Koi

About Koi

Koi is a tool that provides comprehensive risk analysis for browser extension security. It explores the code of browser extensions to identify hidden behavioral patterns, supply-chain vulnerabilities, and broader security implications beyond permissions. The AI-driven platform operates on a preventive policy module, aiming to minimize marketplace risks. Its core feature, 'Wings', functions as an LLM-first risk engine that assesses endpoint software, giving detailed insights on its functionality, the publisher, and composition. The tool regularly scans software marketplaces, app stores, and registries to fetch updated information on new software. It examines not just the declared functionality, but also the actual code behind the software, enabling a comparison between promised and actual functionality. Furthermore, 'Wings' scores the risk associated with the software based upon the indicators detected and updates these scores with software changes and new versions. This tool is beneficial for security, IT, GRC, and SOC teams requiring critical risk data in their operations. Kois risk engine equips organizations with extensive data about the software, including details about the publisher profile, softwares functionalities, applied vulnerabilities, breach intelligence, and compliance data. This allows them to make data-driven decisions on endpoint security.