Live threat detection

Before you sign,
know what's coming.

VaultCheck scans every transaction before it executes. Detects scams, fake tokens, phishing contracts, and suspicious addresses. Returns a single verdict: Safe, Caution, or Dangerous.

$600M+ lost to scams in Q1 2026
207% surge in signature phishing (Jan 2026)
0 wallets VaultCheck missed
Transaction Scanner live
TO ADDRESS 0x7f3a...b2c9
TOKEN USDC
AMOUNT 4,250.00
CHAIN Ethereum
CONTRACT RISK Suspicious
ADDRESS REPUTATION Flagged: pig butchering cluster
DANGEROUS

This address is linked to a known scam network. Signing will transfer funds directly to fraudsters.

Scanned in 0.4s · 847 threat signals checked
How it works

Three steps between you and a drained wallet.

01

Connect your wallet

MetaMask, Ledger Live, Rabby, Coinbase Wallet — any wallet, any chain. VaultCheck doesn't hold your keys. It reads transaction data before anything is signed.

02

VaultCheck scans it

When a transaction pops up, VaultCheck cross-references the contract, address, token, and destination against live threat databases. Checks for honeypot logic, approval phishing patterns, and known scam clusters.

03

You see the verdict

Safe, Caution, or Dangerous — with a clear explanation of why. If it is dangerous, VaultCheck shows you exactly what will happen and which wallet you're sending to. No jargon.

What it detects

The threats that drain wallets while you're reading the popup.

Fake Tokens

VaultCheck identifies honeypot tokens, mirror tokens, and unverified contracts designed to drain your approved spending limit the moment you interact.

Phishing Links

Scans the destination URL and contract metadata. Flags known phishing sites, lookalike domains, and malicious dApp connections before you approve anything.

Suspicious Contracts

Analyzes smart contract code patterns for hidden approval functions, drainer logic, and known exploit signatures. If the contract is trying to pull more than it should, VaultCheck tells you.

Address Reputation

Cross-references sending and receiving addresses against updated scam cluster databases. Flags wallets associated with pig butchering, rug pulls, and exchange impersonation.

Approval Phishing

Signature phishing is up 207% in 2026. VaultCheck specifically detects approval requests that grant third-party access to your wallet, not just transfer requests.

Real-Time Updates

Threat databases update continuously. When a new scam technique surfaces — deepfake phishing, AI-generated phishing sites — VaultCheck checks for it within hours, not weeks.

The verdict system

Three scores. No ambiguity.

Every transaction gets one clear verdict. No probability scores, no jargon — just what you need to decide.

Safe
Ethereum Mainnet
  • Contract verified and audited
  • Address not flagged in any database
  • No hidden approval functions detected
  • Token not a honeypot or mirror
  • Destination is a known protocol

Transaction looks clean. Proceed with normal caution.

Caution
Multiple Chains
  • Contract is unverified or new
  • Address has limited history
  • Non-standard contract patterns detected
  • Some risk flags present — investigate

Something doesn't look right. Review the contract before signing.

Dangerous
Active Scam Detected
  • Address linked to known scam cluster
  • Honeypot or drainer contract pattern
  • Approval phishing request detected
  • Destination confirmed as fraud wallet
  • Multiple high-confidence threat signals

Do not sign. This transaction will drain your wallet.

"Signature phishing losses jumped 207% in January 2026. Attackers are targeting fewer wallets but taking larger amounts. The average victim lost $47,000."

— Scam Sniffer, Chainalysis 2026 Crypto Crime Report

You cannot audit a smart contract.
VaultCheck can.

Most crypto fraud happens in the 10 seconds between the popup appearing and you clicking Confirm. That window is exactly where VaultCheck lives.

Your wallet, your keys. VaultCheck just makes sure you know what you're signing.