Norn Labs logo
Norn Labs
Available on Chrome Web Store

Muninn

Most phishing tools only block known threats. Muninn uses AI to catch the ones nobody has reported yet, before you enter a password or payment details.

Install Muninn for Chrome

Runs in the background as you browse. When something looks off, you get a warning before you interact with the page.

Add to Chrome — It's Free

Everything is free during beta. Create an account to unlock deep scans and get grandfathered into our best plan when we launch pricing.

Two layers of protection

1
Light scan (runs automatically)

Every page you visit gets checked against the Yggdrasil database of known threats, then goes through a quick AI analysis. This catches things like recently registered domains, misspelled brand names, and unusual URL structures. It happens instantly in the background.

2
Deep scan (when something feels off)

Takes a screenshot of the page and uses AI to check whether it's impersonating a real site. This catches convincing fakes that look pixel-perfect, the kind that slip past URL-only checks. You trigger these manually from the extension popup.

Requires a free account. Screenshots are analyzed and immediately discarded, never stored.

What Muninn catches that others miss

Traditional phishing protection relies on blocklists: databases of known bad URLs. The problem is that phishing pages are disposable. Attackers spin up new domains constantly, and a new phishing URL can take hours or days to land on a blocklist.

Muninn doesn't wait for someone else to report a threat. It analyzes every page you visit in real time, looking for the telltale signs of phishing regardless of whether the URL has been seen before. If a brand-new domain is pretending to be your bank, Muninn flags it on the spot.

Why create a free account?

Deep scans

Light scans catch suspicious URLs. Deep scans go further and analyze what the page actually looks like, catching fakes that perfectly mimic real login pages.

Report suspicious pages

Found something phishy? Report it to Yggdrasil so others are protected too. Reported URLs get reviewed and added to the public database.

Beta perks

Beta users get generous scan limits and will be grandfathered into the best available plan when we introduce pricing. No credit card needed.

Works instantly

Sign up with just an email. Light scans start running immediately with no configuration needed.

Privacy

Light scans send only the URL (stripped of query parameters) to our server. We don't see your browsing history, form data, or passwords.

Deep scans send a screenshot for AI analysis. The screenshot is processed and immediately discarded. It is never stored on our servers.

If you choose to report a URL to Yggdrasil, the screenshot is saved as part of the report. This is always an explicit action you take.

Don't use Chrome?

You can still check suspicious URLs and submit phishing pages directly on Yggdrasil. No extension needed.

Check a URL on Yggdrasil →