Analysis

FAIL
  • 1 link(s) use plain HTTP, an IP address, or a URL shortener.

Attachment Analysis

PASS
  • No attachments referenced.

What EmailGuard checks

Every email is scored across the signals scammers rely on — so nothing slips through.

Sender & display-name checks

Catches impersonation where the name says “PayPal” but the address doesn’t.

Domain & typosquat analysis

Flags look-alike domains and freshly registered lookalikes of real brands.

Authentication (SPF/DKIM/DMARC)

Verifies the email is genuinely from who it claims to be.

Reply-To hijack detection

Warns when replies would go somewhere other than the sender.

Link & attachment scanning

Surfaces shorteners, IP links, and dangerous file types before you click.

Actionable advice

Every verdict ends with a clear, calm next step — not jargon.

Questions, answered

Is my email data stored?

No. Checks run in your browser/session and we never persist your email content. You can optionally save a result to your account.

Do I need an account?

Not to check an email — it’s free and instant. Accounts are only for saving history and trusted senders.

Can it open my attachments?

Never. We only inspect file names and types for risk signals; attachments are never executed or uploaded unless you choose to.

What if the verdict is wrong?

Use “Report wrong verdict” on any result. Admins review false positives to improve the engine.

Got a suspicious email?

Check it now — free, private, and takes seconds.