Features
Abandoned package detection
End-of-life dependency scanning
CI/CD build blocking for EOL deps
Continuous EOL dataset updates
Multi-ecosystem support (npm, PyPI, Maven, etc.)
Compliance mapping to FedRAMP and PCI 4.0
Actionable remediation reports
Real-time alerts for newly abandoned packages
Flexible policy engine for custom rules
HeroDevs integration for supported alternatives
Adversary-in-the-middle (AiTM) phishing detection and block
ClickFix and ConsentFix attack detection and block
Session hijacking detection and block
Malicious OAuth integration detection and block
Ghost login and shadow SaaS discovery
Credential theft and compromised token detection
Agentic threat hunting using browser telemetry
Real-time AI tool visibility and usage control
In-browser data loss prevention for AI tools (clipboard, file uploads)
In-browser MFA registration and password change guardrails
Malicious browser extension detection and block
Mobile phishing detection via SMS/QR codes
Browser-based incident investigation with session replay
Supports Chrome, Edge, Firefox, Brave, and other Chromium browsers
Browser & Identity Attacks Matrix (51 techniques)