Overview
Blackwall, formerly known as BotGuard, is an Estonian cybersecurity company that provides bot protection and web application firewall services primarily targeting hosting providers and their customers. The company rebranded from BotGuard to Blackwall in 2024, though both the BotGuard product name and the botguard.net domain continue to redirect to blackwall.com.
Blackwall operates two distinct products. BotGuard is their website protection service for individual websites and SMBs. It provides cloud-based bot detection and mitigation without requiring a DNS redirect. Instead, it integrates at the web server level through a module or plugin, similar to how Patchstack operates. This means traffic flows directly to your server, with the BotGuard module inspecting requests inline.
GateKeeper is the more interesting product from an infrastructure perspective. It is a distributed reverse proxy cluster that sits in front of hosting provider infrastructure, providing WAF, HTTP/3 QUIC support, TLS 1.3, automatic SSL certificate management, caching, and rate limiting. Hosting providers deploy GateKeeper as a transparent security layer for all their customers, which is the B2B2C model: Blackwall sells to the hosting provider, who bundles the protection for their end customers.
The GateKeeper architecture supports modern protocols including HTTP/3 with QUIC, which provides better performance on high-latency or lossy connections. TLS 1.3 is handled automatically with auto-provisioned SSL certificates, reducing the operational burden on hosting providers. The caching layer can absorb traffic spikes and reduce load on origin servers.
Blackwall has positioned itself heavily in the hosting provider market, which is evident from their CloudFest Diamond sponsorship (CloudFest is the largest web hosting industry event). This is a significant marketing investment that signals their commitment to the hosting channel.
The WAF component in GateKeeper provides standard OWASP Top 10 protection with rules for SQL injection, XSS, and other common attack vectors. Rate limiting helps mitigate brute force and credential stuffing attacks. The bot detection uses behavioral analysis to distinguish between legitimate crawlers, good bots, and malicious automated traffic.
A free monitoring mode is available that lets you see bot traffic patterns and potential threats without actively blocking anything. This is useful for evaluating the product and understanding your traffic profile before committing to active protection.
The main limitation is transparency. Blackwall does not publish pricing, detailed technical documentation, or independent benchmark results. Most information comes from their marketing materials and conference presentations. For hosting providers evaluating the product, this means a sales conversation is required to understand capabilities and costs.
Ratings Breakdown
Key Features
BotGuard Web Protection
Cloud-based bot detection and mitigation for individual websites. Integrates at the web server level without DNS redirect. Behavioral analysis distinguishes legitimate crawlers from malicious bots.
GateKeeper Reverse Proxy
Distributed reverse proxy cluster for hosting providers. Sits in front of all hosted websites, providing transparent security without per-site configuration. Scales with hosting provider infrastructure.
HTTP/3 QUIC Support
GateKeeper supports HTTP/3 with QUIC protocol, providing better performance on high-latency and lossy connections. Automatic protocol negotiation for browsers that support it.
Automatic SSL Management
GateKeeper handles TLS 1.3 certificates automatically. SSL certificates are provisioned and renewed without manual intervention, reducing operational burden for hosting providers managing thousands of domains.
WAF with OWASP Top 10
Rule-based WAF protecting against SQL injection, XSS, CSRF, and other OWASP Top 10 attack vectors. Rules updated by the Blackwall security team.
Behavioral Bot Detection
Uses behavioral analysis to classify traffic as human, good bot (search engine crawlers), or malicious bot. Goes beyond simple user-agent checking to analyze request patterns and behavior.
Rate Limiting
Configurable rate limiting to mitigate brute force attacks, credential stuffing, and application-level DDoS. Can be applied per IP, per endpoint, or globally.
CDN Caching Layer
GateKeeper includes a caching layer that absorbs traffic spikes and reduces load on origin servers. Static content is served from the proxy layer, improving response times.
Free Monitoring Mode
Observe bot traffic and threat patterns without blocking anything. Useful for evaluation and traffic profiling. Available for both BotGuard and GateKeeper deployments.
