PhishWatch

Scans emails using an LLM to detect phishing.

🛡️ PhishWatch - Gmail Phishing Checker Extension A lightweight Google Chrome extension that protects users from suspicious emails directly inside Gmail — giving real-time insight into potential phishing risks using AI. ✨ Highlights 🔍 Scans emails with Groq LLM for phishing patterns in real time 🧠 Smart logic filters out false positives using severity scores 📬 Injects caution banners seamlessly above the email body 🎨 Features 6 unique background themes for the "Scan" button 🛡️ Focused on user security and zero data retention ❓ How Does It Work? This extension intercepts Gmail emails in the DOM and sends the full body content, including the sender and subject, to an AI-powered phishing detection backend powered by Groq’s LLM. The backend returns either true or false, along with a list of suspicious elements if phishing is detected. If phishing is detected the extension will: Insert a caution banner at the top of the email Highlight critical suspicious indicators with caution lines Base all decisions on a precise scoring model embedded in the prompt 🔧 How to Use PhishWatch in Gmail: - Download the extension from the Chrome Web Store - Open any email in your Gmail inbox - Click the puzzle piece icon 🧩 in the top-right corner of Chrome - Select “PhishWatch” from the dropdown list - (Optional) Click the 📌 pin icon to add it to your toolbar for quick access - Click the Scan button to check for phishing threats ✅ Stay alert and protect your inbox with confidence! 🔐 User Data & Security: This extension is designed with security and privacy at its core. Here's how your data is handled: 🚫 No data storage: Emails are never saved, logged, or stored by the extension or its backend 📡 Secure transmission: All communication with the Groq LLM backend is encrypted using HTTPS 🎯 Email analysis is local to Gmail context: Only the content of the currently viewed email is processed 🕵️ No personal information is extracted: The extension analyzes only email text for suspicious patterns ✅ No permissions beyond Gmail DOM access: The extension does not request broad data permissions 🔘 Email content is ONLY read into the backend once you click on the “Scan” button 🎨 Customize with the Options Page: Every time you detect a phishing email, you earn a single Scamite — a small reward for keeping your inbox safe. You can spend these Scamites on the Options page, where you’ll find six unique background themes. To access the Options page: Right-click the extension icon in your Chrome toolbar Select “Options” from the dropdown menu ⚠️ Common Issues, Solutions, and Disclaimers: Premature Email Check Trigger: If the "Check Email" button is clicked immediately or repeatedly after opening an email — the extension may throw an error in the console like "Error handling response: TypeError etc..." This happens because the email body hasn't fully loaded in Gmail's DOM, and the backend can't access the necessary content for analysis. Solution: Simply refresh the page to ensure the email content is fully loaded before clicking the button: Use the browser's refresh icon (🔄) in the top-left corner. Or press Ctrl + R (Windows/Linux) or Cmd + R (Mac) Once refreshed, wait a moment for the email to render, then click "Check Email" again. Platform Disclaimer: This extension has been thoroughly tested on Windows and performs reliably in that environment. While macOS compatibility is expected, it has not been formally tested. As such, macOS users may encounter untested edge cases or compatibility issues. If you experience any unexpected behavior, feel free to contact me as listed below. 📮 Contact & Security Reporting If you discover any vulnerabilities, accuracy concerns, or have suggestions to improve this application, please reach out directly at grantklein528@gmail.com