ClickArmor
ClickArmor is designed to detect and prevent social engineering attacks in browser 100% locally.
As of June 2026, ClickArmor has 5 users and a 4.00/5 rating from 3 reviews in the Privacy & Security category.
Usersdown 37.5 percent−37.5%
5
5
Ratingdown 20.0 percent−20.0%
4.00
3 reviews
Reviewsup 200.0 percent+200.0%
3
Version
2
Manifest V3
90-day change · In the last 90 days this extension 1 version update, changed permissions.
History
7 snapshotsTracking since Apr 1, 2026.
View as table
| Date | Users | Rating | Reviews | Version |
|---|---|---|---|---|
| Apr 1, 2026 | 8 | 5.00 | 1 | 1.3.1 |
| Apr 16, 2026 | 10 | 3.50 | 2 | 1.3.1 |
| May 10, 2026 | — | — | — | — |
| May 15, 2026 | 4 | 4.00 | 3 | 2 |
| May 22, 2026 | 3 | 4.00 | 3 | 2 |
| May 28, 2026 | 4 | 4.00 | 3 | 2 |
| Jun 4, 2026 | 3 | 4.00 | 3 | 2 |
| Now | 5 | 4.00 | 3 | 2 |
Changelog
- May 10, 2026description
(empty)
ClickArmor protects you from social engineering and phishing attacks in real time. ClickFix Protection ClickArmor monitors clipboard activity and analyzes page behavior locally in your browser, catching attacks at multiple stages, from the fake lure to the malicious payload reaching your clipboard. When a threat is detected, ClickArmor can clear the clipboard and display a detailed warning. Detects: Fake CAPTCHA and “human verification” pages that instruct you to run commands Fake browser update screens with simulated download progress Obfuscated script loaders that fetch payloads from remote infrastructure Clipboard hijacking via writeText, execCommand, and DataTransfer APIs Hidden command payloads embedded in page elements Multi-stage attacks that replace the page with document.write() Homoglyph and Unicode evasion techniques, including Cyrillic lookalikes and zero-width characters Credential Phishing Protection: ClickArmor scans pages for credential harvesting and brand impersonation on domains that do not belong to the brand being shown. If you land on a fake Microsoft, Google, PayPal, Adobe, or banking login page, ClickArmor can display a full-screen warning identifying the impersonated brand and the legitimate domain you should expect. It also detects brand impersonation hosted on abused platforms such as Google Sites, Google Forms, and SharePoint, as well as AiTM-style login relay pages. How it works: Page-level scanning identifies social engineering signals, brand impersonation, and AiTM indicators Clipboard hooks intercept suspicious write attempts before payloads reach your clipboard Form analysis detects credential harvesting on unofficial domains High-confidence threats trigger a warning banner or blocking overlay You decide whether to leave the site, whitelist it, or continue at your own risk Privacy first All detection runs 100% on-device. No telemetry. No cloud lookups for browsing activity. No data collection. Your browsing stays in your browser. Validation: ClickArmor has been tested against: 56,000+ real-world phishing URLs from PhishTank 5,000+ ClickFix-related domains from ThreatFox
- May 10, 2026short_description
(empty)
ClickArmor is designed to detect and prevent social engineering attacks in browser 100% locally.
- May 10, 2026name
Unknown
ClickArmor
- May 10, 2026category
(empty)
make_chrome_yours/privacy
- May 10, 2026host_permissions
(empty)
<all_urls>
- May 10, 2026permissions
(empty)
storage, clipboardRead, clipboardWrite, activeTab, tabs, alarms
- Apr 16, 2026description
ClickArmor protects you from social engineering attacks in real time — both ClickFix clipboard hijacks and credential phishing pages that impersonate trusted brands. --ClickFix Protection: Monitors clipboard activity and analyzes page behavior in real time, catching attacks at multiple stages — from the fake lure to the malicious payload hitting your clipboard. When a threat is detected, ClickArmor wipes the clipboard and shows a detailed warning. Detects: 1. Fake CAPTCHA and human verification pages that instruct you to run commands 2. Fake browser update screens with simulated download progress 3. Obfuscated script loaders that fetch payloads from remote C2 servers 4. Clipboard hijacking via writeText, execCommand, and DataTransfer APIs 5. Hidden command payloads embedded in page elements 6. Multi-stage attacks that replace the page via document.write() 7. Homoglyph and Unicode evasion techniques (Cyrillic lookalikes, zero-width characters) --Credential Phishing Protection: Scans pages for login forms impersonating major brands on domains that don't belong to them. If you land on a fake Microsoft, Google, PayPal, or bank login page, ClickArmor shows a full-screen warning identifying the impersonated brand and the real domain you should be on. Detects brand impersonation hosted on legitimate platforms like Google Docs, Forms & SharePoint. How it works: 1. Page-level scanning identifies social engineering signals and brand impersonation 2. Clipboard hooks intercept write attempts before payloads reach your clipboard 3. Form analysis detects credential harvesting on unofficial domains 4. If the threat scores above threshold, a warning overlay is displayed 5. You choose: leave the site, whitelist it, or continue at your own risk Privacy first: All detection runs 100% on-device. No telemetry, no cloud lookups, no data collection. Your browsing activity stays entirely in your browser. Validated against 56,000+ real-world phishing URLs from PhishTank and 5,000+ ClickFix domains from ThreatFox. Currently in public testing — if you find a bypass, please report it so detection can keep improving.