Pros & Cons
Pros
-
B2B2C model for hosting providers
GateKeeper is specifically designed for hosting providers who want to offer security as a bundled service to their customers. This is a unique market position compared to most WAF providers that sell directly to end users.
-
No DNS redirect option
BotGuard integrates at the web server level, keeping traffic direct. No need to change DNS records or route traffic through a third-party network. Preserves existing CDN and DNS configurations.
-
Modern protocol support
HTTP/3 QUIC and TLS 1.3 support in GateKeeper. Many competing reverse proxy WAFs still default to HTTP/2. QUIC support can meaningfully improve performance for mobile users.
-
Free monitoring mode
The free monitoring mode has no time limit and provides genuine visibility into bot traffic. Useful for building a case for security investment by showing stakeholders what threats exist.
-
Hosting provider integrations
Built-in integrations with cPanel, Plesk, DirectAdmin, and WHMCS. Designed to fit into existing hosting provider workflows rather than requiring a separate management layer.
-
Automatic SSL management
GateKeeper handles certificate provisioning and renewal automatically, which is significant when managing thousands of domains for hosting provider customers.
Cons
-
No public pricing
All pricing requires a sales conversation. No self-service option or transparent pricing tiers. This makes it impossible to evaluate cost without engaging with sales.
-
Limited public documentation
Technical documentation is sparse. Most implementation details require direct engagement with the Blackwall team. Hard to evaluate the product thoroughly before committing.
-
Recent rebrand creates confusion
The rebrand from BotGuard to Blackwall in 2024 creates confusion. Some documentation, reviews, and references still use the old name. The botguard.net domain redirects but older integrations may reference the old brand.
-
Hosting provider focus limits direct users
GateKeeper is designed for hosting providers, not individual website owners. If you want to protect a single site and are not a hosting provider, BotGuard is the option, but it gets less attention in their marketing.
-
No independent benchmarks
No published independent security benchmarks or third-party testing results. Claims about detection rates and protection quality cannot be independently verified.
-
Small company, limited track record
Founded in 2019, Blackwall is relatively young. While CloudFest Diamond sponsorship shows marketing ambition, the company's track record in handling major security incidents is not well documented.
Pricing
Pricing model: Custom (contact sales)
BotGuard (Free Monitoring)
Free monitoring mode that shows bot traffic patterns, threat intelligence, and potential attacks without active blocking. No time limit. Useful for evaluating the platform and understanding your traffic profile.
- Bot traffic monitoring
- Threat intelligence dashboard
- Traffic analysis reports
- No active blocking
- No time limit
BotGuard (Active Protection)
Full bot protection and WAF for individual websites. Integrates at the web server level without DNS redirect. Pricing based on traffic volume and number of sites. Contact sales for a quote.
- Everything in Free Monitoring
- Active bot blocking
- WAF with OWASP Top 10 protection
- Behavioral bot detection
- Rate limiting
- Custom rules
GateKeeper (Hosting Providers)
Distributed reverse proxy cluster for hosting providers. Provides WAF, bot protection, HTTP/3 QUIC, TLS 1.3, auto SSL, caching, and rate limiting for all hosted customers. Pricing based on infrastructure scale. Contact sales.
- Everything in BotGuard Active Protection
- Distributed reverse proxy cluster
- HTTP/3 QUIC support
- TLS 1.3 with auto SSL
- CDN caching layer
- Rate limiting
- Multi-tenant management
- Hosting provider API
- White-label options
Our Verdict
Blackwall occupies an interesting niche: security for hosting providers bundled as infrastructure rather than sold directly to end users. The GateKeeper product, a distributed reverse proxy with WAF, HTTP/3 QUIC, and automatic SSL management, is specifically designed for hosting companies that want to offer security as a standard feature rather than an upsell.
This B2B2C model makes Blackwall hard to compare directly with traditional WAFs like Cloudflare or Sucuri. Those products sell to website owners. Blackwall primarily sells to the companies that host those websites. If your hosting provider uses GateKeeper, you get WAF protection without configuring anything.
