Free tools to spot
& stop phishing.
Spot a phishing email, dissect a suspicious link, trace a message's real path, and check the DMARC / SPF / DKIM records that stop spoofing — all free, no signup, running right in your browser.
Most used
Start here
Phishing Quiz
Can you spot a phishing message? Realistic email, SMS, QR, voice & social scenarios, scored.
Take the quizBreach & exposureData Breach Checker
See if a domain appears in known breaches and dark-web leaks.
Check a domainURL & link analysisPhishing URL Checker
Paste a link, get a scored red-flag breakdown in seconds.
Check a URLEmail investigationEmail Header Analyzer
Trace a message's real delivery path from its raw headers.
Analyze headersThe full toolkit
Email authentication
Why free phishing tools?
Most phishing defeats people, not technology. A lookalike domain, a spoofed sender, a link that reads support-icloud.com instead of icloud.com — the trick is almost always a small detail the eye skips under pressure. These tools make those details obvious.
The toolkit spans the whole phishing lifecycle: a phishing-awareness quiz to train your eye, a data-breach and dark-web exposure checker, a URL red-flag analyzer and an email-header tracer for investigating suspicious messages, and DMARC, SPF and DKIM checkers plus generators to lock down your own domain against spoofing. Each one is self-contained, free, and needs no account.
They run entirely in your browser where possible — no signup, no data stored. The DMARC, SPF, and DKIM checkers perform live DNS lookups so you can confirm whether your own domain is configured to stop spoofing before an attacker tests it for you.
Checking a single URL or email is the manual version of what a brand-protection program does continuously. When the same actor registers fifty lookalike domains and pushes them through bulk SMS, one-at-a-time checking doesn't scale — that's where phishing & scam protection and automated takedowns take over.
From spotting one phish to stopping the whole campaign
Checking a single URL is the manual version of what PhishEye does continuously — detection, evidence, and coordinated takedowns across every channel at once.
