Serious Gmail self-check with clear guidance, local scoring, and no fake claims.

This page does not ask for a password, token, or inbox access. It helps people review real warning signs, understand risk, and move into official Google security steps with better clarity.

Gmail Security Check

Local-only compromise signal review

Tick only the signs that are actually true. This score is calculated only in your browser and is meant to guide the next steps, not replace Google's own account security tools.

You received a Google password reset alert or login alert that you did not initiate.Recovery phone, recovery email, or 2-Step Verification settings changed unexpectedly.Messages were sent from your Gmail account that you did not write.You found suspicious forwarding rules, filters, delegates, or third-party app access.You saw unknown devices, sessions, or sign-ins in Google account activity.You were suddenly locked out, your password stopped working, or account recovery feels different.You noticed unusual billing, storage spikes, Drive changes, or deleted files tied to the same Google account.The phone or computer used for Gmail may be infected, remote-controlled, or running suspicious extensions.

Low risk

Local risk score

No strong compromise pattern was selected, but this is still only a self-check. Official Google account checks remain the source of truth.

Warning signs selected

Password requested

Immediate actions

1. Run Google Security Checkup first, not a random third-party checker.

2. Review recent sign-ins, devices, forwarding rules, filters, delegates, and connected apps.

3. If risk is medium or high, change the password from a clean device and enable 2-Step Verification.

4. Scan the computer or phone for malware and review browser extensions before trusting new sessions.

Official Google paths

Clear links, no fake diagnostics

A real security checker should push people toward official recovery and account audit tools, not ask for passwords or pretend it can read Gmail without consent.

Google Security Checkup

Review sign-ins, recovery options, devices, and suspicious changes using Google's official account security panel.

Recent security activity

Check whether Google already detected unusual sign-ins or security-sensitive account changes.

Gmail settings audit

Open Gmail Settings and review forwarding, filters, delegates, and connected apps before trusting the inbox again.

Google account recovery help

Use the official recovery flow if you think the account was hijacked or key settings were changed.

What this page will never do

It will not ask for a Gmail password.

It will not claim inbox access or “deep breach detection” without official authorization.

It will not show fake assurance just to look impressive.

Next build idea

Safer advanced version

If we want to take this further, the serious path is an opt-in Google OAuth flow that reads only authorized account metadata, device/session signals, and app access state, never passwords.

View platform trust rules