Platform Global Intelligence Integration Affiliate Plans Docs News Contact Us Bug Bounty
Sign in Get started

Security that evolves faster than threats

The decentralized application firewall. AuraGuardian injects heuristic defense directly into your runtime, blocking bots with 0ms latency.

Book Trial Documentation

Invisible to Bots. Clear to Humans.

The Obsidian Layer randomizes CSS classes and injects invisible noise into text, making your data un-scrapable while remaining readable.

One policy across all runtimes

PHP, Node, Python, and WordPress agents share the same additive risk-scoring engine and graduated response system.

15 RISK SCORE BLOCK DECOY CHALLENGE SLOW ALLOW

Graduated threat response

Additive 0 to 100 risk scoring with 5-tier graduated response: Allow, Slow, Challenge, Decoy, Block. Each threshold is tuned per policy.

The Hive Mind Defense

Traditional firewalls are isolated. AuraGuardian is connected. When a single node detects a threat, the signature is broadcast to the entire network in 60 seconds.

Visitor Detection Detection Real-time threat pattern analysis Scoring Scoring Per-request risk assessment AuraGuardian Firewall Rules Rule-based request filtering Rate Limiter Request throttling engine Bot Detection Automated bot identification DDoS Shield Volumetric attack mitigation Broadcast Broadcast Global threat signature sync Immunized Sites Site B Auto-immunized endpoint Site C Auto-immunized endpoint Site D Auto-immunized endpoint
Real-time global threat propagation
When Site A detects a new attack pattern, Aura Cloud validates the signature and broadcasts it. Sites B, C, and D immunize automatically within 60 seconds.
0 ms local, 60s global sync
example.com

One Dashboard. Every Node.

Block entire regions, flip defense modes on or off, and watch threats drop in real time, all from a single console that pushes changes to every node in seconds.

Geo-Fencing

Region-based access control.

Russia
Blocked
China
Blocked
USA
Allowed

Defense Mode

Active heuristic analysis.

VPN Shield
Bot Challenge
Paranoid Mode

Live Forensics

Real-time threat inspection.

Traffic Load 84%
Blocked Threats 12%

Defense Layers

Six inspection stages run on every request, from TLS handshake to application logic, blocking threats before they reach your code.

Six-stage request pipeline
Every inbound request passes through six sequential inspection layers, from TLS handshake analysis to behavioral scoring, before it reaches your application code. Threats are neutralized at the earliest possible stage.
< 1 ms average pipeline latency
Incoming request Your app
TLS
Headers
DNS
Geo
Score
Enforce
Every layer runs in-process. No external proxy required

Stale-While-Revalidate

Rules enforce from local cache while background sync pulls the latest policy. Zero latency overhead, zero stale windows.

TLS Fingerprinting

Extracts JA3/JA4 hashes from TLS handshakes to identify headless browsers and scripted clients spoofing legitimate User-Agents.

Header Validation

Cross-checks Origin, Referer, and Host headers against expected request chains. Mismatches flag spoofed or replayed requests instantly.

Reverse DNS Intel

Resolves PTR records to classify source infrastructure: data centers, VPN endpoints, and residential proxies each get separate enforcement policies.

CIDR Geo Fallback

When CDN geo-headers are absent, a local CIDR lookup with 24-hour TTL maps IPs to countries, keeping geo-fencing rules active on any host.

Behavioral L7 Analysis

Tracks per-session request cadence, form submission timing, and endpoint access sequences to separate credential-stuffing bots from real users.

Drop-in Integration

Deploy as a single-file runtime agent, Composer package, npm module, or CMS plugin. No DNS changes. No reverse proxy. Pure runtime control.

$ composer require auraprotector/agent

Zero-config deployment

Drop a single file into your application root or install via your package manager. The agent auto-detects the runtime environment and applies the correct hooks. No configuration files required.

