Holders & traders
Check an address before sending funds, review token exposure, and revoke risky TRC-20 approvals.
Wallet Scanner
Approvals
AML Check
Getting started
Your first scan
TRONSEC runs entirely in your browser. No account, no install, no wallet connection for analysis.
02
Paste an identifier
TRON address, TXID, contract address, or URL — depending on the active module.
03
Review findings
Risk scores, flagged signals, and decoded data appear with the check that triggered each finding.
04
Act if needed
Walk away, investigate further, or connect a wallet only to revoke a TRC-20 approval you initiated.
Inputs stay in your browser. Scans query public APIs directly — nothing is sent to TRONSEC servers.
Methodology
How risk is scored
Heuristic analysis over public chain data. Scores are explainable estimates — not regulatory compliance or legal advice.
Scoring pipeline
- Collect — TronGrid, TronScan, VirusTotal, and community blocklists via direct browser requests.
- Normalize — Raw events map to signal types: blocklist hits, allowance flags, ABI patterns, domain heuristics.
- Score — Weighted heuristics per module: 0–100 risk, severity tiers, or pass/fail checks.
- Present — Plain-language findings with the named signal that triggered each result.
Per-module outputs
| Module | Output | Key signals |
|---|---|---|
| Wallet Scanner | 0–100 score | Blocklist hits, counterparty exposure, token anomalies, activity patterns |
| AML Risk Check | Severity tiers | Flows to scam addresses, peer clustering, rapid in/out patterns |
| Contract Scan | Risk flags | Mint/pause/blacklist ABIs, proxy patterns, unverified bytecode |
| Phishing Scanner | Threat verdict | VirusTotal reputation, typosquat detection, URL blocklists |
| Approvals Monitor | Allowance flags | Unlimited spenders, flagged contracts, stale approvals |
| TX Decoder | Informational | Decoded calls and transfers — no score, context for manual review |
| Network Analytics | Informational | Chain economics and health — no wallet risk score |
Data sources
TronGrid
Balances, transactions, contract calls on TRON Mainnet.
TronScan
Token holdings, verification status, contract ABIs, security tags.
VirusTotal
Multi-engine URL reputation for the phishing module.
Community lists
User-submitted scam reports aggregated into shared watchlists.
Use cases
Who TRONSEC is for
Same terminal, different workflows.
OTC & P2P desks
Screen a counterparty wallet before settlement. Decode the funding TXID and confirm no blocklist hits.
Wallet Scanner
AML Check
TX Decoder
Researchers & analysts
Map network flows, decode contract interactions, and benchmark chain health alongside wallet risk.
Network Analytics
TX Decoder
AML Check
dApp & contract users
Audit contract ABIs before approving, verify project URLs, and monitor active token allowances.
Contract Scan
Phishing Scanner
Approvals
Common workflows
- Before an OTC trade — Wallet Scanner + AML check on the counterparty address before releasing assets.
- After a suspicious DM — Phishing Scanner on the link, then Contract Scan on any contract address before approving.
- Monthly hygiene — Approvals Monitor to find unlimited spenders; connect wallet only to revoke.
Watchlist
Threat intelligence
Community reports and public blocklists surfaced across modules during scans.
Report → scan pipeline
- Report — Submit a scam address, contract, or URL via Report Scam.
- Validate — Format checks and deduplication against existing entries.
- Aggregate — Merged with TronScan security tags and public blocklists.
- Surface — Wallet, AML, and Phishing modules flag matches on future scans.
Signal types
Type
Flagged addresses
Wallets linked to phishing, rug pulls, or community scam reports.
Type
Phishing domains
URLs impersonating exchanges, wallets, or TRON dApps.
Type
Security tags
TronScan labels such as scam, suspicious, or high-risk contract markers.
Type
Risky counterparties
Peers that transacted with known flagged addresses.
Report a scam to feed the shared watchlist. Reports are not instant legal verdicts — always verify independently.
Modules
Module reference
Eight tools in one shell. Each has a marketing page with preview and workflow. Browse all tools →
| Module | Description | Links |
|---|---|---|
| scanner.shWallet Scanner | Free TRON wallet scanner — check any address for TRC-20 holdings, portfolio value, staking status, and a 0–100 on-chain risk score. Read-only, no wallet connection. | Page Open in app |
| analytics.dashNetwork Analytics | Live TRON network analytics — energy & bandwidth pricing, account growth, TRX burn, market sentiment, and on-chain health metrics for TRON Mainnet. | Page Open in app |
| approvals.pyApprovals Monitor | Audit TRC-20 token approvals on any TRON wallet. Detect unlimited allowances, flag malicious spenders, and revoke dangerous approvals in one click. | Page Open in app |
| aml_check.logAML Risk Check | TRON AML screening for any address — behavioral risk score, watchlist hits, counterparty concentration, and interactive fund-flow graph. Screen before you send. | Page Open in app |
| scan_url.shPhishing Scanner | Scan TRON dApp URLs for phishing, typosquatting, and blocklist hits before connecting your wallet. Multi-engine reputation check with VirusTotal. | Page Open in app |
| contract_scan.shContract Scan | Free TRON smart contract audit — static ABI analysis detects mint, pause, proxy, blacklist, and ownership risks in TRC-20 contracts before you interact. | Page Open in app |
| tx_decoder.hexTX Decoder | Decode any TRON transaction hash into human-readable actions, token transfers, approval amounts, and risk warnings — stop blind signing on TRON Mainnet. | Page Open in app |
| report_scam.mdReport Scam | Report scam TRON addresses, phishing URLs, and fake dApps. Community submissions feed the shared TRONSEC watchlist used across all security modules. | Page Open in app |
Security
Architecture & privacy
Read-only by design. Full security model →
Read-only scans
Wallet analysis, AML, and contract scans need zero wallet connection. Data comes from public APIs.
No accounts
No registration, no user database, no tracking profiles. Results cache in your browser session only.
Revoke-only signing
The only on-chain action is approval revocation — and only when you initiate it in your own wallet.
What we never do
- Ask for your seed phrase or private key
- Hold, move, or custody your funds
- Send scan inputs to TRONSEC servers
- Auto-sign transactions on your behalf
Limitations
Important disclaimers
- Risk scores are heuristic estimates — not FATF/KYC certification or legal advice.
- Blocklists may lag newly deployed scams or contain false positives.
- Contract analysis covers known ABI patterns but cannot detect all vulnerabilities.
- TRONSEC is not affiliated with the TRON Foundation, any exchange, or wallet vendor.
Ready to scan?
Open the terminal, pick a module, and paste your first TRON identifier.