Remote Browser Isolation, rebuilt for the modern web

The self-improving
remote browser

Browse any website safely — in a microVM, in under 2 seconds. No code from the target site ever reaches the user device.

Request access See how it works
Firecracker microVMs Zero data retention Post-quantum ready AI pre-check
rbi.webatrisk.com/session/a7f3c2...
isolated
1.8s
session start (warm pool)
0 bytes
persisted after session
1 microVM
per user, per session
> isolating connection...
> AI URL pre-check: safe
> Firecracker microVM booted in 284ms
> streaming safe DOM to user...
Why Webatrisk

Three things, done right.

Security

Per-session Firecracker microVM isolation — the same technology that powers AWS Lambda. Target site code is executed in the cloud; only a safe DOM stream reaches the device.

  • ·AI URL safety pre-check before session starts
  • ·Zero cache, cookies, or history retained
  • ·Post-quantum cryptography ready

Speed

A warm pool of pre-booted microVMs keeps session start under two seconds for most users. No CAPTCHA dance, no install, no browser extensions.

  • ·Typical start: ~2s from click to live session
  • ·5-min idle / 30-min max for cost + security
  • ·Global edge routing, low-latency streaming

Compatibility

Most RBI products break on modern sites. Webatrisk renders React, Vue, Svelte, Angular, Next.js, Qwik, SolidJS, PWAs, Shadow DOM, Web Components, and inline SVG — correctly.

  • ·Works on CNN, Wikipedia, linear.app, and modern SPAs
  • ·Arabic & CJK input (composition events supported)
  • ·Built-in ad blocker, tracker blocker
How it works

Four steps. Two seconds.

User
any device
Cloud browser
Firecracker microVM
Target site
executed in cloud
Safe DOM stream
no exec on client

The user's device never executes the target site's code. Instead, Webatrisk renders the page inside a fresh microVM and streams a sanitised, interactive DOM back over an encrypted channel. When the session ends, the microVM is destroyed — no cache, no cookies, no history.

For developers

A single REST call starts a session.

Webatrisk exposes a clean REST API. Create a session for a URL, embed the returned viewer URL in an iframe, destroy it when you're done. That's the whole integration.

  • OpenAPI 3.1 spec, language-agnostic
  • iframe-embeddable viewer, no extension required
  • Webhook callbacks for session lifecycle events
  • Scoped API keys per tenant
Read the docs 
# create a new isolated browsing session
curl -X POST https://api.webatrisk.com/v1/sessions \
  -H "Authorization: Bearer $WEBATRISK_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "url": "https://example.com",
    "region": "eu",
    "ttl_seconds": 1800,
    "ai_urlcheck": true
  }'

# response
{
  "session_id": "ses_a7f3c2...",
  "viewer_url": "https://view.webatrisk.com/...",
  "expires_at": "2026-04-17T10:45:00Z"
}
Pricing

Transparent. B2B only.

All plans are billed per-user, per-month. Contact sales to provision — no self-serve signup yet.

Starter
$5/user/mo
5 users minimum
  • – Shared warm pool
  • – 5-min idle / 30-min max
  • – Basic AI URL pre-check
  • – Email support
Contact sales
Pro
Popular
$10/user/mo
25 users minimum
  • – Priority warm pool
  • – Custom session TTL
  • – Webhook lifecycle events
  • – Priority support, 24h SLA
Contact sales
Enterprise
$15/user/mo
100 users minimum
  • – Dedicated warm pool
  • – Regional data residency
  • – SSO (SAML / OIDC)
  • – Dedicated CSM, 4h SLA
Contact sales
White-label
Custom
MSP / reseller
  • – Your brand, your domain
  • – Volume pricing
  • – Multi-tenant admin
  • – Partner-grade support
Contact sales

Competitors like Menlo Security and Zscaler typically start north of $40/user/mo. We bring RBI into SMB reach.

Partners
Caspori
More partners coming soon
Request access

Tell us about your use case.

We'll get back within one business day. B2B only for now.

Or email us directly: [email protected]