SquareX Web-AV is an in-browser analysis engine that monitors websites, files, clipboard activity, extensions, and user behavior with identity awareness. The solution provides Data Loss Prevention capabilities, including controls that allow text copied from authorized sites to be pasted only on other authorized sites. The platform performs live OCR (Optical Character Recognition) to compare on-screen content against enterprise-defined content for phishing detection. This includes detecting Browser-in-the-Browser (BitB) attacks and Adversary-in-the-Middle (AiTM) phishing pages that use evasion tactics such as code obfuscation and proxy blocking. SquareX Web-AV includes file analysis capabilities that examine macro-enabled Office documents, file structures, and source code to identify invasive functions, tampering, and antivirus evasion tactics. The system can detect files with VBA macros, file type mismatches where extensions are altered to disguise malicious content, and other signs of file tampering. The solution enables administrators to create policies through a policy generator that can block downloads of malicious or suspicious files, prevent files with embedded macros from being downloaded, and stop files with mismatched file types. These policies help prevent potentially harmful files from reaching user devices through email or other communication channels.