About
Building security observability for every engineering team
SOCWarden was founded in 2026 with a simple mission: make enterprise-grade security detection accessible to every engineering team — not just those with a dedicated SOC.
We believe security observability should be as easy to integrate as logging. One SDK call, one API endpoint, and your application is protected by 29 behavioral detectors, 15+ threat intelligence feeds, and AI-powered risk scoring — all running in real-time.
Our Approach
Detection-First
We built the detection engine before the dashboard. 29 detectors, 5 kill chain patterns, and 66 event types with unique behavioral rules.
OSINT-Native
15+ threat feeds and 9 real-time APIs enriching every event. AbuseIPDB, GreyNoise, Shodan, Pulsedive — all included on every plan.
Developer-Friendly
SDKs for Laravel, Node.js, Python, Go, and Browser. Middleware auto-captures context. One function call to track any security event.
The Team
SOCWarden is built by a small team of security engineers and full-stack developers based in Malaysia. We've worked across fintech, cloud infrastructure, and security operations.
Hafiq Iqmal
Founder & Lead Engineer
Full-stack engineer with experience in backend engineering and security tooling. Previously built developer tools and SaaS platforms.