UserGlass
User Security & WAF Solution
Stop threats impacting your users
UserGlass protects your app and users from malicious actors. We link bad actions to users and alert you to suspicious user actions.
Designed to Enhance
We don't require any sensitive data to bolster your application. By onboarding UserGlass, you have the confidence that we're not the vulnerability.
Zero PII Disclosure
Apart from IP addresses and User Agents, all information shared with UserGlass are unique hashes. No need to share emails or any other PII information.
Instant Security Updates
From the minute a new CVE is disclosed, our system can deploy mitigation's in realtime to ensure your application is secure from the latest exploits.
Local Agent
Every web request is checked by our locally installed agent. No latency overhead, and no sensitive data disclosure needed. When it detects a security issue, the agent will let us know.
Web Application Firewall (WAF)
Protect your data and identify the attackers
Our Web Application Firewall continuously monitors incoming requests to your web application and blocks malicious traffic in real-time. It uses a combination of signature-based detection, behavioral analysis, and rulesets to identify and prevent attacks. All security events are associated with your users, so you can identify malicious actors. Some of the features our WAF include, are:
- Managed Rulesets (OWASP, Data Exposure, Bot Protection)
- Custom Rules
- SQL Injection Protection (SQLi)
- Cross Site Scripting Protection (XSS)
- Associate attacks to your accounts
- Real-time Security Updates
Security Event
Request ID
8ebaa7e6-a132
IP Address
208.80.152.2
Time
1st April, 2023 9:35PM UTC
Location
Sydney, Australia
User Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36
Action
BLOCKED
Trigger
SQL Injection
Request
GET https://admin.yourapp.com/accounts/872 or 1=1
Device ID
17195d191e4f10...
First Seen
5 days Ago
Associated Accounts (2)
1e66bcab, d87f4542
Account
UserGlass ID
8ebaa7e6-a132
Your ID
raX4kVt6
Risk Score
65%
Last Location
Auckland, New Zealand
Last Login
1st April, 2023 9:35PM UTC
Risks
Impossible Travel, UserAgent Spoofing
Account Takeover (ATO)
Identify at-risk accounts
Our Account Takeover Prevention solution monitors user behaviour and detects suspicious activity, allowing you to proactively protect your users from account takeover attempts. We analyze login attempts and detect anomalous activity, such as logins from unfamiliar locations or devices. When we detect a potential threat, we can take action to secure the account, such as requiring additional authentication steps or blocking access until the user can verify their identity.
Shared Account Detection
Open new sources of revenue
Our software can detect unique devices accessing your services, allowing you to identify when a single account is being shared by multiple users. This feature can help you uncover new sources of revenue by identifying accounts that are being used by multiple people and allowing you to offer multi-user plans or price tiers. Additionally, detecting shared accounts can help prevent abuse of your service and ensure that your paying customers are getting the value they expect.
| Device | Last Location | Active % |
|---|---|---|
| 1e33327d | Auckland, New Zealand | 63% |
| 8025e960 | Cape Town, South Africa | 25% |
| f2d67b50 | Togiak, Alaska | 12% |
How does it work?
Integrating with UserGlass is as simple as installing our package into your application. Once installed, our technology will automatically start monitoring your application for threats and alerting you to any suspicious activity. Our solution is easy to integrate and works seamlessly with your existing infrastructure, so you can start protecting your application and users right away.
Join the waitlist
Leave your email below, and we'll reach out when we launch.