Initially, a few programmers developed some web service products in their spare time. Over time,they faced multiple cyberattacks, including Bitcoin ransom demands, data breaches, and other security incidents.This led them to reach out to the founding member of our startup team, hoping to develop a tool that could detect website vulnerabilities and prevent potential attacks.
As the user base grew, the original scanning capabilities could no longer meet demand, so the team invited several cybersecurity experts to join and completely redesigned the product, building a more powerful security tool from scratch.
However, when this tool demonstrated its advanced capabilities, we realized it could also be misused by malicious actors. To prevent abuse, we implemented an ownership verification mechanism, ensuring that only authorized users could scan their own targets.
Today, our team brings together experts from cybersecurity, server development, software engineering, cryptography, AI model applications, and algorithm R&D—most with over a decade of industry experience. Tired of seeing their skills buried under the grind of 996 work culture, they yearned to do something more meaningful in their fields of expertise.
We coined our credo: 'Serve others, fulfill ourselves' — practicing the geek ethos. Our shared mission is to simplify workflows, reclaim time, and ultimately help people achieve more meaningful lives.
Initially, a few programmers developed some small-scale web services in their spare time but soon encountered cyberattacks,including DDoS, SQL injection, and Bitcoin ransom demands.Lacking professional security measures, they had to manually patch vulnerabilities and even pay ransoms.
Thus, they reached out to the core members of our startup team (including an engineer with experience at a security firm),hoping to develop a lightweight vulnerability scanner for self-inspection.The initial version only supported basic SQL injection and XSS detection,but it was already capable of helping them identify and fix most critical vulnerabilities in advance.
As more developers began using the tool, the original scanning engine revealed performance bottlenecks and a high false-positive rate. Users requested support for additional vulnerability types (such as CSRF, SSRF, API security, etc.) and faster scanning speeds.
In response, the team brought on board three seasoned cybersecurity experts—veterans from leading domestic security labs and internet company security teams. After six months of restructuring, the new version adopted a distributed scanning architecture, supported plug-in vulnerability detection rules,and introduced dynamic verification mechanisms to reduce false positives.
As our product's capabilities grew stronger, we recognized its potential for misuse by malicious actors. Some users reported cases where unauthorized parties attempted to scan targets without permission, or even used the vulnerability database for attack simulations.
To address this, we implemented two key measures:
- Ownership Verification Mechanism: Users must verify ownership of target domains or IPs (via DNS record validation or file verification) before scanning.
- Security Usage Agreement: All users must pledge to scan only assets they own or have explicit authorization to test. Violators face permanent suspension.
This ethical framework ensures our technology serves as a defensive tool rather than an offensive weapon, aligning with our mission to make the internet safer for everyone.
Today, our team has brought together experts from multiple technical domains:
- Cybersecurity:Former penetration testers specializing in vulnerability discovery and defense
- Server Development:High-concurrency architects optimizing scanning engine performance
- Cryptography:Blockchain security experts strengthening data transmission and storage
- AI Model Application:Leveraging machine learning to identify novel attack patterns
- Algorithm R&D:Optimizing vulnerability detection logic to improve accuracy
Most of these members are tired of the repetitive work in large factories and hope to do more fulfilling things in their areas of expertise.
"Help others, achieve ourselves" — We believe the true value of technology lies in making the world safer, not just commercial monetization.
Former penetration testers specializing in vulnerability research
High-concurrency architects optimizing scan engine performance
Blockchain security experts securing data transmission
Machine learning for novel attack pattern recognition
Optimizing detection logic for higher accuracy
This is more than a product - it's the dedication and passion of technologists making the digital world safer.
