Abstract: Embodiments of the technology described herein identify and mitigate phishing attempts by analyzing user input using a client-side proxy component and a proxy server. Embodiments disclosed herein provide systems, methods, and computer-storage media for employing proxy server capabilities in conjunction with a snapshot capturing an image or video recording of a target action input by a user into a software application. Certain embodiments disclosed herein employ proxy server capabilities to capture a snapshot and/or screen recording based on a user authorization or approval. For example, the proxy server proactively captures the snapshot or screen recording prior to, during, and after the user performing a target action. From the snapshot, certain embodiments extract snapshot features or determine enriched-contextual event data that is used to perform a mitigation action, generate a security mitigation score, or update an administrator portal activity log for an authorized administrator.

Abstract: Placeholders are inserted and replaced in placeholders in code included in resources. A proxy receives a request for a resource from a client and verifies an authentication credential included therein. The proxy determines a placeholder value indicating the authentication credential is verified and determines the requested resource corresponds to a first modified version of the resource stored in memory accessible to the proxy, the first modified version comprising a code component including a placeholder inserted by the proxy. The proxy replaces the placeholder with a first placeholder value to generate a second modified version of the resource and transmits the second modified version of the resource to a client. In another aspect, a client-side proxy service detects events in a modified version of a web page, inserts a placeholder in code of the web page, replaces the placeholder with a placeholder value, and evaluates the modified code.

Abstract: Placeholders are inserted and replaced in placeholders in code included in resources. A proxy receives a request for a resource from a client and verifies an authentication credential included therein. The proxy determines a placeholder value indicating the authentication credential is verified and determines the requested resource corresponds to a first modified version of the resource stored in memory accessible to the proxy, the first modified version comprising a code component including a placeholder inserted by the proxy. The proxy replaces the placeholder with a first placeholder value to generate a second modified version of the resource and transmits the second modified version of the resource to a client. In another aspect, a client-side proxy service detects events in a modified version of a web page, inserts a placeholder in code of the web page, replaces the placeholder with a placeholder value, and evaluates the modified code.

Abstract: Embodiments of the technology described herein identify and mitigate phishing attempts by analyzing user input using a client-side proxy component and a proxy server. Embodiments disclosed herein provide systems, methods, and computer-storage media for employing proxy server capabilities in conjunction with a snapshot capturing an image or video recording of a target action input by a user into a software application. Certain embodiments disclosed herein employ proxy server capabilities to capture a snapshot and/or screen recording based on a user authorization or approval. For example, the proxy server proactively captures the snapshot or screen recording prior to, during, and after the user performing a target action. From the snapshot, certain embodiments extract snapshot features or determine enriched-contextual event data that is used to perform a mitigation action, generate a security mitigation score, or update an administrator portal activity log for an authorized administrator.

Abstract: Placeholders are inserted and replaced in placeholders in code included in resources. A proxy receives a request for a resource from a client and verifies an authentication credential included therein. The proxy determines a placeholder value indicating the authentication credential is verified and determines the requested resource corresponds to a first modified version of the resource stored in memory accessible to the proxy, the first modified version comprising a code component including a placeholder inserted by the proxy. The proxy replaces the placeholder with a first placeholder value to generate a second modified version of the resource and transmits the second modified version of the resource to a client. In another aspect, a client-side proxy service detects events in a modified version of a web page, inserts a placeholder in code of the web page, replaces the placeholder with a placeholder value, and evaluates the modified code.

Abstract: Placeholders are inserted and replaced in placeholders in code included in resources. A proxy receives a request for a resource from a client and verifies an authentication credential included therein. The proxy determines a placeholder value indicating the authentication credential is verified and determines the requested resource corresponds to a first modified version of the resource stored in memory accessible to the proxy, the first modified version comprising a code component including a placeholder inserted by the proxy. The proxy replaces the placeholder with a first placeholder value to generate a second modified version of the resource and transmits the second modified version of the resource to a client. In another aspect, a client-side proxy service detects events in a modified version of a web page, inserts a placeholder in code of the web page, replaces the placeholder with a placeholder value, and evaluates the modified code.