Analyze suspicious messages and links
Privacy acknowledgement
Do not enter real passwords, Social Security numbers, banking details, or sensitive personal information. Messages are sent to the backend only for analysis and are not stored there. Recent scans are saved in this browser only when local history is enabled.
Submit a message to generate a phishing risk report with score, indicators, and recommended action.
Examples
Load a realistic sample into the scanner to see how each detection rule contributes to the final score.
Critical credential theft
Claims your account will be locked unless you reset your password immediately.
Expected: Critical risk: urgency, credential request, social engineering, generic greeting, suspicious link, sender mismatch
Medium-risk delivery pressure
Uses a delivery problem and time pressure, but does not include a link or credential request.
Expected: Moderate evidence: payment wording and limited-time pressure
Critical banking phishing
Pretends to be a bank security warning and asks for verification.
Expected: Strong evidence: account pressure, IP URL, credential request
Medium-risk reward bait
Promises priority access and asks the user to download instructions.
Expected: Moderate evidence: reward language and attachment request
Account suspension pressure
Uses school account pressure and a generic greeting.
Expected: Strong evidence: urgency, credential request, generic greeting
Benign workplace message
A low-risk meeting reminder with no pressure, links, or credential request.
Expected: Low evidence: no clear phishing indicators
Attackers often create time pressure so users act before thinking or verifying.
Shortened links, IP-based links, and login links in unexpected messages deserve extra caution.
Legitimate services rarely ask you to submit passwords or codes through message links.
Names can be faked. Always compare sender domains and official contact methods.
Unexpected attachments can carry malware, especially when they ask you to enable content.
Phishing works by abusing trust, fear, curiosity, or reward signals to shape behavior.
PhishGuard started as a cybersecurity awareness project to better understand how phishing messages can be broken down into clear rule-based signals. Instead of giving a vague warning, it shows the score, the evidence behind that score, and the next steps a user should consider before clicking a link or replying.
The goal is not to pretend this replaces a real email security platform. It is a hands-on way to learn how urgency, suspicious links, sender mismatches, credential requests, and social engineering language can work together in a phishing attempt.
Disclaimer: PhishGuard is an educational tool and should not replace professional cybersecurity software, email filtering systems, or expert analysis.