What I need • A web-based mock-up that faithfully imitates the Metamask interface and the most popular phishing patterns (fake pop-ups, approval requests, seed-phrase reset screens, malicious redirect pages). • No live blockchain calls; everything must run locally or on a lightweight demo server so nobody’s real wallet is ever at risk. • Clean logging of user actions (e.g., when they reveal a seed phrase or approve a fake transaction) so I can replay mistakes during workshops. • Clear, friendly post-simulation feedback explaining each red flag that was missed. Tech is flexible—plain HTML/JS works, but React or Vue is fine if it speeds development. I’ll supply sample text and graphics; you supply the working simulation, a short setup guide, and commented source code so I can tweak scenarios later. Acceptance criteria • The demo loads instantly in Chrome, Firefox, Edge, and mobile Safari. • All interaction happens client-side; no data leaves the browser. • At least three distinct phishing scenarios are selectable from a simple menu. • A “Lesson learned” overlay appears automatically once the user falls for, or correctly avoids, the trap. Once delivered, I’ll run a quick test webinar. If the crowd understands the lesson and nothing breaks, we’re done.