Home » Qbine

Website security

“Your website hygiene platform to optimize and secure your website”

It’s a cloud platform to improve and secure your websites. Security scans, automatic website improvements, attack defenses with clear monthly insights will improve the uptime and safety of any website.

Site improvements

Daily website scanning will inform you about possible improvements. On top of this, it will set HTTP headers, update your SSL certificates, disable old TLS versions, etc., etc.

Attack protection

Get hack protection and increased uptime for your websites with automated, always-on, and unmetered DDoS protection.

Management control

By real-time notifications, extensive API functionality, periodic reports and an advanced customer panel, we provide clear insights into the state of your website.

Features & functionality

Web Application Firewall (WAF)

OWASP Core Rule Set support which will protect your web application and will stop attacks. Qbine its WAF-as-a-Service functionality supports many common attack categories including SQL Injection (SQLi), Cross-Site Scripting (XSS), Local File Inclusion (LFI), Remote File Inclusion (RFI), and PHP Code Injection.

Learn more »

Layer 3, 4 and, 7 DDoS protection

Website DDoS protection service that protects your websites like never before. Qbine guarantees Layer 3 & 4 DDoS protection and offers advanced Layer 7 DDoS protection. Its protection mechanism uses several techniques to identify real HTTP requests from fake ones.

Learn more »

Geographically IP filtering

GeoIP filtering, a technology that can block web traffic from entire countries, can be an effective way to stop hackers from attacking your business. As the name suggests, it blocks, rate limit, or Captcha remote IP subnets based on geographic location. This can then be used to filter and prevent both outgoing and incoming connections to and from your business.

Learn more »

IP black and white-lists

You can create your own IP black and IP whitelists which you can use for a single website or add to multiple websites at once. During attacks, Qbine will offer top-talker information about every source IP that is visiting your websites. With a single mouse click, this IP can be blacklisted or whitelisted. this is very useful, such as during an L7 DDoS attack, where HTTP traffic only comes from a few source IPs. 

Learn more »

Customized ReCaptcha

The ReCaptcha functionality enables you to distinguish between human and automated access to websites. You can set a captcha for the whole website or per single source IP, or enable it only for some specific URLs. ReCaptcha will never interrupt users and is intended to run automatically when users load pages or click buttons, therefore it’s a smooth way to enable your default defenses.

Learn more »

IP rate limiting

IP rate limiting will prevent a web server from being overloaded by HTTP requests. Limits can be set to the total amount of website traffic, or per source IP address. Thresholds can be set for a certain amount of time. When a time limit with its total request limit is passed, you can set an IP block or captcha validation to every source IP request.

Learn more »

Qbine free SSL by Lets Encrypt

SSL certificates

When adding a domain name to Qbine, a free Let’s Encrypt SSL certificate is created by default. It will save you the time it takes to install the certificates and updating the SSL certificates in your hosting environment. If you like to use your own private commercial SSL certificate, you can simply upload them by the client panel or API.

Learn more »

Internet standards improvements

When using Qbine, all default internet standards are used on your website. The majority of these internet standards are application security options that activate browser mechanisms to protect visitors against attacks.

Learn more »

Customized error pages

Normal error pages of a website can provide relevant information to attackers. With Qbine its custom error pages functionality, your webserver error code pages will be served by Qbine, without showing any software errors of your application.

Learn more »

EOKM child abuse filtering

The EOKM child abuse image filter will check every uploaded image to see if it is child pornography. This feature is using a hash database, offered by the Dutch foundation the EOKM (expert bureau online child abuse).

Learn more »

Content Security Policy CSP builderContent Security Policy builder

The Content Security Policy (CSP) builder offers an easy way of creating a default CSP manual modifications can be made. for example, adding includes, creating javascript hashes, etc., etc. that prevents cross-site scripting, clickjacking, or any code injection attack to your website.

Learn more »

qbine application dashboard screenshotAdvanced client panel

Users can manage all their websites with an easy-to-use client panel. For example, adding websites, enabling WAF rules, set rate limits, etc, etc. And during attacks, it will provide a graphical overview and sub information of source IP’s which will help to fight the attack.


Within the “Insight” functionality, a day/week/monthly PDF overview can be downloaded, or the automatic email schedules can be enabled.

100% Rest-API functionality

Qbine is developed by a API first principle. The API has even more functionalities than Qbine its own client panel. By using the API, people can easily integrate Qbine into their own processes. At the same time, people can still work with the web interface.

Learn more »

qbine insights long time statisticsAdvanced Insights

In addition to Qbine’s standard statistics, the Insights add-on provides more information about your website(s) and sends you periodically a PDF by email.

Learn more »

qbine load balancing policy

Application IP load balancing

“Distribute clean traffic to one or multiple internet hosting IP addresses”

Qbine forwards clean traffic to one or multiple internet IP addresses. This way, users can use it to protect any internet address in the world. When using multiple, your data traffic will be balanced by the weight you set. This allows users to distribute the load to multiple hosting resources to maximize their throughput, create redundancy, and avoid overload of any single resource.

Learn more »

Qbine caching


“Caching is used to reduce latency, and network traffic”

Caching allows Qbine to store parts of your website temporarily, the next time the same content is requested, Qbine can answer with the cached version. This improves the response speed and decreases the load on the origin server.
Qbine implements HTTP caching according to RFC 7234 which means that an origin server always has control over which parts of the website should be cached. Origin servers can control this using the Cache-Control header.

website security platform network map

Built for Europe,
protected worldwide

It’s built and controlled by Serverius, a 100% Dutch, leading internet infrastructure company in Europe. Thousands of users in the world using it to protect European-based websites.

By using an anycast network, website visitors will automatically use the closest Point of Presence (PoP) that will inspect, act and forward all its website data traffic to its web-hosting environment. This principle offers European users high performance by low latency.


When using it, you can keep your current hosting provider. You do not need to move your data, change webhosting settings or install additional software. Just create your account, change the webhosting IP in your domain name DNS and it’s protecting your website.

Q1 Starter

0,- monthly

This Q1 package is ideal for people with personal or hobby projects that are not business-critical.

Amount of websites*: 1
Amount of domain names: 10

* A website is a collection of web pages that are identified by one or multiple “domain names” and published on at least one web server.

Unlimited legitimate bandwidth
Small or large website, your legitimate data traffic is unlimited.

With Qbine caching, your latency, and network traffic will be reduced. Therefore you will score higher in search engines.

Attached (sub) domain names
You can point 10 (sub) domain names to your website.

Automated SSL certificates
Automated Let’s Encrypt SSL certificate for every domain name.

Layer 3, 4 and, 7