Enterprise-Grade Security by Design
GladiosWAF is built with a security-first architecture designed to protect modern web applications and APIs through AI-powered request analysis.
Core Security Principles
Zero-Rule AI Protection
GladiosWAF uses machine learning-based Intent Analysis instead of static rule signatures, reducing manual rule maintenance and improving detection of modern attack techniques.
Secure Infrastructure
GladiosWAF deployments can be isolated within:
- private networks,
- on-premise environments,
- VLAN-segmented infrastructure,
- or air-gapped systems.
Data Protection
Request Processing
GladiosWAF analyzes HTTP request structures including:
- URL paths,
- query parameters
- headers,
- and request bodies.
Customers maintain full control over what data is forwarded for analysis.
Sensitive Data Control
Before analysis, customers may:
- remove sensitive headers,
- sanitize request bodies,
- anonymize fields,
- or exclude confidential information entirely.
Deployment Flexibility
GladiosWAF supports:
- Cloud deployments
- On-premise deployments
- Edge deployments
- Offline environments
Operational Security Features
GladiosWAF supports:
- Fail-Open and Fail-Closed modes
- Shadow Mode logging
- Secure API authentication
- Request sanitization
- Network isolation architectures
Responsible Disclosure
If you believe you have discovered a security vulnerability involving GladiosWAF, please contact:
Please include:
- vulnerability description,
- reproduction steps,
- affected components,
- and supporting evidence where possible.
We appreciate responsible disclosure and will investigate all legitimate reports.