Our Story

We have always been fascinated with webpage security and recognized that the advancements in modern web functionality would come with a security trade-off.

1. 2009 - Present: Webpage Security Research

   We present our findings on Webpage security at BlackHat and other prominent conferences.

2. 2011 - 2014: IronWASP

   Open-source web security scanner highly regarded for its ability to analyze client-side JavaScript.

3. 2015 - 2017: RASP & IAST Research

   We extensively researched RASP and IAST technologies. We developed our own solution to protect server-side Java and client-side JavaScript.

4. 2018: SBOXR DOM

   Runtime analysis-based DOM XSS Scanner.

5. 2019: ICO fines BA $233 million

   British Airways was fined $233 million (~1.5% of global annual turnover). Later, reduced to $22 million thanks to COVID.

6. 2020: Upekkha

   Joined Upekkha Accelerator Program, which is known for creating companies which deliver value.

7. 2020: Birth of DOMDOG

   Continuous Monitoring System designed to combat the growing threat of client-side attacks.

8. 2025 (Now): DOMDOG - Page Security & Privacy Platform

   • 3 modes of Monitoring
   • 1 Million+ Remote Scans Executed
   • 20 Billion+ Page Views Protected
   • 100 Billion+ CSP Violations Processed
9. Our Approach

   Our approach is research-driven and focused on engineering, allowing us to deliver cutting-edge solutions.

Throughout our journey, we have witnessed the critical importance of webpage security. Attacks have exposed sensitive data, resulting in substantial fines. We are committed to assisting organizations in safeguarding against client-side vulnerabilities.

Join us as we continue to innovate and protect your applications from client-side attacks.