Make a hostile URL, IP, or email safe to paste into a ticket or report by defanging it, or refang an indicator from a feed back to its live form for analysis.
Defang rewrites http to hxxp, dots to [.], :// to [://] and @ to [@] so an indicator cannot be clicked. Refang reverses the common conventions back to a live form. Runs in your browser.
Refang understands the common conventions: hxxp, [.], (.), {.}, [dot], [://], [:]//, [@], (@) and [at]. Defang neutralises dots, the protocol and the at sign across the whole input, including normal text, so paste indicators rather than prose.
Free for learners. Tell us who you are once and every tool opens after that. It helps us keep the tools working and build what you actually need.
One time only. We never sell your data.
