🛡️

PHISH_SHIELD

V2.4_SECURE
🛡️
0 Total Analysis Run
⚠️
0 Threats Logged
🎓
0/4 Training Score

🔍 Quick Scan Center

Instantly analyze any suspicious text message, email body, or hyperlink.

📊 Session Threat Analytics

Real-time indicators processed during current browser session.

🎓 Test Your Cyber Security Awareness

Play our Phishing Simulation Challenge and learn to spot subtle phishing cues in emails & text messages.

Threat Indicator

Sender Spoofing

Attackers change the visible 'From' name and envelope domain to pretend they are Google, Microsoft, or your local bank, hiding the actual sending address.

Tactic Alert

Urgency & Fear

Threat actors demand immediate response (e.g. "within 24 hours") to bypass logical evaluation and push you to act impulsively.

Technical Defense

SPF & DKIM & DMARC

Protocols that verify an email server's authorization (SPF), guarantee payload integrity via crypto signatures (DKIM), and enforce alignment actions (DMARC).

📝 Email / Message Body Scanner

Scans paragraphs of emails, SMS alerts, or social media messages for deceptive intent patterns.

🖼️
Drag & drop message screenshot here or browse Supports PNG, JPG, WebP screenshots

Or Load Threat Templates

Fake Chase Account Freeze Notice HIGH RISK
Fake Crypto/Bitcoin Giveaway Scam HIGH RISK
Safe Shipping Confirmation notification SAFE

🛡️ Diagnostic Report

Heuristics evaluation breakdown & risk level metric.

0 Safe
Input a text body to begin scanning for threat metrics.

Threat Elements Triggered

No markers detected. Scan to list details.

🔗 Link / URL Safety Guard

Examines domain hierarchies, lookalikes, subdomains, and protocols for suspicious link architectures.

Or Load URL Examples

secure-login-chasebank.com.scamdomain.xyz CRITICAL
http://192.168.1.42/paypal/verify.html CRITICAL
https://www.microsoft.com/en-us/security SAFE

📊 URL Threat Report

Analyzes subdomains, TLD credibility, and potential brand spoofing.

0 Safe

Extracted Host Details

Parsed Host: -
Protocol Scheme: -

🌐 Live Network Audit -

DNS A-Record: -
Real-Time MX: -
SPF DNS Record: -
DMARC Policy: -
GeoIP Routing: -

Detected URL Red Flags

No URL checked. Diagnostics ready.

📧 Email Header Security Analyzer

Paste full, raw email headers (obtained from Outlook, Gmail, etc.) to review SPF, DKIM, DMARC alignment and identify relays.

Or Load Header Examples

Spoofed PayPal Email (SPF Fail, Return-Path mismatch) HIGH RISK
Authentic Microsoft Account Alert (SPF & DKIM Pass) SAFE

🛡️ Email Header Report

Analyzes authentication parameters and relay integrity.

0 Safe
SPF Check
-
DKIM Sign
-
DMARC Align
-

Key Sender Alignments

Declared From Address: -
Return-Path Address: -
Reply-To Address: -

🌐 Real-Time Sender DNS Audit -

DNS Resolution: -
Live SPF (TXT): -
Live DMARC (TXT): -
Real MX Servers: -

Authentication Anomalies

No headers parsed. Scan to audit details.

🎓 Interactive Phishing Training Lab

Train yourself to inspect message components. Select a scenario on the left, inspect the details, and decide whether it represents Phishing or is a Safe email.

Training Inbox Scenarios

📨 Secure Inbox Scan Controller

Perform a live security audit on your recent incoming emails via secure IMAP SSL routing.

⚠️ Use a generated single-use App Password. Never enter your master login password.
🔑 Complete Steps to Run Inbox Scan:
  1. Step 1: Check your IMAP server address:
    • Gmail: imap.gmail.com
    • Outlook / Hotmail: imap-mail.outlook.com
    • Yahoo: imap.mail.yahoo.com
  2. Step 2: Generate an App Password (Mandatory):

    Standard account passwords are blocked by mail providers. You must use a 16-character App Password:

    • Gmail: Go to Google Account Security → Enable 2-Step Verification → Search "App Passwords" → Create one named "PhishShield" → Copy the 16-character code.
    • Outlook / Hotmail: Go to Microsoft Account Security → Advanced Options → Scroll to App Passwords → Create App Password.
  3. Step 3: Enter Credentials & Scan:

    Fill in the IMAP address, your full email, the 16-character app password (without spaces), choose a limit, and click scan.

🛡️ Inbox Audit Report

Visual threat levels and triggered alarms calculated from raw email analysis.

📨

Configure credentials and initiate scan to display active threat audit reports.