Nehboro

Nehboro is a community-powered browser extension that protects users from phishing, ClickFix attacks, tech support scams, crypto drainers, and malware delivery in real time.
It runs three detection engines simultaneously:

A static IOC engine that blocks known-bad domains, URLs, and IPs before the page loads, using community-maintained threat feeds.
A dynamic heuristic engine with 97 pattern-matching detections that analyze every page after load - catching brand-new threats not in any feed yet.
An optional Claude AI engine (requires user's own API key) for a second opinion on ambiguous pages.

Key features:

97 heuristic detections covering ClickFix sequences, fake CAPTCHAs, PowerShell payloads, LOLBin commands, fake antivirus scans, browser hijacking, clipboard attacks, card skimmers, and more.
Detects scam patterns in 6 languages (English, French, Spanish, German, Italian, Portuguese).
Silent Mode for non-technical users: dangerous pages are silently closed with no scary dialogs.
Community threat reporting: users can report threats that get aggregated into a public threat intelligence feed.
Fully transparent: all detection logic is open source, scores are visible, every matched keyword is shown.
No telemetry, no tracking, no data collection. All detection runs locally in the browser.