BotGuard Raises EUR 45mm Round B Led By Dawn Capital, Rebrands to Blackwall   

GateKeeper by Blackwall

High-Performance Web
Security & Traffic Filtering
for Hosting Providers

Designed to operate at the traffic entry point, GateKeeper filters, analyzes, and mitigates threats in real-time, ensuring web traffic is sanitized before reaching application backends.

GateKeeper neutralizes L7 DDoS, brute-force attacks, and bot-driven threats while preserving legitimate user traffic, through a combination of advanced behavioral analysis, signature-based detection, and anomaly-driven heuristics.

GateKeeper offers a wide range of security and performance features such as WAF, HTTP/3 (QUIC), TLS 1.3, 0-RRT, automatic SSL certificate management, content caching and rate limiting.

Deploy Gold-Standard Web Security & Performance at Scale

Reduce Costs, Diversify Revenue Streams & Enhance Customer Retention

On-Prem Deployment & White-Label Integration

GateKeeper is designed for direct deployment within your infrastructure, offering a high-performance, self-hosted security solution that scales effortlessly with your hosting environment.

With minimal hardware — just a few standard servers — you can roll out a fully managed, carrier-grade web security stack under your own branding, as well as complete control over security policies, access management, and billing automation, allowing hosting providers to offer GateKeeper as a built-in service or premium add-on.

For seamless integration with customer management portals, GateKeeper provides:

  • Comprehensive REST API for full automation, monitoring, and custom rule configuration.
  • Native plugins for hosting control panels such as cPanel, WHMCS, DirectAdmin, ISPmanager, and more.
  • API-driven compatibility for proprietary hosting panels.

Increase Server Density & Optimize Resource Allocation

With default security policies pre-configured, GateKeeper automatically mitigates common threats—reducing support requests related to compromised websites.

Beyond traffic distribution, GateKeeper acts as a network perimeter defense layer, ensuring customers' websites remain secure from:

  • Automated bot-driven attacks including credential stuffing, scraping, spam injections.
  • L7 DDoS assaults targeting application-layer weaknesses.
  • Exploit attempts against vulnerable CMS platforms such as WordPress, Joomla, Magento, Drupal.
  • Web-based hacking attempts including SQLi, XSS, RCE, etc.
  • Real-time health checking & adaptive traffic routing for dynamic failover.

Full-stack infrastructure protection

GateKeeper extends beyond per-instance protection to safeguard entire hosting infrastructures with multi-layered DDoS mitigation spanning application and network layers.

While each GateKeeper instance is inherently resistant to L7 DDoS attacks, providers can extend mitigation upstream by leveraging BGP Flowspec to filter attack traffic at the network level, ensuring:

  • Protection for backend services & databases to prevent resource exhaustion.
  • Native plugins for hosting control panels such as cPanel, WHMCS, DirectAdmin, ISPmanager, and more.
  • Defense against volumetric DDoS attacks on uplink routers securing all hosted customer sites.

Scalable load balancer & Web Application Firewall

GateKeeper includes an intelligent L7 Load Balancer built for high-availability, fault tolerance, and horizontal scalability, removing the need for external third-party services.

Engineered around modern web security and performance protocols, it enhances web application resilience by integrating:

  • Adaptive Threat Intelligence provides proactive defense mechanisms.
  • HTTP/3 (QUIC), TLS 1.3, and Early Hints for ultra-low latency and optimized page load speeds.
  • Automated TLS certificate lifecycle management (ACME/Let’s Encrypt)..
  • Advanced rate limiting & L7 DDoS protection to mitigate volumetric attacks.
  • Real-time health checking & adaptive traffic routing for dynamic failover.
  • Smart caching & compression to reduce backend load and accelerate response times.

And with Blackwall’s dynamic commercial terms, you enjoy the savings and growth you need without being locked into rigid pricing structures. .

Schedule Demo

Seamlessly Secure Thousands of Websites:
Bundled or On-Demand

Subscription-based protection for customers

A critical layer of defense for websites and applications, by subscribing to GateKeeper’s advanced security services, customers gain access to enterprise-grade traffic filtering and threat mitigation.

  • Real-time detection and blocking of bot, scrapers, and API abuse.
  • Comprehensive L7 DDoS protection against targeted attacks.
  • Mitigation of unauthorized data extraction, spam, and content theft.

Granular Security with Custom Filtering Rules

Beyond default security, users can fine-tune traffic filtering in real time using HTTP headers, connection fingerprinting, IP reputation, and behavioral analysis.

  • HTTP headers and request metadata.
  • Connection fingerprinting and behavioral analysis.
  • IP reputation scoring and geofencing.

Unlock revenue potential with premium security

For customers needing advanced protection, GateKeeper offers security event monitoring, granular filtering, expanded WAF rules, and performance boosts like custom caching and QoS prioritization:

  • Security event monitoring with detailed analytics.
  • Granular traffic filtering rule editor for advanced policy control.
  • API-driven compatibility for proprietary hosting panels.
  • Expanded WAF rule sets for advanced threat prevention.
  • Dedicated performance enhancements such as custom caching, QoS prioritization, etc.

One-click
deployment

Customers can secure themselves instantly on leading cloud providers such as AWS, DigitalOcean, or Vultr.

By default, GateKeeper enhances performance, security, and SEO metrics without requiring any code modifications, delivering optimized user experiences and reduced latency out of the box.

No changes to site code are required — a simple DNS record update is all that’s needed to harness GateKeeper’s potential, including:

  • Fault-tolerant traffic distribution across multiple backend servers.
  • Dynamic rate limiting and DoS mitigation
  • Support for modern web protocols including HTTP/3 and TLS 1.3.
  • Automated SSL/TLS certificate lifecycle management.
  • Intelligent health checks and adaptive caching.
  • Security event monitoring with detailed analytics.
  • Web-based management interface for real-time configuration.
Schedule Demo