About
Making it a little harder to get phished.
Why this exists
Phishing links are everywhere: in emails, DMs, QR codes, shortened URLs. Most people click and hope for the best. The tools that exist either hand you a pass/fail verdict from a database with no explanation, or do a thorough crawl that takes too long to be useful in the moment. There's no fast middle ground that also shows its work.
url.vet is that middle ground. Paste a link, get a result in a few seconds: a trust score, a verdict, and a full breakdown of every signal that contributed to it. No black-box ML. No signup. Every decision is visible.
It runs 18 checks in parallel: URL structure, DNS records, TLS certificates, domain age, typosquatting, page content, and live threat feeds. You see exactly why something scored the way it did. That's the only way a safety verdict is useful when you need to decide right now.
How we think about it
Explainability over accuracy theatre
A verdict you can't explain is a verdict you can't trust. Every signal is shown, whether it helped or hurt the score.
Live over cached
Phishing pages spin up and disappear in hours. Scanning at request time catches what static databases miss.
Open source by default
Security tools should be auditable. The entire detection engine is on GitHub under AGPL-3.0.
No friction
No account, no ads, no API key. Paste a URL, get an answer.
Team
Creator & maintainer
Builds things on the internet. Got one too many suspicious links with no good way to check them, so built url.vet.
With help from friends on GitHub.
Open source
url.vet is dual-licensed. The community edition is AGPL-3.0, free to use, self-host, and modify. Any modified version served over a network must make its source code available. Found a bug or want to contribute? Pull requests are welcome.
Get in touch
Feedback, false positives, partnership inquiries, or just saying hi. Reach out at [email protected].