The BotGuard product for individual websites is more conventional but less differentiated. It provides bot detection and WAF at the web server level without DNS redirect, which is similar to what CrowdSec or BitNinja offer in the hosting security space.
The biggest concern is transparency. No public pricing, limited documentation, and no independent benchmarks make it difficult to evaluate Blackwall objectively. The CloudFest Diamond sponsorship (their most expensive tier) shows significant marketing investment, but marketing presence is not the same as proven security effectiveness.
For hosting providers evaluating security solutions to bundle for their customers, Blackwall is worth a conversation. For individual website owners, there are better-documented and more transparent alternatives available.
CVE Coverage
Blackwall can detect and block attacks matching 81K+ known CVEs based on its supported rule sets.
Coverage by Attack Type
Latest Blockable CVEs
| CVE | Severity |
|---|---|
| CVE-2026-4510 | MEDIUM |
| CVE-2026-4161 | MEDIUM |
| CVE-2026-4087 | MEDIUM |
| CVE-2026-4086 | MEDIUM |
| CVE-2026-4084 | MEDIUM |
| CVE-2026-4077 | MEDIUM |
| CVE-2026-4072 | MEDIUM |
| CVE-2026-4069 | MEDIUM |
| CVE-2026-4067 | MEDIUM |
| CVE-2026-4022 | MEDIUM |
Frequently Asked Questions
What happened to BotGuard?
BotGuard rebranded to Blackwall in 2024. The BotGuard product name still exists as one of Blackwall's two products (website protection for SMBs), but the company itself is now called Blackwall. The botguard.net domain redirects to blackwall.com.
How does Blackwall compare to Cloudflare?
Cloudflare is a global CDN and security platform that sells directly to website owners. Blackwall primarily targets hosting providers with its GateKeeper product. Cloudflare has a free tier, global network with 300+ PoPs, and comprehensive documentation. Blackwall has no public pricing and limited documentation. For individual websites, Cloudflare is the more practical choice. For hosting providers wanting to bundle security transparently for all their customers, Blackwall's GateKeeper is purpose-built for that use case.
How does Blackwall compare to CrowdSec?
CrowdSec is an open-source security engine with a community-driven IP reputation database. Blackwall is a commercial, closed-source product. CrowdSec is free and transparent. Blackwall requires a sales conversation. Both target the hosting provider market, but CrowdSec does it through open source adoption while Blackwall does it through commercial partnerships and sponsorships.
Does Blackwall support HTTP/3?
Yes. The GateKeeper product supports HTTP/3 with QUIC protocol. This is notable because many competing WAF and reverse proxy solutions still only support HTTP/2. QUIC can provide meaningfully better performance for users on mobile networks or high-latency connections.
Is the free monitoring mode useful?
Yes. The free monitoring mode shows bot traffic patterns, threat intelligence, and potential attacks without blocking anything. It has no time limit and is genuinely useful for understanding your traffic profile and building a case for security investment. However, it does not provide any protection, only visibility.
Can I use Blackwall for a single website?
Yes, the BotGuard product is designed for individual websites and SMBs. However, Blackwall's primary focus and marketing is on hosting providers using GateKeeper. If you are protecting a single site, alternatives like Cloudflare, Bunny Shield, or Peakhour may offer more transparent pricing and better documentation.
How does GateKeeper handle SSL certificates?
GateKeeper automatically provisions and renews TLS certificates for all domains behind the proxy. This includes TLS 1.3 support. Hosting providers do not need to manually manage certificates for each customer domain, which is significant when managing thousands of domains.
Is Blackwall suitable for enterprise use?
Blackwall primarily targets hosting providers and SMBs, not enterprise security teams. If you need enterprise-grade bot management with detailed analytics, consider DataDome for bot protection or Cloudflare Enterprise for comprehensive WAAP. Blackwall's strength is in the hosting provider B2B2C channel, not direct enterprise sales.
Ready to try Blackwall?
Start with the free tier and upgrade as you grow.