PhishGuard scans every Gmail message using AI, real email authentication, IP reputation, and 750,000+ threat URLs — all in seconds.
✓ Free tier available · No credit card required · Gmail only
PhishGuard doesn't rely on a single signal. It runs six detection layers in parallel so nothing slips through.
Instantly classifies emails from 30 known-safe domains client-side — no network request, no quota cost.
~0ms · Client-sideStandard mode scrapes mailed-by/signed-by from Gmail's UI. Enhanced mode (Pro) uses the Gmail API to verify real SPF, DKIM, and DMARC records.
~0.3s · DOM + APIPattern matching for brand impersonation, bulk-mailer spoofing, reply-to mismatches, dangerous attachments, QR codes, and URL obfuscation.
Instant · 19 brandsEvery link checked against 752K locally-cached threat URLs, Google Safe Browsing hash prefixes, and URLhaus live feed.
~1s · 3 sourcesSender IP resolved and checked against 41K locally-cached malicious IPs and AbuseIPDB's live API.
~1s · 2 sourcesEmail body, sender context, links, and attachments analyzed by a large language model trained to spot social engineering and phishing language.
~3s · LLMEvery feature exists to catch real threats — not to pressure you into upgrading.
The only extension that verifies actual SPF, DKIM, and DMARC records via the Gmail API. Catches spoofed senders that look perfectly legitimate.
LLaMA 4 reads the email like a security analyst — flagging social engineering, fake urgency, credential harvesting attempts, and impersonation language.
Emails sent via Brevo, SendGrid, or Mailgun that impersonate known brands are caught — even when SPF/DKIM passes for the mailer's own domain.
Sender IPs checked against 41K known-malicious addresses. Cross-referenced with AbuseIPDB for up-to-date threat intelligence.
Emails from Google, LinkedIn, GitHub, PayPal, and 27 other safe domains are classified instantly with no API calls and no quota usage.
No data stored server-side. Email content is processed transiently and discarded. No tracking, no ads, no selling your data. Ever.
Start free. Upgrade when you need unlimited scans and the strongest protection available.
20% cheaper than Guardio — with stronger detection and no hidden fees.
Competitors rely on URL blacklists alone. PhishGuard adds AI, email authentication, and IP reputation.
| Feature | Netcraft | Guardio | PhishGuard |
|---|---|---|---|
| URL Threat Database | ✓ | ✓ | ✓ 752K URLs |
| AI Body Analysis | — | — | ✓ AI Analysis |
| SPF / DKIM / DMARC | — | — | ✓ Gmail API + DOM |
| IP Reputation | — | — | ✓ 41K IPs |
| Brand Impersonation Detection | — | — | ✓ 19 brands |
| Bulk Mailer Spoofing Detection | — | — | ✓ |
| Free tier (no credit card) | ✓ | — 7-day trial only | ✓ Free forever |
| Price | Free | $9.99/mo | Free / $7.99/mo |
PhishGuard is built on a simple principle: analyze to protect, never to store or profit.
Email content is processed in memory and discarded immediately after scanning. Nothing is written to disk.
Enhanced Protection reads only email authentication headers (SPF/DKIM/DMARC). It does not read, store, or forward email bodies.
No analytics scripts. No ad networks. No third-party cookies. The extension has no interest in who you are.
Threat databases are cached locally. Most scans never leave your browser — only unknown domains trigger a backend call.
Read the full Privacy Policy →