Shibuya

Name: Shibuya
Availability: InStock

Auth & Security

Hi HN, I’ve been working on Shibuya, a next-generation Web Application Firewall (WAF) built from the ground up in Rust. I wanted to build a WAF that didn't just rely on legacy regex signatures but could understand intent and perform at line-rate using modern kernel features. What makes Shibuya

What is Shibuya?

Shibuya is an open-source Web Application Firewall (WAF) built in Rust that provides real-time threat detection and prevention for web applications. Unlike traditional WAFs that rely on legacy regex-based signatures, Shibuya employs machine learning anomaly detection and kernel-level blocking through eBPF technology to identify and stop attacks at line-rate performance. The platform supports over 615 OWASP Core Rule Set rules and includes specialized protection for GraphQL APIs, addressing modern application security needs. It can detect and block common web exploits including SQL injection, cross-site scripting (XSS), and remote code execution attempts, with response times under 5 milliseconds. Shibuya is designed for development teams and security operations teams that need flexible, high-performance application protection without vendor lock-in. The open-source nature allows for customization and inspection of security logic. The platform supports WASM plugins, enabling users to extend functionality and tailor protections to their specific application requirements. As a Rust-based solution, Shibuya emphasizes performance and memory efficiency compared to traditional WAF implementations. It targets organizations seeking to move beyond signature-based detection toward intent-based threat analysis while maintaining the transparency and control that open-source software provides.

Key Features

Built from scratch in Rust for high-performance line-rate security processing
ML-powered anomaly detection that understands intent beyond legacy regex signatures
eBPF kernel-level blocking for sub-5ms threat response
OWASP CRS 615+ rules protecting against SQLi, XSS, RCE, and zero-days
GraphQL-specific protection for modern API security
WASM plugin support for extensible and customizable security rules

Visit site

Screenshots

Rating & Reviews

No ratings yet

Ratings are collected from verified users inside this app.

Reviews (0)

No reviews yet

Reviews are collected from verified users via an in-app widget. Every review comes from someone actually using the product.

Are you the owner of Shibuya?

Claim this listing to collect verified reviews. Install a widget, your users leave reviews, and they appear in Google with star ratings.

Claim this app →

Free · 2-minute setup · No credit card

Shibuya Pricing

Open source

Visit ghostklan.com for full pricing details.

App owners can update pricing by claiming this listing.

Similar Apps

Hanko

Open source, privacy-first, and built to scale. Hanko is the fastest way you integrate passkeys, 2FA, SSO, and more, with full control over your data. Move between self-hosted and Hanko Cloud anytime. No lock-in. Just auth how it should be: secure, fast, user friendly, and fully yours.

SimpleLogin

Open source email alias solution to protect your email address. Comes with browser extensions and mobile apps. )

Ory

Open-source identity and access management

Prism

Hey HN, We’re Alex, Land, and Rajit. We’re building Prism (prismai.sh), a tool that helps browser agents authenticate onto websites with user credentials. Developers pass in credentials, Prism logs into a website on their behalf, and hands them back the cookies so they have an authenticated session

Owner of Shibuya?

Verify ownership of ghostklan.com to unlock widgets, collect verified reviews, and manage your listing.

Click here to claim