Advanced URL phishing detection — Heuristics + Google Safe Browsing + VirusTotal
How phishing detection works
PhishRadar analyzes URLs, IP addresses, domains, and file hashes to detect phishing attempts and malicious content. It combines three independent detection layers — each with different strengths — for maximum accuracy and coverage.
Analyzes 15+ structural signals in the URL itself — no external API needed. Works entirely offline and returns results immediately.
Checks the URL against Google's constantly updated threat lists — the same database Chrome uses to show "This site may be harmful" warnings. 10,000 free requests/day.
Submits the URL to 70+ antivirus and security engines simultaneously. Each engine independently determines if the URL is malicious, suspicious, or clean. The more engines that flag it, the higher the risk score boost.
Paste any suspicious email (with headers and body) to get a structured phishing risk score. Works without any external API — all analysis runs locally using header inspection and URL heuristics.
Full 3-layer analysis of any URL. Combines heuristics, Google Safe Browsing, and VirusTotal for the most comprehensive result.
Check if an IP is known for hosting malware, phishing pages, or command-and-control servers. Shows country, ASN, and 94 engine verdicts.
Full domain reputation check — registrar, age, categories, and engine verdicts. Older domains with clean history are more trustworthy.
Check if a file (by MD5/SHA1/SHA256) is known malware — without uploading or opening it. Instant lookup against 76+ engines.
Paste a raw email (headers + body) and get a full phishing analysis — detects spoofed senders, Reply-To mismatches, urgency tactics, brand impersonation, and scans every embedded URL.
PhishRadar is a security research and educational tool. A clean result does not guarantee a URL is safe — new phishing pages may not yet be indexed. Always exercise caution with unsolicited links.