Tools
Interactive tools to sharpen your threat-detection skills.
Domain Lookalike Analyzer
See how attackers imitate legitimate domains. Enter any domain to generate common attacker variants — homoglyphs, typos, TLD swaps, and more.
Launch Tool →Report Phishing
If you've encountered phishing, report it to the appropriate authorities. Reporting helps protect others and shut down malicious operations.
Email Phishing
Forward to:
• [email protected] (FTC)
• [email protected] (CISA)
• Your email provider's abuse address
VA-Related Scams
Report to:
• VA OIG Hotline
• Call: 1-800-488-8244
• Email: [email protected]
Military Impersonation
Report to:
• FBI Internet Crime Complaint Center (IC3)
• FTC Complaint Assistant
Financial Fraud
Report to:
• FTC Report Fraud
• Your bank/credit card company immediately
• IdentityTheft.gov
SMS Smishing
Report to:
• Forward to 7726 (SPAM)
• FTC Complaint Assistant
• Your mobile carrier
Malicious Websites
Report to:
• Google Safe Browsing
• Microsoft SmartScreen
• Your browser's built-in reporting tool
Security Resources
Government Agencies
- CISA Cybersecurity Tips — Official U.S. government security guidance
- FTC Scam Alerts — Latest fraud warnings and protection tips
- FBI Scams & Safety — Common scams and how to avoid them
Security Tools
- Have I Been Pwned — Check if your email/password was in a breach
- VirusTotal — Scan suspicious files and URLs
- URLScan.io — Analyze suspicious websites safely
Educational Resources
- NCSC Cyber Aware — UK National Cyber Security Centre guidance
- Charity Navigator — Verify legitimate charities
- GuideStar — Nonprofit information and ratings
Quick Security Tips
Verify Before Clicking
Hover over links to see the real destination. If it looks suspicious or doesn't match the supposed sender, don't click.
Call Using Known Numbers
Never use phone numbers from suspicious emails or texts. Look up the official number independently.
Enable MFA Everywhere
Use multi-factor authentication on all important accounts. Prefer authenticator apps over SMS when possible.
Question Urgency
Scammers create artificial urgency. Legitimate organizations give you time to verify and respond.
Check File Extensions
Be suspicious of .exe, .zip, .js, .vbs files. Enable "show file extensions" in your OS settings.
Look for HTTPS
Legitimate websites use HTTPS (padlock icon). However, phishing sites can too, so this alone isn't enough.
Need Additional Help?
If you believe you've been compromised:
- Change your passwords immediately (on a different device if possible)
- Enable MFA on all affected accounts
- Contact your bank/credit card companies to monitor for fraud
- Place a fraud alert with credit bureaus: Equifax, Experian, TransUnion
- File an identity theft report at IdentityTheft.gov
- Consider credit monitoring services