Getting Started with Zen
Introduction
Zen by Aikido is an embedded Web Application Firewall that autonomously protects your apps against common and critical attacks.
It protects your apps by preventing user input containing dangerous strings, which usually allow for injection and path traversal attacks. Zen automatically block critical injection attacks, supports rate limiting for APIs and monitors outbound traffic.
Zen by Aikido operates autonomously on the same server as your app to secure your app like a classic web application firewall (WAF), but without the infrastructure or cost.
Languages
Currently Supported:
Node.js
Python
In Beta:
PHP
Ruby
Future: .NET, Java
How to install
Follow the setup instructions in the Aikido app and check out our docs on GitHub.
Functionality Support Matrix
SQLi Protection | NoSQLi Protection | Path Traversal | Shell Injection | SSRF Protection | Rate Limiting by IP | Rate Limiting by User | Block Users | |
---|---|---|---|---|---|---|---|---|
Node.js | ||||||||
Hono | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Hapi | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Next.js | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ |
Express | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Google Cloud Functions | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ | ❌ |
Google Cloud Pub/Sub | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ | ❌ |
Lambda | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ | ❌ |
Micro | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ |
Python | ||||||||
Django | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Flask | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
gUnicorn | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Quart | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Scarlette | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |