See what's inside a QR code before you trust it. Read codes from a screenshot, photo, pasted image, or your camera — links get a safety preview, Wi-Fi and contact codes get decoded into plain fields. Nothing is uploaded, ever.
QR codes are everywhere β menus, parking meters, posters, invoices, package labels β and every one of them is a black box until you scan it. Your phone's camera helpfully opens whatever is inside, which is exactly the problem: criminals now put stickers over legitimate codes ("quishing"), and the URL behind a code can be anything. This reader flips that around: it decodes the code and shows you what's inside first β the full URL with its real domain highlighted, the Wi-Fi network and password spelled out, the contact card as plain fields β and only opens something when you decide to.
Ctrl+V right on the page. The fastest way to check a code you found online.
Most "QR decoder" websites upload your image to their server to scan it. Think about what's in those images:
screenshots of tickets, boarding passes, payment codes, two-factor setup codes, Wi-Fi passwords. This reader runs
the decoding entirely in your browser with the open-source jsQR engine β the image never leaves your
device, the camera feed goes from the lens to your screen and nowhere else, and nothing is logged or stored.
For codes containing secrets, that's not a nicety; it's the whole point.
Before scanning any QR code in the wild with your phone's camera, ask: would I type a URL someone handed me on a sticker? When a code matters β payment, login, parking β read it here first, look at the domain, and make the decision consciously. Thirty seconds of paranoia beats a drained account.
Paste the image with Ctrl+V, drop the photo in, or point your camera, and the code's contents appear instantly: no phone gymnastics required to decode a code that is already on your screen.
Decode it here first: links get a safety preview with the actual destination domain highlighted, so a lookalike domain stands out before your phone ever visits it. That parking meter sticker deserves the check.
QR phishing: malicious codes on stickers, flyers, and emails that lead to credential-stealing pages, exploiting the fact that a code hides its destination. Reading the code before trusting it is the defense, and it takes five seconds here.
Links, Wi-Fi network credentials, contact cards, and plain text, each displayed in a readable form rather than raw payload.
No. Decoding happens in your browser, so screenshots and camera frames never leave your device.