PhishScan — AI Phishing Detection

Check emails and links for phishing with AI. Gmail, Outlook, proactive inbox scanning, right-click on any link.

As of July 2026, PhishScan — AI Phishing Detection has users in the Productivity category.

Usersno change0%
Ratingno change0%
— reviews
Reviewsno change0%
Version
1.3.5
Manifest V3

History

1 snapshots

Tracking since Jul 1, 2026.

Not enough history yet for this metric — the chart fills in as we collect more snapshots.
View as table
DateUsersRatingReviewsVersion
Jul 1, 20261.3.5
Now1.3.5

Permissions & access

Permissions
contextMenusstoragenotificationsactiveTab
Host access
https://mail.google.com/*, https://outlook.live.com/*, https://outlook.office.com/*, https://outlook.office365.com/*, https://phishscan.io/*

Screenshots

PhishScan — AI Phishing Detection screenshot 1PhishScan — AI Phishing Detection screenshot 2PhishScan — AI Phishing Detection screenshot 3PhishScan — AI Phishing Detection screenshot 4

About

Stop phishing before you click. PhishScan checks suspicious emails and links with AI and a dozen reputation sources, then gives you a clear verdict — safe, suspicious, or phishing — with a 0–100 risk score and a plain-language explanation.

WHAT IT DOES
• Check an email in Gmail or Outlook with one click — a "Check with PhishScan" button right in the message.
• Right-click any link on any page → "Check with PhishScan" to scan it before you open it.
• Proactive inbox scanning (optional): risk dots appear next to unread emails before you even open them.
• Popup checker: paste email text, a URL, or upload an .eml file.

HOW IT WORKS
PhishScan doesn't rely on a single blacklist. It combines an AI model that reads the content for social-engineering cues with deterministic checks:
• URL reputation — VirusTotal, Google Safe Browsing, PhishTank, DNS blocklists
• Domain intelligence — WHOIS age, DNS history, SSL, GeoIP, bulletproof-hosting detection
• Email authentication — SPF, DKIM, DMARC, sender-spoofing and reply-to checks
• Attachment scanning — ClamAV + YARA (files are never uploaded — checked by hash)
• QR-code phishing (quishing) — decodes the link hidden in a QR image
• A safe screenshot of the page is rendered on isolated infrastructure, so the risky site never loads on your device

WHY PHISHSCAN
• Multi-source analysis, not just one verdict
• Catches modern attacks: business email compromise, lookalike domains, QR-code phishing
• Fast — a verdict in seconds, without opening the dangerous link
• Privacy-first — by default we don't store your email content; attachments are checked by hash only

REQUIRES A PHISHSCAN ACCOUNT
The extension connects to your PhishScan account via an API key. Create an account and get your key at https://phishscan.io/account/api-keys. Plans and pricing: https://phishscan.io/pricing

PRIVACY
We take privacy seriously: by default the content of your checks is not stored, and attachments are never written to disk. Full policy: https://phishscan.io/privacy

Questions or feedback: [email protected]

Technical

Version
1.3.5
Manifest
V3
Size
40.54KiB
Min Chrome
88
Languages
1
Featured
No

Metadata

ID
kmnlmihbnjpgegjbgonioedpbigohafc
Developer ID
u1c9307c8d456a7b5e490eb6379c5cb87
Developer Email
[email protected]
Created
Jun 30, 2026
Last Updated (Store)
Jun 30, 2026
Last Scraped
Jul 1, 2026
Website
phishscan.io
Support URL

Data sourced from the Chrome Web Store · last verified Jul 1, 2026.