FakeOrLegit - Scam Checker 作者： Display Name:

FakeOrLegit is the fastest way to check whether a website, email, or text message is a scam right from your browser.

Paste a suspicious URL into the pop-up, or right-click any link or selected text on a page, and get back a plain-English risk report in seconds. You see the risk score (0-100), the risk level (Low / Medium / High / Critical), the specific red flags we detected, and a link to the full report on fakeorlegit.io.

Built for everyday people. No technical jargon, no setup, no account required.

WHAT IT CHECKS

Websites:
- Suspicious top-level domains (.shop, .xyz, .top, .click, etc. that get heavily abused)
- Brand impersonation patterns common to major payment processors, online retailers, shipping carriers, banks, and government agencies
- Urgency words inside hostnames ("secure", "verify", "login", "account")
- Punycode / non-ASCII characters that imitate Latin letters
- Hostname length, hyphen patterns, subdomain depth
- HTTPS configuration

Emails and text messages:
- Pressure and urgency language
- Requests for passwords, codes, or sensitive identifiers
- Requests for gift cards, wire transfers, or cryptocurrency
- Links to look-alike domains
- Phone numbers used in call-back scams
- Brand mentions common in impersonation campaigns

The heuristic checks run instantly. A cost-controlled AI model adds the plain-English explanation. Results for URLs are cached for 7 days at the hostname level so repeat checks are free and fast.

THREE WAYS TO USE IT

1. Click the FakeOrLegit shield in your toolbar to open the popup. Paste a URL or message and press Check.
2. Right-click a link on any page and choose "Check this link with FakeOrLegit". The popup opens with the URL pre-filled and the check auto-runs.
3. Right-click selected text (a suspicious email body, an SMS quote) and choose "Check selection with FakeOrLegit".

PRIVACY

• No account or email required to use the extension
• The raw text of submitted messages is never stored. We store only a SHA-256 hash for de-duplication
• URL checks store the hostname and the risk report
• The extension itself does not include third-party analytics or trackers
• We do not sell user data
• Full privacy policy: https://www.fakeorlegit.io/privacy

WHO MAKES IT

FakeOrLegit is operated by Aura Bionics Inc. We are not affiliated with any of the companies, financial institutions, or government agencies referenced in our scam-pattern detection. Independent consumer-safety analysis only.

DISCLAIMER

FakeOrLegit provides risk signals, not a guarantee. A Low score does not prove a site is safe; a Critical score does not prove malicious intent. Always use your own judgment, and verify any sensitive request by contacting the real institution directly through their official app or website before sharing personal or payment information.