Skip to content
New: AI verdicts in plain language.
Scampilot
Phishing & scam detector

Is this message a scam?

Paste a suspicious email, SMS, link, or QR code. Scampilot answers in seconds - in plain language, with concrete next steps.

Check a message See the product
Free, no account neededGDPR compliantServers in the EU
scampilot.de/check
Result
Model · gpt-5-mini · 4.7 sec
Sparkasse <noreply@sparkasse-verify.io>2 min ago

Final warning: your account will be locked in 24 h

Dear customer, please confirm your password immediately via the link below…
Likely a scam· 9494 / 100

The email pretends to be your bank and pressures you for an immediate password entry.

  1. 01 Do not click any link. Your bank never asks like this.
  2. 02 Call the bank using the number on your card.
  3. 03 Delete or forward the message.
01
under 5 sec

From paste to verdict. p95 on English text under 4 KB.

02
6 surfaces

Paste, email, Telegram, browser extension, REST API, MCP server.

03
€ 0

Free for individuals - no tiers, no ads, no data resale.

01
The problem

Spam filters catch the obvious mails. Nobody catches the expensive ones.

The mails that actually cost money look like your real bank, your real courier, your real tax office.

Phishing attacks have grown seven-fold in the last five years. The defenses that exist for most people aren't built for most people.

Classic spam filters recognize patterns - bulk lists, primitive trick phrases, known phishing domains. They work great on the 95 % nobody would seriously consider.

The mails that actually cost money look different. A carefully crafted message that knows your name - a content filter has no chance against it.

"If I could already tell, I wouldn't be asking."- Renate, 72
Eval dataset 30 hand-labelled fixtures, 10 safe / 10 warn / 10 danger. Current hit rate: 30/30.
Latency p95 Paste → answer: 4.8 sec. Mail → mail: 22 sec (limited by the mail queue, not the model).
02
The product

One tool. Six surfaces. One dashboard.

Reports stream in live as they finish. Forwarding address up top, daily quota right, history below. Full tour →

scampilot.de/dashboard

Reports land here whenever your mom forwards a mail to your burner alias.

Your Scampilot inbox

Forward suspicious mails here - report comes back.

mara.r7q3@in.scampilot.de
Daily quota

2872 / 2880

Live
  • Likely a scam

    Fake Sparkasse mail asking for a password.

    INBOUND · 2 min ago · 94/100

  • Be careful

    Newsletter with an unknown tracking link.

    INBOUND · 1 h ago · 67/100

  • Looks safe

    Real DHL shipping notification.

    PASTE · yesterday · 92/100

03
The surfaces

Wherever the message comes from - Scampilot is already there.

One analyzer, six adapters. You don't have to install anything to start.

01

Paste & check

Text box at /check. No account needed. Up to 3 checks per day free - free account: 20/day. Rate limit on hashed IPs - no cookies, no fingerprinting.

02

Personal forwarding inbox

With an account, your own forwarding address plus burner aliases. Forward - verdict comes back as email.

03

Telegram bot

@scampilot_bot: paste or forward, verdict comes back as a chat reply. /link <code> ties the chat to your account.

04

Browser extension

Chrome & Firefox, MV3. Right-click text, link, or image → "Check with Scampilot". Verdict in the popup, no navigation. Coming soon - we're working on it.

05

REST API

JSON in, JSON out. Sanctum bearer token with ability scopes, OpenAPI spec live at /docs/api, per-user shared-bucket rate limit.

06

MCP server

Tooling for Claude, Cursor & co. Tools scan_text, scan_url, scan_email, scan_image, scan_qr, scan_links - HTTP or stdio.

04
The people

If a feature doesn't help all three of these people, it doesn't ship.

Three people, one tool. Every product decision gets tested against these three.

Persona 01Senior recipient

Renate, 72

Gets phishing mails every week. Wants someone to tell her plainly - without feeling foolish.

Needs Big input field, clear answer, no app install.

Senior setup →

Persona 02Family hotline

Mara, 38

Answers her mom's "is this real?" calls. Needs something she trusts when she's unreachable.

Needs Burner aliases per family member, read-along view, technical reasoning.

Burner aliases →

Persona 03Integrator

Theo, 32

Building phishing protection into mailers and AI agents. Wants JSON in, JSON out - and an MCP server for Claude.

Needs Stable contracts, OpenAPI spec, predictable quotas, no lawyer for the contract.

API docs →