How it works Detection Roadmap Pricing Blog Header Analyzer Phishing Quiz Install free
Free tool

Can you spot the phish?

8 realistic emails. Half are genuine, half are scams. Tap the sender to reveal the real address, press a link to see where it truly points — then make the call. Every answer comes with the tells explained, and each run draws a fresh mix from a larger pool. No sign-up, nothing recorded — your score stays in your browser.

Every email in this quiz is a fictional recreation built for training — none was really sent by the brand shown, and all brand names belong to their owners. Links are disabled. Nothing you do here is recorded or sent anywhere.

Frequently asked questions

How can I test if I can spot phishing emails?

Practice on realistic examples — some genuine, some fake — and judge each one. The two checks that settle most cases in real life are revealing the sender’s actual address and previewing where a link really points before clicking. This quiz lets you practice both, explains the tells after every answer, and draws each run from a rotating pool so retakes stay fresh. For the full theory, see the 8 warning signs of a phishing email.

What should I check to tell if an email is phishing?

Three checks catch most phishing: the sender’s real address (the registered domain must belong to the brand — read it from the right), the true destination of any link (hover on desktop, press and hold on mobile), and the tone — threats, countdowns and requests for passwords or payment are pressure tactics real companies avoid. A generic “Dear Customer” greeting in an account email is another strong tell.

Is it safe to take this phishing quiz?

Yes. Every email is a fictional recreation; all links are disabled (hovering shows the claimed destination, but nothing can be clicked through), and your score never leaves your browser. If you’ve already clicked something suspicious in your real inbox, start with what to do if you clicked a phishing link.

Liked the practice? Let Phixo do the checking for you

Phixo is a browser extension that checks the email open in your Gmail or Outlook against these same signals — sender and domain reputation, link mismatches, lookalike domains, and email authentication (SPF, DKIM, DMARC) — plus an AI read of the language, and flags anything suspicious in seconds. Free plan includes 10 scans a day, no credit card. A one-time Google or Microsoft sign-in keeps your scan count tied to your account.

Install Phixo free →

Your email body is never stored. Analysis happens in real time and is discarded immediately.