A free WAF that is simple, effective, and powerful. Leveraging industry-leading semantic engine detection technology, it acts as a reverse proxy to protect your website from hacker attacks.
Driven by intelligent semantic analysis algorithms, it is designed specifically for communities, ensuring hackers can't get past SafeLine.

Related Features

• Convenience
  Utilizes containerized deployment; installation can be completed with a single command, requiring zero setup cost. Security configurations are ready out of the box, with no manual maintenance needed, allowing for effortless security management.

• Security
  Introduces the industry's leading intelligent semantic analysis algorithm, offering precise detection, low false positives, and robust protection against bypass attempts. With no predefined rules, it effectively handles unknown 0day attacks.

• Performance
  Rule-free engine and linear security detection algorithm, with an average request detection latency in the millisecond range. Strong concurrency capabilities, capable of detecting over 2000 TPS on a single core. With sufficient hardware, the traffic scale it can support is unlimited.

• High Availability
  The traffic processing engine is based on Nginx, ensuring both performance and stability. Includes a comprehensive health check mechanism, with service availability up to 99.99%.

Install

• Dependencies

embed Operating system：Linux
Instruction architecture：x86_64
Software dependency：Docker version 20.10.14 or above
Software dependency：Docker Compose version 2.0.0 or above
Minimum environment：1 core CPU / 1 GB memory / 5 GB disk

You can execute the following commands to confirm the server configuration:

uname -m                                # view Instruction architecture
docker version                          # view Docker version
docker compose version                  # view Docker Compose version
cat /proc/cpuinfo| grep "processor"     # view CPU info
free -h                                 # view memory info
df -h                                   # view disk info
lscpu | grep ssse3                      # Check CPU ssse3 instruction

• Automatic Deploy

Use the following command to start the automated installation of SafeLine. (This process requires root privileges)

bash -c "$(curl -fsSLk https://waf.chaitin.com/release/latest/setup.sh)"

After the command is executed, it means the installation is successfully. 

Use Web UI

Open the web console page https://<safeline-ip>:9443/ in the browser, then you will see below.

• Get Administrator Account

docker exec safeline-mgt resetadmin

After the command is successfully executed, you will see the following content

Please must remember this content

[SafeLine] Initial username：admin
[SafeLine] Initial password：**********
[SafeLine] Done

• Login

Enter the password in the previous step and you will successfully logged into SafeLine.

• FAQ

You can contact us through Discord and GitHub.