Protect your website in just 3 minutes—with zero configuration rules and near-zero false positives.

SafeLine Banner

SafeLine WAF is an open-source Web Application Firewall (WAF) developed by Chaitin Tech. Powered by an intelligent semantic analysis engine, it blocks common attacks like SQL injection and XSS with over 98% success—even for unknown 0days.

With over 310,000 deployments and nearly 16K stars on GitHub, SafeLine is gaining popularity fast among developers who want a simple but powerful way to secure their apps.

🚀 Why SafeLine?

🧠 Smarter Detection: Semantic Analysis Engine

  • No rule packs needed

    SafeLine understands the context of each HTTP request and detects malicious intent instead of matching static patterns. This means it works even for unknown vulnerabilities (0days).

  • < 0.1% false positives

    The engine learns from user behavior, distinguishing real attacks from legit traffic.

Detection Diagram

🔒 Active Protection Technology

🧩 Real-Time Obfuscation: Scramble Your Site Against Bots

SafeLine actively obfuscates your site's HTML and JavaScript code in real time, generating randomized, encrypted versions on every page load. This makes it nearly impossible for crawlers and vulnerability scanners to parse or clone your site.

Example:

  • Before: your source code might include static paths like /admin/login
  • After: becomes random strings like /a1b2c3, and they change with every refresh

Even tools like AWVS and Nessus get confused—your site's structure becomes unreadable to them.

This technique also breaks:

  • 🕷️ Web crawlers
  • 🛠️ Website cloning tools
  • 🔎 Automated scanners

🤖 Bot Detection

  • Uses fingerprinting, mouse movements, and IP reputation to block bots & scanners.

Bot Detection

🛠️ Lightweight & Easy to Deploy

① One-Command Deployment

SafeLine supports Docker-based installation. You can get it up and running in under 5 minutes—even on a minimal server with just 1 CPU core and 1 GB of memory.

② Visual dashboard

SafeLine comes with a clean and intuitive web UI that gives you real-time attack stats, request logs, traffic analytics, and more.

Dashboard

Stats

⏱️ Set It Up in 3 Minutes

🛡️ Deploy SafeLine in 3 Minutes

You can protect your website with the open-source SafeLine WAF in just 3 minutes.

  1. Run this command on your Linux server:

    bash -c "$(curl -fsSLk https://waf-ce.chaitin.cn/release/latest/manager.sh)"

  2. Open https://demo.waf.chaitin.com:9443/statistics in your browser.

  3. The admin account is created automatically. If not, reset it manually:

    docker exec safeline-mgt resetadmin

  4. Done! You’ll see the output like this:

    [SafeLine] Initial username: admin
[SafeLine] Initial password: **********
[SafeLine] Done

🌐 Configure Protected Website

In the dashboard, add the server address of the site you want to protect.

Config Screenshot

Once configured, SafeLine will monitor and filter incoming traffic to defend your site against:

  • 🔺 SQL Injection
  • ⚡ Cross-Site Scripting (XSS)
  • 🤖 Malicious bots

🔍 View Attack Logs

Blocked requests will show this warning:

Blocked Page

🚫 Access Denied by SafeLine WAF

Open the dashboard to view details like:

  • IP address
  • Attack type
  • Malicious payload

Attack Log

📦 GitHub & Community

GitHub: github.com/chaitin/SafeLine

SafeLine is fully open-source, lightweight, and highly extensible. While its frontend focuses on simplicity—providing streamlined alerting and analytics—the core detection engine remains powerful and flexible.

It supports seamless integration with ELK and other observability tools, giving users the freedom to build their own advanced security dashboards.

A simple, powerful WAF built by developers, for developers.

🤝 Join Our Community

Click the link below to join the SafeLine WAF tech group and discuss with other developers:

👉 https://discord.gg/hUAfMWhknP