About Deflect

Deflect is a distributed infrastructure built to mitigate DDoS attacks and keep your website accessible at all times. Its built on principles and free software. Our tooling has serviced thousands of websites and millions of their readers, since 2011. Learn more on the Documentation portal or by looking up individiual Github repositories below.

Deflect Components


Ansible playbooks to setup your own Deflect DDoS mitigation infrastructure, built on Debian 9. Works in conjunction with Auto Deflect for configuration management.


Apache Traffic Server Plugin performing various anti-DDoS measures, including pattern-based banning, JavaScript browser challenge-responses, captchas and authenticated access to uncached sections of websites. Works in concert with Swabber - a simple pubsub-based IP banning engine. Subscribes to a ban publisher, bans the IPs and then unbans them after a configured time period.


Edgemanage is a tool for managing the HTTP availability of a cluster of web servers via DNS. The machines tested are expected to be at risk of large volumes of traffic, attack or other potential instability. If a machine is found to be underperforming, it is replace by a more performant host to ensure maximum availability.


Ansible recipes for provisioning and maintaining a managed Wordpress hosting framework.

About Deflect Labs

Deflect Labs is an ongoing and multi-facteted initiative to identify and mitigate malicious network behaivour using artificial intelligence. In production on the Deflect network, the technology and lessons learned are forming the basis of a privacy preserving threat information clearinghouse in the near future.

Deflect Labs Components


Baskerville is an application layer (7) DDoS mitigation tool, running an analytics engine that leverages machine Learning to distinguish between normal and abnormal web traffic behavior.


Docker files to run all Baskerville components, including the analytics engine, Apache Kafka, distributed storage with a Spark cluster, Prometheus and Grafana.


A small library that uses PySpark to get data from Elastic Search.