Detect
Infrastructure surfaced against your brand the moment it appears.
We surface abusive domains and staging infrastructure before it reaches your perimeter, while helping security and brand teams investigate, score, and respond faster.
The problem
The asymmetry keeps widening. Attackers automate infrastructure, identities, and campaigns while defenders triage alerts, chase registrars, and rebuild evidence packets from scratch.
Have I Been Squatted exists to close that gap by finding threatening infrastructure early and connecting detection to action.
Attackers spin up infrastructure, identities, and campaigns at machine speed. Defenders are stuck playing a game of whack-a-mole, triaging, escalating, and remediating manually. Knowing is not enough when acting is the bottleneck.
Lookalike domains, staging hosts, and certificate transparency (CT) artifacts appear in places that endpoint and network security tools were never built to monitor.
Many abusive domains move from registration to active use within days, often within hours. Passive threat feeds arrive too late to preempt the damage.
The platform
Domain, certificate, DNS, and hosting signals feed a unified workflow scored against your organization. The output is prioritized risk with evidence, takedown support, and integrations into mail and security tooling.
Infrastructure surfaced against your brand the moment it appears.
Domains clustered into campaigns, attributed, and ready for casework.
Infrastructure taken down on your behalf, tracked through resolution.
Infrastructure surfaced against your brand the moment it appears.
Domains clustered into campaigns, attributed, and ready for casework.
Infrastructure taken down on your behalf, tracked through resolution.
Today
Security and brand protection teams at logistics, financial services, media, and technology companies rely on the platform for continuous domain monitoring and coordinated response.
Published customer stories document faster takedowns, higher confidence in monitoring coverage, and less time spent assembling evidence by hand. The team also collaborates operationally with law enforcement on active abuse cases.
Read customer storiesFounded
Launched in 2022 after an early experiment on Hacker News, the product grew through self-serve adoption by practitioners who needed better domain intelligence without a heavyweight sales process.
Trusted by 700+ organizations
Team
The founding team built application security and phishing simulation products together for years before Have I Been Squatted. They kept hitting the same wall. Infrastructure outside the perimeter moves faster than manual response, and this platform is built for evidence you can act on, speed that matches registration churn, and less busywork between alert and escalation.

Founder, CEO
Security engineer specialising in application security, cybersecurity, and embedded systems.

Co-Founder, CPO
Security and cloud engineer with a background in DevSecOps and web platform infrastructure.

Co-Founder, CCO
Incident response specialist with a background in threat intelligence and threat hunting.
Interested in joining? See open roles on the careers page.
View open rolesJoin cybersecurity professionals who trust Have I Been Squatted to protect their brands from threats.