Xisem Browser Telemetry A

XISEM Browser Telemetry & Anti-Venom Protection is a sophisticated browser extension designed to enhance security and telemetry visibility for both organizations and individual users. Tailored primarily for enterprise environments, XISEM provides detailed, privacy-conscious reporting on active browser tabs while delivering advanced protection against phishing, impersonation, and unsafe websites. This extension focuses on reporting minimal metadata—only the active tab’s URL and title—without collecting sensitive personal data such as page content, keystrokes, cookies, clipboard data, or screenshots. By doing so, it enables managed environments to monitor browser usage, productivity, and endpoint exposure without infringing on user privacy.

A signature feature of XISEM is its unique “Anti-Venom” official-site watermarking capability. When users visit officially verified HTTPS domains (typically enterprise or recognized authority sites), the extension visually marks these pages by overlaying a tiled watermark on light backgrounds that includes the user’s email address and the extension icon. This watermark confirms the site’s authenticity, thwarting phishing attempts and web impersonation attacks by making it significantly harder for malicious or lookalike sites to mimic trusted domains. Organizations can customize which domains receive this protection, ensuring that only designated, recognized sites are marked.

XISEM continuously checks visited domains against customizable organization policies and trusted domain lists. Sites are classified into clear security states—official/safe, warning, or blocked—allowing users to quickly understand the security posture of their browsing sessions. For suspicious or blocked destinations, the extension displays full-screen alerts or warning banners, keeping users informed and protected in real time. It also incorporates a short HTTPS-upgrade grace period to minimize false warnings during browser redirects, improving user experience without compromising security.

In addition to telemetry and site protection, XISEM features rich configuration options for enterprise management. Administrators can centrally manage settings such as API endpoint configurations, authentication tokens, tenant IDs, domain whitelisting/blacklisting, and telemetry exclusions via managed policies. The extension supports secure data uploads to external endpoints, including native messaging integration with platforms like Microsoft Graph and custom APIs. Users are kept aware of the extension’s status through notification banners that indicate when protection is active, if telemetry uploads are disabled, or when endpoint agents are unreachable.

The extension also supports reporting to the DualStrike agent API—a companion service used by endpoint and tray dashboards—to provide insight into extension health and site filtering status over rolling 24-hour periods, categorized as green, yellow, or red. This adds a layer of security awareness and operational oversight for organizations aiming to enforce security policies and monitor browser risk posture effectively. XISEM’s intuitive options page allows both users and administrators to tailor telemetry settings, domain exclusions, Anti-Venom watermark rules, and privacy-conscious modes such as incognito exclusions.

Key Features:
- Active Tab Telemetry: Securely tracks and reports the active browser tab’s URL and page title only, without collecting page content, keystrokes, cookies, clipboard, or screenshots.
- Anti-Venom Official Site Watermarking: Visually indicates trusted HTTPS sites by overlaying a customizable tiled watermark that reduces phishing and impersonation risks.
- Enterprise Configuration and Policy Management: Centralized settings for API authentication, tenant IDs, domain whitelisting/blacklisting, telemetry exclusions, and managed schema support.
- Security Warning & Site Blocking: Full-screen alerts and configurable warning pages protect users from suspicious and blocked domains based on organizational policies.
- HTTPS Upgrade Grace Period: Prevents false warnings by allowing a short delay during normal browser HTTPS redirects from typed domains.
- Native Messaging & API Integration: Enables secure telemetry data uploads to Microsoft Graph and custom APIs, supporting advanced enterprise reporting and integration.
- Real-Time Notifications & Banner System: Provides visible alerts about protection status, telemetry upload capability, and extension health to keep users informed.
- DualStrike Agent API Reporting: Supplies filtered-site insights and extension health metrics over a rolling 24-hour window to companion endpoint dashboards.
- User-Friendly Options Interface: Easy access to configure email overrides, domain exclusions, Anti-Venom rules, incognito mode exceptions, and telemetry settings.

How It Works:
1. Install the XISEM Browser Telemetry extension from your browser’s official store.
2. Access the options page to set up your organization’s API endpoint, authentication token, tenant ID, and email address override if required.
3. Define official domains and Anti-Venom watermarking rules to specify which sites will be marked as authentic by the extension.
4. The extension monitors the active tab’s URL and title, securely uploading this telemetry data to the approved endpoint when enabled.
5. Upon navigating to a verified official HTTPS site, XISEM overlays a visible watermark that confirms the site’s authenticity and deters phishing attempts.
6. If a user visits suspicious or blocked sites, full-screen alerts or warning banners activate according to the configured policy rules, protecting against unsafe content.
7. Notifications and banners display extension status such as active protections, telemetry upload health, and endpoint connectivity, ensuring transparency and user awareness.
8. Telemetry data and filtered-site status can be reported to an organization’s DualStrike agent API for endpoint monitoring and policy enforcement dashboards.

Privacy: - No personal data collected. XISEM only reports the active tab’s URL and title, explicitly avoiding collection of page content, keystrokes, cookies, clipboard data, or screenshots. The extension respects incognito mode exclusions and domain-based skip lists to ensure user privacy is maintained. All telemetry and data integrations are configurable and managed with strict privacy in mind. See our privacy policy for full details.