Use Domdog Scanner to conduct a gap assessment of PCI DSS 4.0 client-side controls.
Complete Client-Side Security Solution

Built by Engineers;
For Engineers.

We believe that an effective security system should be simple and transparent.

50 billion+

CSP Reports Processed

10 billion+

Page Views Protected

15 years of

Client-side Security Expertise
Robust CSP

Domdog ensures your client-side security journey is well-guided.

Client-side of web applications has traditionally been a blind spot from a security perspective, with Content Security Policies being the only defence in this space.

This has been highlighted by PCI DSS by including client-side security controls due to recent Magecart attacks, which have led to the leakage of hundreds of millions of credit card details

Please note, attackers' interest is not just limited to credit card details.

Our Story

We have always been fascinated with client-side security and recognized that the advancements in modern web functionality would come with a security trade-off.
  1. 2009 - Present: Client-side Security Research

    We present our findings on client-side security at BlackHat and other prominent conferences.

  2. 2011 - 2014: IronWASP

    Open-source web security scanner highly regarded for its ability to analyze client-side JavaScript.

  3. 2015 - 2017: RASP & IAST Research

    We extensively researched RASP and IAST technologies. We developed our own solution to protect server-side Java and client-side JavaScript.

  4. 2018: SBOXR DOM

    Runtime analysis-based DOM XSS Scanner.

  5. 2019: ICO fines BA $233 million

    British Airways was fined $233 million (~1.5% of global annual turnover). Later, reduced to $22 million thanks to COVID.

  6. 2020: Upekkha

    Joined Upekkha Accelerator Program, which is known for creating companies which deliver value.

  7. 2020: Birth of DOMDOG

    Continuous Monitoring System designed to combat the growing threat of client-side attacks.

  8. 2023 (Now): DOMDOG - Complete Client-side Security Solution

    • 3 modes of monitoring
    • 10 Billion+ Page Views Protected
    • 50 Billion+ CSP Violations Processed
  9. Our Approach

    Our approach is research-driven and focused on engineering, allowing us to deliver cutting-edge solutions.

Throughout our journey, we have witnessed the critical importance of client-side security. Attacks have exposed sensitive data, resulting in substantial fines. We are committed to assisting organizations in safeguarding against client-side vulnerabilities.

Join us as we continue to innovate and protect your applications from client-side attacks.

Founding Team

Lavakumar Kuppan

Lavakumar Kuppan


Vision & Engineering

Sukesh Pappu

Sukesh Pappu


Growth & Engineering

Bala Sakthis

Bala Sakthis


Delivery & Engineering

We are Your Reliable Security Partner

Domdog has been a great partner to us, as they are attentive to their customers as well as to what is happening in the security space to respond accordingly.

Manager, Information Security | Major E-commerce provider in US

Associated With

Upekkha: Value SaaS AcceleratorPayment Card Industry Security Standards CouncilData Security Council of India (DSCI): A Nasscom InitiativeT-Hub: India's Leading Innovation Ecosystem

Don't leave your client-side unprotected

Find out how you can protect your client-side in just a matter of weeks
Talk To Us