Early access — now open

This email looks safe.
It's not.

Catches the phishing your spam filter misses — in 3 seconds, before you click. Works in Gmail and Outlook today, with more inboxes on the way.

Get started — free How it works

No credit card · Free during beta · Sign in with Google or Microsoft

Available in Chrome Web Store
Beta · launching soon
 Full listing coming soon
Email body never stored No credit card 60-second install
Phixo blocked a phishing attempt
Bulk Email Phishing 100/100 See full report
Compose
Phixo
1.8s
Critical Risk
Bulk Email Phishing
100/100
HIGH confidence
THREAT SCORE
What's going on

This email shows 10 phishing indicators. Generic greeting, credential harvesting link, and fake urgency designed to bypass your judgement.

What to do now

Delete immediately. Do not click any links or open attachments. Report to your IT security team.

Warning Signs (10)
Generic greeting — not addressed by name
Fake urgency: "24 hours" deadline
Credential harvesting link structure
Authority impersonation: "security team"
Sender domain registered 4 days ago
How We Decided
Rules engine 7 flags
Safe Browsing malicious
AI reasoning 0.94 score
Domain reputation 18/72 vendors
Links Checked: 1
paypal.secure-login.verify-account.com
Sender Domain
paypa1-secure-login.com
Registered 4 days ago
18/72
Live — threats Phixo has flagged in the last hour
CRITICALpaypa1-security.com · credential harvest
HIGHnetflix-renewal-2026.xyz · billing scam
CRITICALceo.frank@acme-co.net · CEO fraud · wire request
BLOCKEDinvoice-4872.docusign-alert.co · malware dropper
HIGHapp1e-icloud.support · typosquat
CRITICALchase-verify.net · banking phish
BLOCKEDdhl-parcel-track.xyz · package scam
HIGHgoogIe-drive-share.com · capital i, not L
CRITICALpaypa1-security.com · credential harvest
HIGHnetflix-renewal-2026.xyz · billing scam
CRITICALceo.frank@acme-co.net · CEO fraud · wire request
BLOCKEDinvoice-4872.docusign-alert.co · malware dropper
The scale of the problem

Your spam filter was built for a
different era.

Modern phishing isn't a typo-ridden Nigerian prince email. It's a well-crafted message from a convincing lookalike domain — built to slip past every filter Gmail and Outlook ship with. Phixo is the second brain that reads every email before you do.

3.4B
Phishing emails sent every day worldwide
APWG · 2025
91%
Of cyberattacks begin with a phishing email
Deloitte
$4.9M
Average cost of a phishing breach to a business
IBM · 2024
<3s
Time Phixo takes to analyse one message across four layers
Benchmark
How it actually happens
01 — Arrives

An email lands in your inbox

From "your bank," "Microsoft," or "your CEO." It looks completely normal.

02 — Click

You click one link

It goes to a page that looks identical to the real login screen.

03 — Enter

You type your password

Eight seconds later, an attacker has it. They don't even need to be online.

04 — Gone

Your account is theirs

Bank drained. Inbox raided. Identity sold on the dark web. Recovery takes months.

Phixo stops it at step 1 — before the email looks safe enough to click.
How it works

Three clicks to install.
Zero after that.

Phixo runs in the background and stays out of the way. You only see it when something's wrong.

01 — INSTALL

Add to Chrome in one click

A single click from the Chrome Web Store. No account required, no setup wizard, no permissions circus.

02 — OPEN MAIL

Open any email, anywhere

Phixo activates the moment you open a message — in Gmail and Outlook today. Nothing to configure.

03 — READ THE VERDICT

Know what to trust — instantly

A risk score and a plain-English explanation appear next to the email, before you've decided whether to trust it.

How we catch it

Four checks.
Before you see the email.

Most tools check one thing — a list of known bad senders. We check four different things at once and weigh the signals together. If the combined picture looks wrong, you get a warning. That's how we catch the new tricks, not just the old ones.

01
Rules engine
instant
02
Google Safe Browsing
real-time
03
AI reasoning
sub-second
04
Domain reputation
sub-second
What it catches

Real messages. Caught in the
wild, last week.

Three examples of phishing emails Phixo's beta testers received — and what our engine said about each of them.

▲ CRITICAL · 94
From: security-team@micros0ft-verify.com
⚠ Unusual sign-in detected — action required within 24 hours
Why it's dangerous: Number-for-letter substitution in "micros0ft", urgency language, and the domain was registered 4 days ago. Flagged by 18 of 70+ security vendors.
Credential harvestCaught in 1.8s
▲ CRITICAL · 91
From: jane.foster@acme-co.net
Quick favour — need this wire out today, I'm in a meeting
Why it's dangerous: CEO impersonation via cousin-domain, reply-to hijack to a free Gmail address, classic urgency + authority script. No link, no attachment — pure social engineering.
CEO fraudCaught in 1.2s
▲ HIGH · 78
From: billing@netflix-renewal-2026.xyz
Your subscription failed — update payment method
Why it's dangerous: Suspicious TLD (.xyz) used heavily in phishing campaigns, brand impersonation, payment credential request. The LLM layer caught the emotional-loss framing.
Billing scamCaught in 2.1s
Works where you work
Gmail
Outlook
Yahoo
Proton
Zoho
iCloud
Fastmail
Why it works

Catches what your
spam filter can't.

Your privacy

We score the message,
then forget it.

