Visitor Filters
Under the Hood

How VisitorFilters Protects Your Site

From a browser request to threat enforcement, our platform operates in under 5 milliseconds. Here is a detailed, interactive look at how our security gateway works.

01

Lightweight Signal Collection

Adding our asynchronous 5KB Javascript tag is all it takes. The tag loads seamlessly without blocking your page-load speed, satisfying Google Core Web Vitals. It gathers unique browser, device, and network attributes to generate a secure visitor payload.

  • Zero Speed Impact: Loads deferred and async. Typical execution takes < 0.2ms.
  • No Third-Party Cookies: 100% compliant with GDPR, CCPA, and modern privacy regulations.
  • Signed Cryptographic Payloads: All transit signals are sealed using SHA-256 HMAC tokens.

Interactive Signal Builder

Toggle signals to see the generated payload sent to the Gateway

json

Edge Policy Evaluator

Configure active policies and run simulated threat analysis

Evaluating criteria against 134 threat signals...
Gateway evaluation report
IP Checked: 185.191.171.12
Country: Russia (RU)
IP Source: VPN/Proxy detected
Verdict
Processed in ms
02

Instant Edge Evaluation

Once signals are received, the VisitorFilters Engine processes them instantly. Decisions are made using multi-dimensional rule matrices — combining ASN reputation databases, active geofencing restrictions, rate controllers, and threat thresholds.

  • Sub-5ms Execution Latency: Our engine operates completely in-memory, ensuring no delay to legitimate traffic.
  • Custom Policy Hierarchies: Set strict order priorities: Whitelists checked first, then Geo-blocks, and finally rate throttles.
  • Autonomous Learning: Anomalous patterns feed instantly into rule dictionaries for automated rate mitigation.
  • Threat Intelligence Built In: A managed feed of known-malicious IP ranges raises risk scores automatically and re-checks recent sessions as new threats are listed.
03

Automated Threat Enforcement

Legitimate visitors pass through cleanly, experiencing no friction. Suspicious or malicious requests are intercepted immediately at the perimeter according to your preferred enforcement policy.

  • Hard Blocks (403 Forbidden): Instantly reject malicious bots or scrapers with zero resource overhead on your side.
  • Interactive CAPTCHA Challenges: Present clean, brand-customizable challenge pages to suspicious users to verify human activity.
  • Intelligent Rate Limiting: Throttle request volumes on a per-IP basis instead of taking hard actions, maintaining visitor flow.
  • First-Party CAPTCHA: A hashcash-style proof of work with risk-adaptive difficulty — no third-party calls, embeddable on your own forms.

Custom Enforcement Preview

Customize and preview challenge screens directly

Mock Browser Sandbox

403 - Forbidden

This request has been blocked by security policies. If you believe this is an error, contact support.

I am a human VisitorFilters

Secure your infrastructure in minutes

Deploy in under 5 minutes. No-code WordPress plugin or simple NPM package integration available. Start on Free without a card, or try Pro with a 14-day trial.