Frequentlyaskedquestions

Install it from the Chrome Web Store in one click. Press Add to Chrome and it activates. It works automatically: you do not have to do anything, just browse as usual.

Brújula Security works on any Chromium-based browser with Manifest V3: Chrome, Edge, Brave and Opera. It does not work on Firefox or Safari because they do not install Chrome Web Store extensions directly.

It activates by itself. No setup or account required. After installing, it automatically analyzes every crypto site you visit in under 100 milliseconds: it shows a green check if the site is verified, a yellow alert if it is an unknown crypto site, and a full-screen red alert if it detects phishing or a seed phrase theft attempt.

It needs 4 browser permissions: activeTab (access to the current tab when activated), storage (save your whitelist, settings and stats in your own browser), scripting (inject the phishing detector into crypto sites you visit) and tabs (protect already-open tabs at install time). The "all sites" permission (<all_urls>) lets it analyze any crypto site. All analysis happens locally, no data leaves your device.

No. Brújula Security does not require signup, login or email. It works as soon as you install it. There is no paid tier or hidden premium account.

No. Brújula Security does not track your browsing or send your data to any server. All analysis runs locally in your browser and works without an internet connection. The only thing stored in your own browser (chrome.storage.local) is a limited history of detected threats (max 50 entries) and your protection statistics. That data never leaves your device.

No. Brújula Security only analyzes the hostname (domain) of the site you visit and the visible page structure. It does NOT read what you type in password fields, does NOT access your seed phrase, does NOT read inputs or forms. The extension detects when a website REQUESTS your seed phrase (it analyzes the text the site shows you) and blocks the attempt with a critical alert, but it never accesses the content you enter.

No. No Google Analytics, no Mixpanel, no Sentry, no advertising pixels, no tracking cookies. Verified in the source code: none of the extension files (popup.js, background.js, content.js, settings.js) contains fetch or XMLHttpRequest calls to external services. All analysis is 100% local.

Only the following, all in your browser chrome.storage.local and never sent outside: your personal whitelist of trusted sites, your selected language, your alert preferences (show badge, show visual alerts, alert level), your protection statistics (sites analyzed, threats blocked, install date, last threat), the detected threat history (max 50 entries: hostname, type, level and timestamp), and the warnings you have chosen to ignore.

It protects you on cryptocurrency-related sites. It has 289 verified safe crypto sites (57 exchanges like Binance or Coinbase, 66 DeFi platforms like Uniswap or Aave, 38 official wallets, 23 NFT marketplaces, 22 bridges, 42 explorers like Etherscan, 11 staking platforms, 14 blockchains and L2s, 16 news outlets) and recognizes 329 crypto keywords. If you visit a non-crypto site, the extension shows no alerts; it only activates when it detects content related to crypto, digital currencies or wallets.

It detects six main types of threats: 1) Typosquatting (cloned domains like "binanse.com" or "metamask-login.io"). 2) Homograph attacks (Cyrillic or Greek characters mimicking Latin letters). 3) Punycode attacks (Unicode domains in disguise). 4) Letter-to-number substitution (1 for i, 0 for o). 5) Dangerous TLDs (.tk, .xyz, .top and 73 other top-level domains frequently used for scams). 6) Scam indicators (261 typical scam words like "free", "earn", "guaranteed"). It also blocks seed phrase theft attempts with a critical alert and warns when a suspicious site requests a wallet connection.

Brújula Security is available in Spanish and English. The extension automatically detects your Chrome browser language. To change it, go to chrome://settings/languages and set your preferred language. You can also change it manually from the Settings tab in the extension popup.

Yes. From the Settings tab in the popup you can choose between three alert levels: All (HIGH, MEDIUM, LOW), HIGH and MEDIUM only, or HIGH only (maximum security). You can also disable on-page visual alerts (red and yellow modals) and the icon badge (!, ?). This way you control exactly which warnings you receive.

When the red or yellow alert appears, click the "I trust this site" button. The domain will be automatically added to your personal whitelist and you will never see alerts about it again. You can manage the list from the Settings tab (Trusted Sites): remove sites, clear the entire list, export it to a file to keep it after reinstalling, or import it. Only mark as trusted sites you actually know and use regularly.

It is free. No tricks, no hidden premium tier, no in-extension purchases, no ads.

No. Brújula Security never shows advertising. The only visual notifications are security alerts when a real threat is detected (red modal for phishing, yellow modal for suspicious sites, icon badge).

Not at launch. If a Pro version exists in the future, its terms would be published before release.

Brújula Security only activates on crypto sites (detected by their domain or by content related to cryptocurrencies, wallets or blockchain). If you visit a non-crypto site, you will not see alerts: that is the expected behavior. If you believe a crypto site should trigger it and it does not, reload the page (Ctrl+F5) so the content script is injected again, and verify the extension is enabled at chrome://extensions/. If the issue persists, disable and re-enable it from that same page.

If you exported your whitelist before reinstalling (Settings tab > Trusted Sites > Export), you can import it on the new installation from the same tab. If you did not export it, it cannot be recovered: data is stored in your browser chrome.storage.local and disappears on uninstall. To avoid this in the future, export the list to a file every time you add important sites.

Write to soporte@brujulacrypto.com. We read every proposal, but cannot guarantee individual response or implementation.