Your email body is processed in memory and discarded the moment we return a score — never stored, never logged, never used to train anything. URLs are hashed, never the raw link. By design, not by promise.

EMAIL
MEMORY ONLY
SCORE
∅ DISCARDED
Instant

You'll know before
you click.

Phixo flags the message before you've reached the sender's name — so you know what you're looking at before you decide what to do with it.

Rulesinstant
URL checkfast
AI~1.5s
Reputationfast
Total (parallel)< 3s
What it catches

The attacks that
look real.

CEO fraud. Fake invoices. Lookalike domains. The emails that look real enough to fool you — and your spam filter.

typosquathomographCEO fraudinvoice scamreply-to hijackbrand spoofcredential harvestwire fraudOAuth phish
Wherever you read mail

Gmail & Outlook.
More coming.

Fully live in Gmail and Outlook today. Yahoo, ProtonMail, Zoho, iCloud, and Fastmail are on the roadmap — shipping in order of user demand.

No black box

Know exactly
why it was flagged.

Phixo shows you the spoofed domain, the suspicious link, the manipulative phrase — so you spot the same trick yourself next time.

What's next

A product in active
development.

Phixo is built and shipped weekly. Here is what is on the way — and Pro users get every one of these the day it launches.

Inbox sweep In testing

Scan your last 30 days in one click

Already received something suspicious last week? Inbox Sweep retroactively scans your recent mail and flags anything you should have caught. Pro-only.

Shipping in weeks · Beta access for Pro users
Outlook desktop Q1 2026

Native Outlook desktop add-in

Same four-layer engine, packaged as a Microsoft Office add-in. For teams stuck on Outlook desktop where browser extensions don't reach.

On the development roadmap
Slack & Teams Q2 2026

Phishing detection beyond email

Slack DMs and Teams messages are the new attack surface. Phixo will scan inbound links in your workspace channels with the same engine.

Pro users vote on the integration order
SOC API Planned · late 2026

API access for security teams

POST a message, get back the same four-layer analysis. For SIEMs, SOAR platforms, and security teams that want to bake Phixo into their own workflows. Single-user product today — team plan ships when the API does.

Planned — pricing TBD

Have something you want us to build? Phixo is shaped by what users actually need.

Tell us what to build →
Built in public

We're earning trust
the slow way.

Phixo is a new product from a one-person team. Instead of fake testimonials and decade-old enterprise logos, here's what we actually offer.

Open beta. No card required. Install the extension, scan up to 10 emails a day forever — free. Every scan trains the next generation of our detection engine. Cancel by uninstalling.
Try before you trust
Free tier, no signup friction
Architecture, not policy. We don't store your email body. URLs are hashed before any reputation lookup. Read the privacy section above — every claim maps to actual code, not a marketing promise we hope you forget.
Privacy is verifiable
Enforced by design, not by trust
The founder reads every email. No sales team, no support queue, no chatbot. Reach out at hello@phixo.io and you'll hear back from the person building the product.
Direct line to the builder
No SDR. No ticket queue.
Pricing

Start free. Upgrade
when you need more.

Free
$0forever
A taste of Phixo. Perfect for trying it out and protecting your most important emails.
  • 10 scans per day
  • All four detection layers
  • Gmail & Outlook (more on roadmap)
  • Full risk explanations
  • Email body never stored
Get started — free
Pro founder rate
$2.99per month
Founder rate · locked in for life
Lock in $2.99/month forever. After the first 100 founders, Pro becomes $4.99/mo — but founders pay $2.99 and get every future feature included.
Limited to the first 100 founders
  • Unlimited email scans
  • Full scan history & threat analytics
  • Custom trust & block rules
  • Priority AI lane (faster scans)
  • Inbox sweep — scan last 30 days SOON
  • All future Pro features — included free
Lock in $2.99/mo before it's gone →

After first 100 spots fill: $4.99/mo or $39/yr

Need unlimited scans for a team or enterprise deployment? Contact us →
FAQ

Questions we get
all the time.

Your email body is processed entirely in memory and discarded the moment a risk score is returned. We never store the body, never log it, and never use it for training. URLs found in the email are hashed (one-way) before any reputation lookup, so we never persist the raw link either. Anonymous scan metadata — risk score, attack type, timing — is retained so we can show you scan history and improve detection.
Gmail and Outlook (web) are fully supported today. Yahoo Mail, ProtonMail, Zoho Mail, iCloud Mail, and Fastmail are on the roadmap and will ship in order of user demand — sign up and you'll get them automatically when they land.
Spam filters catch bulk junk. They routinely miss targeted, personalised phishing — because those messages look perfectly legitimate to a filter. Phixo scans every message you actually open, including ones that already made it past your spam filter, with four independent layers looking for domain spoofing, manipulation language, and malicious links.
A risk panel appears alongside the email with a SAFE / LOW / MEDIUM / HIGH / CRITICAL score, a plain-English explanation of what was found, the specific red flags, and a recommended action. For CRITICAL and HIGH scores you also receive a desktop notification, and suspicious links are intercepted before they can be opened.
Phixo is currently a desktop Chrome extension. Mobile support is on our public roadmap.
Yes — cancel any time from your account dashboard. Pro remains active until the end of the current billing period. No lock-in, no cancellation fee, no questions.
Early access · now open

Your inbox, quietly
protected.

Join the beta. Install in 60 seconds. Free forever for 10 scans a day — Pro unlocks unlimited.

Get started — free See pricing
Email body never stored·No credit card·Cancel anytime