Skip to content
🔐Laurent M🔐 edited this page Jul 3, 2026 · 15 revisions

SysWarden Enterprise Wiki

Welcome to the official documentation for SysWarden, the military-grade, zero-trust cybersecurity platform natively built in Go.

SysWarden provides absolute defense-in-depth through High-Speed Network Layer (L3) OSINT filtering, Hardware ARP Spoofing prevention (L2), and an autonomous Web Application Firewall (WAAP/L7) capable of defeating advanced exploits (SQLi, XSS, LFI, RCE) in real-time with zero latency overhead. All core defensive subsystems now feature Full Native IPv4 and IPv6 Support, ensuring comprehensive protection across modern dual-stack environments.

It features a Zero-Trust Strict ALLOW Mode, empowering CISOs to globally lock down infrastructure and seamlessly whitelist critical GeoIPs and ASNs at the hardware layer, ensuring that only trusted traffic enters the network, while preserving L7 WAAP independence to ban even whitelisted IPs if they act maliciously.


📚 Core Documentation

Tip

Getting Started
If you are new to SysWarden or looking to deploy it across your server infrastructure, please follow our comprehensive, step-by-step installation guide.

  • Deployment Tutorial
    Learn how to flawlessly install SysWarden via native .deb/.rpm/.txz/.apk packages (for Linux and FreeBSD 14+ on AMD64 & ARM64 architectures), secure your Host OS with CIS benchmarks, master the architecture with syswarden manual, configure the engine via syswarden config, and deploy the automated Threat Intelligence feeds natively without legacy bash dependencies.

🏢 Enterprise Scenarios

Important

DevSecOps & ITIL Architecture
We have curated a list of advanced, real-world deployment cases to demonstrate how SysWarden seamlessly integrates into complex, highly-available production environments.

  • Use Cases & Architectures
    Discover 15 critical enterprise scenarios tailored for SOC Analysts, System Administrators, and DevSecOps Engineers. Explore practical setups for Docker Micro-segmentation, SIEM/Wazuh Integrations, Air-Gapped LAN protections, HA Clustering, and dedicated application defenses (GitLab, Odoo, WordPress, APIs).

Clone this wiki locally