Cactus

Check if a link looks suspicious

Paste a URL and Cactus will check for local warning signs, known unsafe matches, brand lookalikes, suspicious wording, and other common phishing patterns.

Before you analyze
  • Cactus sends the URL you paste to Google Web Risk to check it against known-threat lists. The URL may also be logged by Cactus for caching and rate-limiting.
  • Cactus may also make a small HEAD request to the URL itself to follow redirects and show you where it actually leads. The site operator can see Cactus's IP in that request.
  • Cactus looks up the domain's registration date via the public rdap.org service, so very new domains can be flagged.
  • Do not paste private or sensitive links — password reset links, document-sharing links, meeting invites, calendar links, or any URL that contains an access token. If you only want to verify the domain, paste just the domain (for example example.com).

Frequently asked questions

How do I know if a link is safe?

Check the full address before clicking: hover to reveal the real destination, watch for look-alike domains (like paypa1.com), and be wary of link shorteners. Our Link Checker inspects the URL, follows redirects, and flags known threats so you don't have to guess.

Is it safe to click a link just to check it?

You don't have to. Paste the link here instead of clicking it - we analyze the address and where it leads without opening it on your device.

What makes a link dangerous?

Phishing pages that imitate real logins, malware downloads, and look-alike domains are the most common. Misspelled brand names, odd top-level domains, and urgent messages pushing you to click are red flags.

How our checks work