Phish.ly

Ever received an email that felt suspicious and wished for a quick, private way to check its safety? Phish.ly offers a solution by allowing you to **analyze suspicious emails for phishing threats** free of charge. Simply forward the questionable email, or an .eml file, to their service. It then automatically scrutinizes URLs using the capabilities of Tines and urlscan.io, delivering a security report to help you **identify potentially dangerous links**. Your privacy is a key consideration in how Phish.ly operates. **Crucially, all email data processed by Tines is purged immediately after the analysis concludes**, meaning the content of your emails is not stored. When URLs are extracted and submitted to urlscan.io for detailed examination, these **scans are conducted privately**, ensuring they are not publicly listed. Should you have concerns about a specific URL that was scanned, urlscan.io provides a mechanism to request its removal. Regarding email attachments, the service's primary focus is on URL analysis. Attachments are not executed in a sandbox by default; instead, they are **hashed, and links to their VirusTotal reports are provided**. This offers a preliminary safety check without direct execution. For users interested in more advanced attachment analysis, the underlying Tines story can be adapted. While Phish.ly utilizes robust tools trusted by security professionals, it's important to remember that the reports serve as helpful indicators. Always exercise caution and validate findings. As a matter of transparency, using the service will add your email address to their mailing list, which is described as low-volume and includes an **easy unsubscribe option**. This free tool aims to enhance **email security awareness** with no current hard limits on submissions, though fair use is expected.