Prihlásiť sa
Náhľad témy nicodAImus iris - Phishing Detector

nicodAImus iris - Phishing Detector Autor: nicodAImus

Privacy-first phishing detection for Gmail and Proton Mail. Scores emails 0-10 by checking DKIM/SPF/DMARC, domain impersonation, suspicious links, and urgency language. All analysis happens locally.

0 (počet recenzií: 0)
Stiahnuť Firefox a získať rozšírenie
Stiahnuť súbor
Snímky obrazovky
Phishing email detected in Proton Mail - iris panel shows all analysis signals including authentication failure, domain impersonation, pressure language, credential requests, and generic greeting detection with individual risk scores.Deutsche Bank phishing email scored 10/10 in Proton Mail - iris identifies domain impersonation (deutschebank-konto.xyz mimicking deutsche-bank.de) with detailed threat explanation.Legitimate GitHub notification scored 0/10 in Proton Mail - iris shows "Verified Sender" badge confirming the email passes all authentication checks with no suspicious signals.Legitimate Google Play receipt scored 0/10 in Gmail - iris confirms the email from google.com has no suspicious signals and all links point to the expected domain.Suspicious email scored 3/10 in Gmail - iris flags a URL shortener (tinyurl.com) hiding the real destination and an impersonal "Dear User" greeting as warning signals.
O tomto rozšírení
What is iris?

nicodAImus iris scans your emails for phishing risks and scores them 0-10, entirely in your browser. No data ever leaves your machine.

How it works

Open an email in Gmail or Proton Mail, then click Scan. iris analyzes the email and shows a threat score with detailed signals explaining why an email may be suspicious.

What iris checks
  • Email authentication - DKIM, SPF, DMARC verification
  • Domain impersonation - homoglyph detection (e.g. "paypa1.com" mimicking "paypal.com")
  • URL shorteners - links that hide the real destination (bit.ly, tinyurl, etc.)
  • Pressure language - urgency tactics ("Act now", "account suspended")
  • Credential requests - emails asking for your password
  • Generic greetings - "Dear Customer" instead of your name
  • Display name spoofing - sender name doesn't match the actual email address
  • Suspicious attachments - potentially dangerous file types

Privacy

All analysis is performed locally in your browser. Zero network requests. Zero data collection. Zero tracking.

Permissions explained
  • mail.google.com - Read email content for local phishing analysis in Gmail
  • mail.proton.me - Read email content for local phishing analysis in Proton Mail
  • activeTab - Communicate between the extension panel and the email tab

Open source

Review the code: github.com/Paxtiny/iris

Disclaimer

iris is a best-effort analysis tool. It does not guarantee detection of all phishing attempts.
Hodnotené 0 od 0 recenzentov

Hodnotenie bolo uložené

5
0
4
0
3
0
2
0
1
0
Zatiaľ žiadne recenzie
Povolenia a údaje

Požadované oprávnenia:

  • Pristupovať k údajom pre mail.google.com
  • Pristupovať k údajom pre mail.proton.me

Voliteľné povolenia:

  • Pristupovať k údajom pre mail.google.com
  • Pristupovať k údajom pre mail-attachment.googleusercontent.com
  • Pristupovať k údajom pre mail.proton.me

Zber údajov:

  • Vývojár uvádza, že toto rozšírenie nevyžaduje zhromažďovanie údajov.
Ďalšie informácie
Ďalšie informácie
Verzia
0.1.0
Veľkosť
184,5 kB
Posledná aktualizácia
pred 4 dňami (20. mar 2026)
Príbuzné kategórie
Licencia
Licencia MIT
História verzií
Pridať do kolekcie
Nahlásiť tento doplnok