(empty)
- Apr 16, 2026short_description
Blocks ClickFix clipboard hijacks locally in real time (100% on-device).
(empty)
- Apr 16, 2026name
ClickArmor
Unknown
- Apr 16, 2026category
make_chrome_yours/privacy
(empty)
- Apr 16, 2026host_permissions
<all_urls>
(empty)
- Apr 16, 2026permissions
storage, clipboardRead, clipboardWrite, activeTab, tabs, alarms
(empty)
Permissions & access
- Permissions
- storageclipboardReadclipboardWriteactiveTabtabsalarms
- Host access
- <all_urls>
Screenshots
About
ClickArmor protects you from social engineering and phishing attacks in real time. ClickFix Protection ClickArmor monitors clipboard activity and analyzes page behavior locally in your browser, catching attacks at multiple stages, from the fake lure to the malicious payload reaching your clipboard. When a threat is detected, ClickArmor can clear the clipboard and display a detailed warning. Detects: Fake CAPTCHA and “human verification” pages that instruct you to run commands Fake browser update screens with simulated download progress Obfuscated script loaders that fetch payloads from remote infrastructure Clipboard hijacking via writeText, execCommand, and DataTransfer APIs Hidden command payloads embedded in page elements Multi-stage attacks that replace the page with document.write() Homoglyph and Unicode evasion techniques, including Cyrillic lookalikes and zero-width characters Credential Phishing Protection: ClickArmor scans pages for credential harvesting and brand impersonation on domains that do not belong to the brand being shown. If you land on a fake Microsoft, Google, PayPal, Adobe, or banking login page, ClickArmor can display a full-screen warning identifying the impersonated brand and the legitimate domain you should expect. It also detects brand impersonation hosted on abused platforms such as Google Sites, Google Forms, and SharePoint, as well as AiTM-style login relay pages. How it works: Page-level scanning identifies social engineering signals, brand impersonation, and AiTM indicators Clipboard hooks intercept suspicious write attempts before payloads reach your clipboard Form analysis detects credential harvesting on unofficial domains High-confidence threats trigger a warning banner or blocking overlay You decide whether to leave the site, whitelist it, or continue at your own risk Privacy first All detection runs 100% on-device. No telemetry. No cloud lookups for browsing activity. No data collection. Your browsing stays in your browser. Validation: ClickArmor has been tested against: 56,000+ real-world phishing URLs from PhishTank 5,000+ ClickFix-related domains from ThreatFox
Technical
- Version
- 2
- Manifest
- V3
- Size
- 112KiB
- Min Chrome
- 88
- Languages
- 1
- Featured
- No
Metadata
- ID
- gbbiaedhdapkbfmjgpepebidjpiphgmm
- Developer ID
- u2705d0010e2fd83d669f68409bfa8786
- Developer Email
- [email protected]
- Created
- Mar 2, 2026
- Last Updated (Store)
- May 4, 2026
- Last Scraped
- Jun 10, 2026
- Website
- —
- Support URL
- —
Similar extensions
Alternatives to ClickArmor, ranked by description similarity.
ClickFix Mitigator
Detects ClickFix patterns and clipboard mismatches.
15
★ 4.4
ClickFix Block
Block ClickFix and Fake CAPTCHAs by hooking JavaScript copy-to-clipboard functions.
—
★ 5.0
SafeClick - Website Trust Scanner
Intelligent Browser Extension For Website Trust Scoring, Phishing Detection & Credential Protection
16
★ 5.0
BinHex.Ninja Security
ClickFix attack protection by BinHex.Ninja - Blocks ClickFix attacks, clipboard hijacking, and malicious social engineering attempts
22
★ 3.5
SafeClick
SafeClick detects phishing risks and explains them. Includes image detection and smart analysis.
—
★ 5.0
Phish Protect
Phish Protect detects phishing pages & blocks BEEF exploits to keep you safe online.
8
Criminal IP: AI-based Phishing Link Checker
A web browsing guard against malicious, scam, or phishing websites based on AI.
5.0K
★ 4.8
ScamGuard
AI-Powered Cybersecurity website Behavioural Analyst
—
Data sourced from the Chrome Web Store · last verified Jun 10, 2026.