Skip to content
🔐Laurent M🔐 edited this page Jun 26, 2026 · 15 revisions

SysWarden Enterprise Wiki

Welcome to the official documentation for SysWarden, the military-grade, zero-trust cybersecurity platform natively built in Go.

SysWarden provides absolute defense-in-depth through High-Speed Network Layer (L3) OSINT filtering, MAC/ARP Spoofing prevention (L2), and an autonomous Web Application Firewall (WAAP/L7) capable of defeating advanced exploits (SQLi, XSS, LFI, RCE) in real-time with zero latency overhead.

It features a Zero-Trust Strict ALLOW Mode, empowering CISOs to globally lock down infrastructure and seamlessly whitelist critical GeoIPs and ASNs at the hardware layer, ensuring that only trusted traffic enters the network, while preserving L7 WAAP independence to ban even whitelisted IPs if they act maliciously.


📚 Core Documentation

Tip

Getting Started
If you are new to SysWarden or looking to deploy it across your server infrastructure, please follow our comprehensive, step-by-step installation guide.

  • Deployment Tutorial
    Learn how to flawlessly install SysWarden via native .deb/.rpm packages, secure your Host OS with CIS benchmarks, master the architecture with syswarden manual, configure the engine via syswarden config, and deploy the automated Threat Intelligence feeds natively without legacy bash dependencies.

🏢 Enterprise Scenarios

Important

DevSecOps & ITIL Architecture
We have curated a list of advanced, real-world deployment cases to demonstrate how SysWarden seamlessly integrates into complex, highly-available production environments.

  • Use Cases & Architectures
    Discover 15 critical enterprise scenarios tailored for SOC Analysts, System Administrators, and DevSecOps Engineers. Explore practical setups for Docker Micro-segmentation, SIEM/Wazuh Integrations, Air-Gapped LAN protections, HA Clustering, and dedicated application defenses (GitLab, Odoo, WordPress, APIs).

Clone this wiki locally