Free, browser-based utilities for everyday developer workflows

Unicode Domain Spoof Checker

Security Tools

Check domains for Unicode look-alikes, mixed scripts, and normalization changes locally in your browser with trusted-domain comparison and safe evidence.

  • Paste a suspicious link, sender, domain, raw header, or copied message text.
  • The tool automatically detects the input type and runs local checks.
  • No URL is fetched, opened, or rendered as a clickable result.
Runs locally

Inspect suspicious content

Runs in your browser. Your pasted content is not sent to a server.

Not sure? Just paste it above. We will detect it automatically.

Safe example gallery

How to use the Unicode Domain Spoof Checker

Paste a domain or URL to inspect confusable letters, mixed scripts, and normalization changes locally. It helps you spot spoofed domains before you trust the link.

What it does

  • Flags mixed scripts and confusable characters inside domains.
  • Shows when normalization changes the pasted value.
  • Compares suspicious hostnames against a trusted domain locally.

When to use it

  • A domain uses characters that look normal at first glance.
  • You want to compare the hostname against a trusted brand.
  • You suspect the pasted URL has been normalized or altered.

How to use it

  1. Paste the domain or full URL into the input.
  2. Add a trusted domain for comparison if you have one.
  3. Run Analyze locally and inspect the domain and Unicode panels.
  4. Review the risk summary before copying or sharing the report.

FAQ

  • Does this tool fetch suspicious links? No. All analysis runs locally in your browser and the tool does not open or fetch pasted URLs.
  • Can I paste raw email headers? Yes. Paste raw headers and the inspector checks From, Reply-To, Return-Path, Authentication-Results, and related spoofing indicators locally.
  • Does the inspector send my input to a server? No. Everything stays in your browser. Nothing you paste is sent to a server or third-party API.
  • What kinds of spoofing does it look for? It looks for invisible characters, bidi controls, mixed scripts, confusable domains, Punycode hostnames, misleading subdomains, credential-in-URL tricks, and sender mismatches.
  • Can it compare a suspicious value against a trusted domain? Yes. You can enter an optional trusted domain so the inspector can compare the pasted content against a known-good brand or host locally.

Related guides