Email Phish Protection

🛡️ EMAIL PHISH PROTECTION - STOP PHISHING ATTACKS IN GMAIL

Protect yourself from accidental clicks on malicious links, phishing attempts, and dangerous forms in your Gmail inbox. This privacy-focused extension gives you complete control over which links and buttons you can click in emails.

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

✨ KEY FEATURES

🔒 Two Protection Modes
Choose the security level that works best for you:
• Popup Confirmation Mode: Review every link destination before clicking with a clear confirmation dialog
• Deny Mode: Automatically disable all suspicious links and display URLs as text for manual inspection

⚠️ Visual Warning System
• Prominent red warning banners appear on emails from non-trusted senders
• Instantly identify potentially dangerous emails before reading
• Color-coded visual alerts ensure you never miss a threat

✅ Smart Whitelist Management
• Add trusted domains like amazon.com, paypal.com, github.com
• Whitelist specific email addresses from known contacts
• Import/export your trusted list for backup or sharing
• Trusted links show green checkmarks for easy identification
• Supports domain and subdomain matching (e.g., trusting amazon.com includes smile.amazon.com)

🛡️ Advanced Protection Features
• Detects hidden links in email buttons and images
• Blocks dangerous form submissions to external websites
• Scans Shadow DOM elements used in sophisticated phishing
• Warns about Unicode homograph attacks (fake domains like gооgle.com using Cyrillic characters)
• Handles complex table-based phishing buttons (Amazon-style tracking links)

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🎯 HOW IT WORKS

Step 1: Install the extension and click its icon in your toolbar
Step 2: Choose your preferred protection mode
Step 3: (Optional) Enable warning banners for visual alerts on untrusted emails
Step 4: Add frequently-used domains to your trusted whitelist
Step 5: Browse Gmail safely - the extension works automatically!

When you encounter a suspicious link:
• Popup Mode: A dialog shows the full URL and asks for confirmation
• Deny Mode: The link becomes unclickable and the URL is displayed as copyable text

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🔐 PRIVACY & SECURITY GUARANTEED

This extension respects your privacy completely:

✓ ZERO data collection - no tracking whatsoever
✓ NO external servers - everything runs locally in Chrome
✓ NO analytics, cookies, or user profiling
✓ Open source MIT licensed
✓ Works completely offline
✓ Settings stored securely using Chrome's storage API

Your emails, browsing history, and trusted list never leave your device. We don't even know you're using this extension.

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

💡 PERFECT FOR

• Anyone who receives unexpected or suspicious emails regularly
• Business professionals handling sensitive client information
• Elderly users who need extra protection from scams
• Security-conscious individuals protecting against targeted attacks
• Online shoppers dealing with tracking links and promotional emails
• Organizations wanting to add extra security layers for employees
• People who've been targeted by phishing attempts before

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🚀 WHY CHOOSE EMAIL PHISH PROTECTION?

Unlike Gmail's built-in warnings that only catch known threats, Email Phish Protection gives YOU complete control:

• Proactive Protection: Block suspicious links before Google identifies them
• Zero False Negatives: You control what's trusted, not an algorithm
• Lightweight: Doesn't slow down Gmail loading or performance
• User-Friendly: Simple interface suitable for all technical skill levels
• Powerful: Catches sophisticated phishing techniques that slip past filters

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

📋 REAL-WORLD EXAMPLES

Example 1 - Popup Mode Protection:
You receive a "password reset" email claiming to be from PayPal. You click the link, and immediately a dialog appears: "Email Phish Protection: You are about to visit: http://paypa1.fake-site.com"

You notice the "l" in PayPal is actually the number "1" - it's a phishing site! You click Cancel and delete the email.

Example 2 - Warning Banner Alert:
An email from "support@microoft.com" lands in your inbox (notice the typo in Microsoft). Before you even read it, a massive red banner appears at the top: "⚠️ CAUTION: NON-TRUSTED SENDER - This email is from microoft.com which is not in your trusted list."

You immediately recognize it as suspicious and report it as spam.

Example 3 - Whitelist Convenience:
You add "amazon.com" to your trusted whitelist. Now all your legitimate Amazon order confirmations and package tracking links work normally with green underline, while fake Amazon lookalike domains are still blocked.

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🔧 TECHNICAL SPECIFICATIONS

• Works exclusively on mail.google.com (Gmail)
• Requires Chrome 88 or later
• Only requires "storage" permission for saving preferences
• Manifest V3 compliant for maximum security
• No external dependencies or libraries
• Cross-browser compatible (also available for Firefox)
• Lightweight: Under 50KB total size

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

❓ FREQUENTLY ASKED QUESTIONS

Q: Will this break my legitimate emails?
A: No. Simply add trusted senders to your whitelist and their links will work normally.

Q: Does this replace Gmail's phishing protection?
A: No, it complements it. Use both for maximum security.

Q: Can I temporarily disable it?
A: Yes, click the extension icon and toggle it off, or add the sender to your trusted list.

Q: What if I need to click a link urgently?
A: In Deny Mode, the URL is displayed as text - copy and paste it into a new tab.

Q: Does this work on mobile Gmail?
A: No, this is a desktop browser extension only.

Q: Will my trusted list sync across devices?
A: Yes, if you're signed into Chrome with sync enabled.

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🆘 SUPPORT & FEEDBACK

Need help or have suggestions?
• Report bugs on our GitHub repository
• Request features through GitHub Issues
• Check documentation for troubleshooting

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

⚖️ IMPORTANT DISCLAIMER

Email Phish Protection is an additional security layer. It should be used alongside other best practices:

• Verify sender addresses carefully
• Be cautious with unexpected attachments
• Keep Chrome and your OS updated
• Use strong, unique passwords
• Enable two-factor authentication

LIMITATIONS OF LIABILITY:
The developers are not liable for:
• Any security breaches or successful phishing attacks
• Email display issues or formatting problems caused by link blocking
• Incorrectly blocked legitimate links
• Any damages resulting from use of this extension

This extension modifies email content for protection. In rare cases, this may cause formatting issues. If an email appears broken:
1. Add the sender to your trusted list
2. Temporarily disable the extension
3. Copy the displayed URL manually

This tool enhances your protection but staying vigilant is your best defense. Use at your own risk.

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

📜 OPEN SOURCE

This extension is open source under the MIT License. Free to use, inspect, modify, and distribute. View the source code on GitHub to verify there's no malicious behavior.
https://github.com/hzsolt21/EmailPhishProtector

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

🌟 PLEASE LEAVE A REVIEW!

If Email Phish Protection helps keep you safe, please:
• Leave a rating.
• Write a review sharing your experience

Your reviews help others discover this security tool and motivate us to keep improving it. Every review makes a real difference!

Stay safe online! 🛡️

━━━━━━━━━━━━━━━━━━━━━━━━━━━━

Version 1.3.0 - Released January 2026