Forensic triage · live

Forensic-grade phishing analysis, in seconds.

Paste any suspicious email. Get a verdict, threat indicators, and a clear explanation of every red flag — without a signup. Nothing is stored.

Quick demo on this page Open SOC workspace(split view + redaction)

Header forensics

SPF, DKIM, DMARC. Received chain. From / Reply-To / Return-Path mismatch detection.

URL & domain analysis

Display vs actual href, lookalike domains, suspicious TLDs, credential harvesting patterns.

Social engineering

Urgency, authority, fear, brand impersonation, linguistic anomalies — all flagged with evidence.

Privacy first

Zero retention

Email contents are never stored. No history, no database, no shareable links.

Built-in redaction

Strip emails, phones, IPs, SSNs and custom terms in your browser before sending.

Triage-grade speed

Structured report in under 10 seconds. Built for SOC workflows, not marketing.

Quick demo

Paste an email or load the demo

Single-pane preview. For triage with side-by-side report and redaction tooling, open the workspace.

Open SOC workspace

Paste raw source including headers. Gmail: ⋮ → Show original. Outlook: File → Properties → Internet headers.

Why does this seem suspicious? (optional)

Privacy: redact recipient names, internal hostnames, and PII before submitting. Email content is sent to a third-party AI provider for analysis. No raw email is retained — only the structured report.