Capture.Scan.Neutralize.
Turn any suspicious webpage into a full threat intelligence report — right from your browser. AI-powered scanning, risk scoring, and automated abuse reporting to every major security vendor.
From suspicious URL to threat neutralized
Three steps. One click each. The extension handles the heavy lifting.
Capture
Navigate to a suspicious page and click the extension icon. It captures the full DOM, network traffic, redirect chains, forms, scripts, and takes a screenshot — all in seconds.
Scan
Captured data is submitted to Mass Report for deep analysis. AI generates risk scores, identifies targeted brands, classifies attack vectors, and produces a full threat intelligence report.
Credential harvesting targeting PayPal users. Typosquatting with homoglyph attack (I → l).
Report
Hit Report Abuse on any provider card in the scan results. The extension opens the provider's form and auto-fills every field — URLs, evidence, categories, brand info — instantly.
Auto-filled by Mass Report
All fields populated from scan data
Everything you need to hunt phishing
From initial capture to vendor notification — all from a single browser extension.
Full Page Capture
Captures DOM, source code, network requests, redirect chains, forms, and screenshots. The most complete evidence package you can get.
AI Risk Scoring
Heuristic analysis fires instantly while GPT-4o delivers a deep-dive threat assessment with brand identification and attack classification.
One-Click Form Fill
Click Report Abuse and the extension opens the provider's form pre-filled with URLs, evidence, categories, and justification. Zero copy-paste.
Multi-Provider Support
Works with Cloudflare, Dynadot, and more on the way. Each provider gets a custom filler that speaks its exact form language.
Privacy-First Design
No data leaves your browser except to mass.report and abuse forms. No tracking, no analytics, no third-party servers. Your data is yours.
Ephemeral Storage
Capture data and form payloads exist only for the moment they are needed, then are immediately cleared. Nothing persists.
Live Risk Dashboard
Watch the scan progress in real-time. Heuristic score appears instantly while AI enrichment runs in the background.
Phishing Kit Detection
Identifies known phishing kits, credential harvesting forms, password fields, and suspicious input patterns automatically.
Install in 60 seconds
No Chrome Web Store required. Load it directly — four simple steps.
Download & Extract
Download the .zip file and extract it to a folder you will remember.
Open chrome://extensions
Navigate to chrome://extensions and enable "Developer mode" in the top-right.
Click "Load unpacked"
Select the extracted folder containing manifest.json. The extension icon appears in your toolbar.
Start Hunting
Navigate to a suspicious page, click the extension, and capture it for scanning. Or head to mass.report to use auto-fill on abuse forms.
Supported Providers
New provider integrations are added regularly. Here's what's live and what's coming next.
Cloudflare
Liveabuse.cloudflare.com
CDN & hosting — URLs, evidence, justification, categories, all auto-filled.
Dynadot
Livedynadot.com/report-abuse
Domain registrar — phishing category, brand, domain path, and comments.
Namecheap
Coming Soonnamecheap.com
Domain registrar — coming in a future update.
GoDaddy
Coming Soongodaddy.com
Domain registrar — coming in a future update.
Google Safe Browsing
Coming Soonsafebrowsing.google.com
Web risk report — coming in a future update.
Microsoft SmartScreen
Coming Soonmicrosoft.com
SmartScreen phishing report — coming in a future update.
Ready to hunt phishing from your browser?
Download the extension, load it into Chrome, and start capturing suspicious pages and auto-filling abuse reports in one click.