The link that drains your wallet doesn't look suspicious. Unphurl reads what you can't.

The problem it solves

Crypto scammers register convincing-looking sites hours before an attack. They build fake versions of real websites and send links through Telegram groups, Discord DMs, and emails designed to look legitimate. By the time someone reports the link, wallets have already been drained.

The facts that identify these links (how new the domain is, whether it's on a known scam list, whether it's impersonating a real brand) are there before you click. Most people don't know how to read them. @Unphurl_bot reads them for you.

How it works

Send any link to @Unphurl_bot. Unphurl checks six things: known scam lists, fake brand sites, how new the domain is, where it's hosted, where the link actually goes, and whether the domain looks like it was set up in a hurry.

Four live databases of known scam sites are checked on every request: ScamSniffer (346,000+ known scam sites), MetaMask (108,000+ flagged sites), OpenPhish, and URLhaus.

Unphurl tells you what it found. You decide what to do with that information. Unphurl doesn't block anything.

Facts, not verdicts

Unphurl doesn't tell you a link is safe or dangerous. It tells you the facts. Unphurl reports what it found, not what you should do, and responsible tools reflect that.

A ScamSniffer match on a domain registered three days ago means something. Nothing found means something different. The interpretation is always yours.

Who built it

Unphurl was built independently, starting as a tool for developers and extending into a Telegram bot to make the same checks available to anyone in the crypto community, not just people who can write code.

Support is available directly through @Unphurl_bot on Telegram.