-
-
Notifications
You must be signed in to change notification settings - Fork 24
Home
Welcome to the official documentation for SysWarden, the military-grade, zero-trust cybersecurity platform natively built in Go.
SysWarden provides absolute defense-in-depth through High-Speed Network Layer (L3) OSINT filtering, MAC/ARP Spoofing prevention (L2), and an autonomous Web Application Firewall (WAAP/L7) capable of defeating advanced exploits (SQLi, XSS, LFI, RCE) in real-time with zero latency overhead.
It features a Zero-Trust Strict ALLOW Mode, empowering CISOs to globally lock down infrastructure and seamlessly whitelist critical GeoIPs and ASNs at the hardware layer, ensuring that only trusted traffic enters the network, while preserving L7 WAAP independence to ban even whitelisted IPs if they act maliciously.
Tip
Getting Started
If you are new to SysWarden or looking to deploy it across your server infrastructure, please follow our comprehensive, step-by-step installation guide.
-
Deployment Tutorial
Learn how to flawlessly install SysWarden via native.deb/.rpmpackages, secure your Host OS with CIS benchmarks, master the architecture withsyswarden manual, configure the engine viasyswarden config, and deploy the automated Threat Intelligence feeds natively without legacy bash dependencies.
Important
DevSecOps & ITIL Architecture
We have curated a list of advanced, real-world deployment cases to demonstrate how SysWarden seamlessly integrates into complex, highly-available production environments.
-
Use Cases & Architectures
Discover 15 critical enterprise scenarios tailored for SOC Analysts, System Administrators, and DevSecOps Engineers. Explore practical setups for Docker Micro-segmentation, SIEM/Wazuh Integrations, Air-Gapped LAN protections, HA Clustering, and dedicated application defenses (GitLab, Odoo, WordPress, APIs).