Welcome to GuardianKey Documentation

GuardianKey offers three complementary and innovative solutions to protect web systems, authentications, and forms against automated threats and malicious access. Get to know each one:

🔐 Auth Bastion

Auth Bastion is a multi-factor authentication solution that acts as a bastion between the user and protected systems. It enables two-factor authentication (2FA) without changing the original system's code, supporting GovBR login, TOTP, and custom access rules. It's ideal for integrating advanced security into legacy systems or those without native MFA support.

🔍 Auth Security

Auth Security is the intelligence core of GuardianKey. It analyzes authentication attempts in real time, calculates a risk score based on context, behavior, and threat intelligence, and provides recommendations to allow or block access. Fully integrated with login systems, it can act as an adaptive decision module for authentication.

🛡️ GKTinc (This Is Not CAPTCHA)

GKTinc is a solution to deter automated attacks such as brute force and credential stuffing. It injects a lightweight, silent cryptographic challenge into the user's browser, solved by JavaScript and validated on the backend. Compatible with any language and transparent to the user, it is a modern and effective alternative to traditional CAPTCHAs—frictionless and token-free.

Explore the documentation to learn how to deploy, configure, and get the most out of GuardianKey solutions.