Encrypted rule sync

Rules are AES-256 encrypted in transit and cached locally with stale-while-revalidate. Policy updates propagate across all agents within seconds. No restarts, no downtime.

Observe before enforce

Start in observe mode to audit traffic patterns and review logs. Switch to active enforcement once you've validated the policy. One toggle, zero code changes.

Cross-runtime consistency

Use the same license key, telemetry pipeline, and threat intelligence across PHP, Node, Python, WordPress, and Shopify. One policy model governs all runtimes.

Operational primitives, fully integrated

The controls are grouped by how teams deploy, observe, enforce, and maintain runtime protection.

Request Controls

Custom WAF RulesFlexible request inspection
Geo Allow & DenyCountry-level access gates
VPN & Proxy HeuristicsDetect anonymizing tunnels
Referrer SecurityOrigin chain validation
Verified CrawlersSafe bot identification
Path-Scoped ProtectionPer-route policy binding

Obsidian Layer

CSS CamouflageSelector randomization
Text ScramblerHeuristic content mutation
Output BufferingFull-response wrapper
Copy WatermarkInvisible copy-time tracing
Security HeadersAutomatic header injection
Challenge TokensOpaque session verification

Intelligence

Global BlocklistShared threat registry
Scanner User AgentsKnown scanner fingerprints
Toxic ASN SignalsISP reputation scoring
Threat TelemetryReal-time signal pipeline
Agent HealthUptime and sync tracking
License UsageDomain consumption audit

Transparent Pricing

Simple, predictable pricing. No hidden fees, no surprise invoices.

Free

Basic protection for personal projects.

Free
Includes
25,000 Monthly Requests
1 Protected Sites
1 API Keys
1 Domain limit
Custom Presets
Geo-Blocking
Bot Challenge
VPN & Proxy Shield
AI Threat Intelligence
Obsidian Layer Anti-Scraping
Custom WAF Rules
Dedicated IP Nodes
Priority Support
Custom Shield Pages

Starter

Full defense stack for your sites — WAF, geo-blocking, bot challenges included.

Includes
100,000 Monthly Requests
3 Protected Sites
3 API Keys
Up to 3 Domains
Basic threat intelligence
Custom Presets
Geo-Blocking
Bot Challenge
VPN & Proxy Shield
AI Threat Intelligence
Obsidian Layer Anti-Scraping
Custom WAF Rules
Dedicated IP Nodes
Priority Support
Custom Shield Pages

Pro

Popular

More domains, deeper rules, and AI-powered threat intel for production traffic.

Includes
5,000,000 Monthly Requests
5 Protected Sites
10 API Keys
Up to 50 Domains
Custom Presets
Geo-Blocking
Bot Challenge
VPN & Proxy Shield
AI Threat Intelligence
Obsidian Layer Anti-Scraping
Custom WAF Rules
Dedicated IP Nodes
Priority Support
Custom Shield Pages

Enterprise

Dedicated nodes, custom WAF rules, SLA-backed support, and full platform access.

Custom
Includes
50,000,000 Monthly Requests
20 Protected Sites
25 API Keys
Up to 500 Domains
Custom Presets
Geo-Blocking
Bot Challenge
VPN & Proxy Shield
AI Threat Intelligence
Obsidian Layer Anti-Scraping
Custom WAF Rules
Dedicated IP Nodes
Priority Support
Custom Shield Pages

Protect without moving the stack

Start with one runtime, watch the logs, tune the rules, then carry the same policy model across PHP, Node, Python, WordPress, and Shopify.

Encrypted policy transport Sub-ms local enforcement Commerce-safe fail-open Five runtimes, one contract Global edge rule sync Zero data leaves your server Encrypted policy transport Sub-ms local enforcement Commerce-safe fail-open Five runtimes, one contract Global edge rule sync Zero data leaves your server Encrypted policy transport Sub-ms local enforcement Commerce-safe fail-open Five runtimes, one contract Global edge rule sync Zero data leaves your server