This document proposes an anti-phishing framework based on visual cryptography to address the growing issue of phishing attacks. It involves splitting an image captcha into two shares stored separately so that only when combined can the original captcha be revealed, preventing phishing sites from accessing it. During registration, a user and server each contribute keys to generate the captcha image, then split into shares. For login, the user share is combined with the stored server share to reconstruct and display the captcha for password verification. The framework aims to provide three layers of security to protect user information and detect phishing sites through image captcha validation.