Community & open projects

Public Tools & Community

Independent tools and projects we've built and released for anyone to use — separate from Byzantine Technologies' commercial services. These are things we made because they needed to exist, offered freely to the community.

Free · Public · No account required

SpamReport.io — a free public phishing-reporting tool

SpamReport.io lets anyone report a suspected phishing email and get it triaged, evidenced, and routed to the right abuse desks. Upload the original email as an .eml file and it identifies the infrastructure behind the message and prepares abuse reports for the relevant providers — with a human review step before anything is ever sent.

It's built for phishing, not garden-variety spam: messages impersonating a real brand or person, fake login pages, and invoice or payment scams designed to steal credentials, money, or personal data.

Submit the original email

Upload the suspected phishing email as an .eml file or paste its raw headers. No account, no login, and no email address are required to submit.

We identify the infrastructure

The tool parses the header chain, checks sending IPs and domains against reputation sources, and works out the hosting, registrar, and any impersonated brand behind the message.

Abuse reports, with you in control

It drafts abuse reports for the relevant providers. You review each one and approve it yourself — or use the optional "Report this on my behalf" toggle, and after you approve, we send the reports to the abuse desks for you.

Visit SpamReport.io

What SpamReport.io is — and isn't

A free public utility, not a managed service

SpamReport.io is a free public tool operated by Byzantine Technologies LLC. It is an independent public utility, provided as-is, and is not a managed service, incident-response channel, or support offering — no service-level commitments apply. It is a self-service tool: you can ask us to send your approved abuse reports on your behalf, but that assisted-sending feature is not a substitute for a managed security relationship, and it carries no SLA, monitoring, or guaranteed response.

Do not upload emails containing protected health information (PHI) or patient records. SpamReport.io is not HIPAA-covered and is not governed by a Business Associate Agreement (BAA). For HIPAA-sensitive work, that's what our managed services are for — the public tool and our covered services are deliberately kept separate.

Need HIPAA-grade security, not a free tool?

Our managed IT and cybersecurity services are built for healthcare practices — with the coverage, monitoring, and BAA the public tool intentionally doesn't provide.

Talk to Byzantine