A homoglyph is a character from one script that looks identical, or nearly identical, to a character from another. The Cyrillic а (U+0430) and the Latin a (U+0061) render the same in most fonts but are completely different code points, which is what makes them useful for spoofing and confusing for security.

How is this used in attacks?

Attackers register internationalised domain names (IDNs) or display names that swap Latin letters for Cyrillic lookalikes — for example a fake paypal.com where the a and p are Cyrillic. The text looks legitimate to a human but points somewhere else. Showing the swap here helps people recognise and defend against it.

Which letters get replaced?

Only Latin letters with a genuinely convincing Cyrillic match are swapped — such as a, c, e, i, o, p, s, x, y and several capitals like A, B, E, H, K, M, O, P, T, X. Letters with no close Cyrillic equivalent are left as Latin so the output stays readable.

Is it safe and legal to use this?

The tool itself is a harmless converter for education, security awareness, and detection. Using homoglyph text to impersonate brands, deceive users, or commit fraud is illegal in most jurisdictions. Use it to understand and defend against spoofing, not to carry it out.

Is my text uploaded anywhere?

No. The conversion runs entirely in your browser with JavaScript. Nothing you type is sent to a server, logged, or stored.

Cyrillic Lookalike Converter

This converter replaces Latin letters with visually identical Cyrillic homoglyphs, the trick behind homoglyph and IDN spoofing attacks. The output looks like ordinary Latin text but is built from entirely different Unicode code points. It is provided as a security-awareness and detection tool — so you can see, count, and recognise the swap, not so you can deceive anyone. Everything runs locally in your browser.

How it works

Many Cyrillic letters were designed to share shapes with Latin ones, so in most fonts they are indistinguishable. The converter maps each Latin character to its closest Cyrillic counterpart:

a -> а (U+0430)   e -> е (U+0435)   o -> о (U+043E)
p -> р (U+0440)   c -> с (U+0441)   x -> х (U+0445)
A -> А (U+0410)   E -> Е (U+0415)   H -> Н (U+041D)

Only letters with a convincing match are swapped; the rest stay Latin. A live counter reports how many characters were replaced, which is exactly the signal a homoglyph detector looks for — mixed scripts within a single token.

Tips and notes

To verify the deception, paste the output into any Unicode or hex inspector: the glyphs that look like a, o and p will report Cyrillic code points instead of the Latin Basic Latin block. Browsers and registrars defend against this by showing Punycode (the xn-- form) when a domain mixes scripts — a habit worth building. Use this tool to train your eye and your filters; using homoglyphs to impersonate brands or phish users is illegal in most countries.