Start Protecting Your Inbox Today
Free to install. No credit card. No scary permissions on day one.
Add PhishGuard to Chrome
PhishGuard scans every Gmail message using AI, real email authentication, IP reputation, and 750,000+ threat URLs — all in seconds.
✓ Free tier available · No credit card required · Gmail only
PhishGuard doesn't rely on a single signal. It runs six detection layers in parallel so nothing slips through.
Instantly classifies emails from 30 known-safe domains client-side — no network request, no quota cost.
~0ms · Client-sideStandard mode performs live DNS lookups to verify SPF and DMARC policy configuration. Enhanced mode (Pro — coming soon) additionally verifies the DKIM cryptographic signature of each individual email via the Gmail API.
~0.3s · DNS + APIPattern matching for brand impersonation, bulk-mailer spoofing, reply-to mismatches, dangerous attachments, QR codes, and URL obfuscation.
Instant · 19 brandsEvery link checked against 752K locally-cached threat URLs, Google Safe Browsing hash prefixes, and URLhaus live feed.
~1s · 3 sourcesSender IP resolved and checked against 41K locally-cached malicious IPs and AbuseIPDB's live API.
~1s · 2 sourcesEmail body, sender context, links, and attachments analyzed by a large language model trained to spot social engineering and phishing language.
~3s · LLMEvery feature exists to catch real threats — not to pressure you into upgrading.
The only extension that verifies actual SPF, DKIM, and DMARC records via the Gmail API. Catches spoofed senders that look perfectly legitimate.
LLaMA 4 reads the email like a security analyst — flagging social engineering, fake urgency, credential harvesting attempts, and impersonation language.
Emails sent via Brevo, SendGrid, or Mailgun that impersonate known brands are caught — even when SPF/DKIM passes for the mailer's own domain.
Sender IPs checked against 41K known-malicious addresses. Cross-referenced with AbuseIPDB for up-to-date threat intelligence.
Emails from Google, LinkedIn, GitHub, PayPal, and 27 other safe domains are classified instantly with no API calls and no quota usage.
No data stored server-side. Email content is processed transiently and discarded. No tracking, no ads, no selling your data. Ever.
PhishGuard is free. Pro features are coming soon — try the free version now and shape what comes next.
Competitors rely on URL blacklists alone. PhishGuard adds AI, email authentication, and IP reputation.
| Feature | Netcraft | Guardio | PhishGuard |
|---|---|---|---|
| URL Threat Database | ✓ | ✓ | ✓ 752K URLs |
| AI Body Analysis | — | — | ✓ AI Analysis |
| SPF / DKIM / DMARC | — | — | ✓ Gmail API + DOM |
| IP Reputation | — | — | ✓ 41K IPs |
| Brand Impersonation Detection | — | — | ✓ 19 brands |
| Bulk Mailer Spoofing Detection | — | — | ✓ |
| Free tier (no credit card) | ✓ | — 7-day trial only | ✓ Free forever |
| Price | Free | $9.99/mo | Free / Pro coming soon |
PhishGuard is built on a simple principle: analyze to protect, never to store or profit.
Email content is processed in memory and discarded immediately after scanning. Nothing is written to disk.
Enhanced Protection reads only email authentication headers (SPF/DKIM/DMARC). It does not read, store, or forward email bodies.
No analytics scripts. No ad networks. No third-party cookies. The extension has no interest in who you are.
Threat databases are cached locally. Most scans never leave your browser — only unknown domains trigger a backend call.
Read the full Privacy Policy →
Free to install. No credit card. No scary permissions on day one.
Add PhishGuard to Chrome