Connexion
Aperçu de nicodAImus iris - Phishing Detector

nicodAImus iris - Phishing Detector par nicodAImus

Privacy-first phishing detection for Gmail and Proton Mail. Scores emails 0-10 by checking DKIM/SPF/DMARC, domain impersonation, suspicious links, and urgency language. All analysis happens locally.

0 (0 critiques)
TĂ©lĂ©charger Firefox et obtenir l’extension
Télécharger le fichier
Captures d’écran
Phishing email detected in Proton Mail - iris panel shows all analysis signals including authentication failure, domain impersonation, pressure language, credential requests, and generic greeting detection with individual risk scores.Deutsche Bank phishing email scored 10/10 in Proton Mail - iris identifies domain impersonation (deutschebank-konto.xyz mimicking deutsche-bank.de) with detailed threat explanation.Legitimate GitHub notification scored 0/10 in Proton Mail - iris shows "Verified Sender" badge confirming the email passes all authentication checks with no suspicious signals.Legitimate Google Play receipt scored 0/10 in Gmail - iris confirms the email from google.com has no suspicious signals and all links point to the expected domain.Suspicious email scored 3/10 in Gmail - iris flags a URL shortener (tinyurl.com) hiding the real destination and an impersonal "Dear User" greeting as warning signals.
À propos de cette extension
What is iris?

nicodAImus iris scans your emails for phishing risks and scores them 0-10, entirely in your browser. No data ever leaves your machine.

How it works

Open an email in Gmail or Proton Mail, then click Scan. iris analyzes the email and shows a threat score with detailed signals explaining why an email may be suspicious.

What iris checks
  • Email authentication - DKIM, SPF, DMARC verification
  • Domain impersonation - homoglyph detection (e.g. "paypa1.com" mimicking "paypal.com")
  • URL shorteners - links that hide the real destination (bit.ly, tinyurl, etc.)
  • Pressure language - urgency tactics ("Act now", "account suspended")
  • Credential requests - emails asking for your password
  • Generic greetings - "Dear Customer" instead of your name
  • Display name spoofing - sender name doesn't match the actual email address
  • Suspicious attachments - potentially dangerous file types

Privacy

All analysis is performed locally in your browser. Zero network requests. Zero data collection. Zero tracking.

Permissions explained
  • mail.google.com - Read email content for local phishing analysis in Gmail
  • mail.proton.me - Read email content for local phishing analysis in Proton Mail
  • activeTab - Communicate between the extension panel and the email tab

Open source

Review the code: github.com/Paxtiny/iris

Disclaimer

iris is a best-effort analysis tool. It does not guarantee detection of all phishing attempts.
Noté 0 par 1 personne

Le nombre d’étoiles est enregistrĂ©

5
0
4
0
3
0
2
0
1
0
Aucune critique pour l’instant
Autorisations et données

Autorisations nécessaires :

  • AccĂ©der Ă  vos donnĂ©es pour mail.google.com
  • AccĂ©der Ă  vos donnĂ©es pour mail.proton.me

Autorisations facultatives :

  • AccĂ©der Ă  vos donnĂ©es pour mail.google.com
  • AccĂ©der Ă  vos donnĂ©es pour mail-attachment.googleusercontent.com
  • AccĂ©der Ă  vos donnĂ©es pour mail.proton.me

Collecte de données :

  • Le dĂ©veloppeur indique que cette extension n’a pas besoin de collecter de donnĂ©es.
En savoir plus
Plus d’informations
Version
0.1.0
Taille
184,5 Ko
DerniĂšre mise Ă  jour
il y a 4 jours (20 mars 2026)
Catégories associées
Historique des versions
Ajouter Ă  la collection
Signaler ce module