AES Encryption Explained: How It Works and Why It Matters
Jun 23, 2026
Scan any text for homoglyph Unicode characters that can be used in domain spoofing, phishing, and social engineering attacks.
Enter any text, domain, or URL to detect homoglyph characters. All analysis is done locally in your browser.
All characters in the text are standard ASCII. No suspicious Unicode lookalikes found.
Found homoglyph character(s). Review the findings below.
Highlighted characters are suspicious homoglyphs.
| Position | Character | Code Point | Looks Like | Unicode Block | Description |
|---|
A Homoglyph Detector is a security tool that scans text for Unicode characters that look visually identical (or very similar) to standard ASCII characters but have different code points. These confusable characters are used in homograph attacks where attackers register domain names that visually mimic legitimate ones.
For example, the Cyrillic letter "а" (U+0430) looks identical to the Latin "a" (U+0061). An attacker could register gооgle.com using Cyrillic "о" characters, making the domain visually indistinguishable from the real google.com.
This tool helps identify:
A homograph attack (also called an IDN homograph attack) uses visually similar characters from different writing systems to create deceptive domain names. Because modern browsers render Internationalized Domain Names (IDN), an attacker can register a domain that looks almost identical to a trusted one but leads to a completely different website.
No. All analysis is performed locally in your browser. The text you enter never leaves your device.
Always check the browser's address bar carefully. Modern browsers display the punycode (xn--) version of internationalized domains. Bookmark important sites instead of typing URLs manually. Use a password manager — it will refuse to autofill on lookalike domains. Enable two-factor authentication for important accounts.
Punycode is a way to represent non-ASCII characters in domain names using ASCII characters starting with "xn--". For example, the Cyrillic domain "kремль.рф" becomes "xn--h1acb4aifd.xn--p1ai" in punycode. Modern browsers show the punycode version when a domain contains mixed scripts to help users detect potential homograph attacks.
Blog
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026