TRONSEC — Free Wallet, AML & Phishing Scanner for TRON (no wallet connection needed)

TRON Discussion
1

TRONSEC — Free On-Chain Security Scanner for the TRON Ecosystem

Hey TRON community :waving_hand:

I want to share a tool I’ve been building for the past few weeks: TRONSEC — a free, read-only security terminal for TRON.

No wallet connection required. No registration. Just paste an address, transaction ID, or URL and get a full risk report.

What it does

:magnifying_glass_tilted_left: Wallet Scanner
Portfolio value, TRC-20 holdings, staking, energy & bandwidth meters, security flags, and recent transaction history.

:shield: AML Check
Behavioral risk screening on the last 400 transactions — composite risk score, counterparty concentration, flagged addresses, and an interactive force-directed graph of counterparties.

:white_check_mark: Approvals Monitor
Audit active TRC-20 allowances on any wallet. Surface unlimited approvals and unknown spenders before they drain your tokens.

:link: URL Phishing Scanner
Multi-engine reputation check via VirusTotal + typosquatting heuristics. Paste any link before you click it.

:page_facing_up: Contract Scanner
ABI-level risk analysis — detects mint, pause, blacklist, and ownership transfer functions.

:unlocked: TX Decoder
Paste a TXID to decode transfers, approvals, contract calls, fees, and automated risk heuristics.

Why We built it

There’s no free, all-in-one security tool for TRON that non-technical users can actually use. Every time someone asks “is this wallet safe?” or “should I click this link?” — there’s no clean answer. TRONSEC is my attempt to fix that.

Technical notes (for the devs)

  • Reads directly from TronGrid and TronScan APIs
  • API keys never touch the browser — routed through a Cloudflare Worker proxy
  • Fully read-only, no wallet connection, no data stored
  • Open for feedback on methodology (AML scoring, approval risk thresholds)

:link: Try it: TRONSEC — TRON Wallet, Contract & Approval Scanner

Would love to hear feedback from the community — especially on the AML scoring and anything I might be missing. What security checks do you wish existed for TRON?

Wallet scanner
Wallet scanner1280×606 49.8 KB

Approvals monitor
Approvals monitor1280×609 47 KB

Aml check
Aml check1280×604 50 KB

Aml graph
Aml graph1280×606 37.6 KB

Phishing checker
Phishing checker1280×606 48.7 KB

7 Likes
6

Quick question for the devs — does the AML heuristic also check for interaction with known mixer/tornado-style contracts on TRON? I see it flags suspicious patterns but wasn’t sure if specific contract blacklists are used. Also, any plans for a browser extension? Would be killer as a right-click “scan this address” thing

7

Great questions! Here’s the breakdown:
On mixers/tornado-style contracts: The current heuristic doesn’t specifically flag known mixer contracts by address — it’s behavioral. It analyzes the latest 400 transactions and flags based on:

  • Counterparty concentration (if >70% of TX volume goes to one address)
  • Presence of any TronScan-tagged addresses (scam, phish, fraud, blacklist, sanction, hack, exploit)
  • Direct transfer velocity (50+ = high, 20+ = elevated)
  • Account age (<7 days = suspicious for active wallets)
  • Low counterparty diversity with high TX count
  • Hard signals from TronScan’s security API: blacklist status, fraud transactions, token creation, spam memos

A dedicated mixer/Tornado-style contract blacklist is a good call — I’ll add it to the pipeline. Know any known TRON mixer addresses I should include?
Browser extension: It’s on the roadmap! Right-click “Scan this address” is exactly the UX I want. The API proxy (Cloudflare Worker) is already built to handle it — just need to package the frontend as a Chrome/FF extension. No ETA yet but it’s the logical next step after the web app stabilizes.

1 Like