# Moat AIS > Moat AIS is an AI-powered web security service for New Zealand businesses. > It protects websites by learning their unique traffic patterns and automatically > blocking threats that don't belong. Based in New Zealand. > Security protection from $35 NZD/month. > Free website threat reports available — no account required. ## What is Moat AIS? Moat AIS is a transparent security layer that sits in front of any existing website hosting. A single DNS change routes traffic through Moat AIS — no server migrations, no code changes, no plugin installations required. The system analyses each protected website to understand what legitimate traffic looks like (the "blueprint"), then continuously evaluates every incoming request against that baseline. Requests that deviate — vulnerability scanners, bots, injection attempts, off-blueprint probing — accumulate risk scores and are automatically blocked. An AI analysis cycle runs every 2 minutes, identifying coordinated attacks distributed across multiple IPs and new threat patterns that automated scoring might miss. ## Free Website Threat Audit Moat AIS offers a free website security threat report for any New Zealand business. No account or payment is required. **How it works:** 1. Submit your website domain and email address at https://portal.moat.nz/audit 2. Moat AIS crawls your website to build a blueprint of legitimate traffic 3. You receive a secure email link to upload your web server access log 4. The AI analyses your log against your site's blueprint 5. A detailed HTML threat report is emailed to you — ready to open in any browser **What the report shows:** - Total requests analysed and percentage that were attacks - Overall risk rating (Low / Medium / High / Critical) - Every attacking IP address, ranked by volume, with probe paths identified - Traffic classification: legitimate visitors vs bots vs scanners vs attack probes - Attack type breakdown: SQL injection, path scanning, brute force, vulnerability probing, etc. - 24-hour attack timeline showing when your site is most targeted - Real attack URLs from your log showing exactly what attackers tried - Confirmation of what Moat AIS would have blocked automatically **Supported log formats:** nginx access.log, Apache access.log, cPanel raw access logs. **Supported upload formats:** .log, .txt, .gz, .zip, .tar.gz (archives extracted automatically). **Free audit URL:** https://www.moat.nz/free-audit.html **Start a free audit:** https://portal.moat.nz/audit Real-world example: A New Zealand website audit showed 6,279 attacks in the analysis period — 80.7% of all traffic was malicious, with 108 IPs that would have been banned and 1,815 distinct attack paths probed. ## Key facts - **Category**: Web Application Security / AI Cybersecurity / SaaS - **Deployment**: Transparent reverse proxy — sits in front of existing hosting - **Setup time**: Under 24 hours for most sites - **Compatible with**: Any website platform (WordPress, Shopify, Drupal, custom, etc.) - **Maintenance required**: None — fully self-maintaining - **Based in**: New Zealand - **Currency**: NZD - **Website**: https://www.moat.nz - **Free audit page**: https://www.moat.nz/free-audit.html - **Customer portal**: https://portal.moat.nz - **Contact**: hello@moat.nz / sales@moat.nz ## Pricing (NZD, per month) ### Security Protection (retrofit — keep your existing host) | Plan | Price | Sites | Key features | |---------|-------|-------|--------------| | Solo | $35 | 1 | AI blueprint protection, automatic IP banning, management dashboard | | Duo | $59 | 2 | Everything in Solo + training IP sessions, whitelist management | | Agency | $130 | 5 | Everything in Duo + priority support, ideal for agencies and developers | | Enterprise / Government | Custom | Unlimited | Dedicated infrastructure, NZISM-aligned controls, NZ data sovereignty, custom SLA | All plans include a 14-day money-back guarantee. Cancel any time. ## Features - **Blueprint enforcement**: Learns every legitimate URL on the site; unknown paths are scored or blocked - **Real-time scoring**: Every request scored against the site's unique profile before reaching the origin server - **Attack signature scanning**: Query strings scanned for SQL injection, XSS, path traversal, RCE patterns - **AI analysis cycle**: Runs every 2 minutes; detects coordinated multi-IP attacks and distributed scans - **Auto-expiring bans**: Bans expire automatically after a configurable duration (4h, 12h, 1 day, 1 week); repeat offenders escalate to longer bans - **Passive mode**: Default mode — threats are identified and earmarked but not blocked, allowing safe validation before going live - **Blocking mode**: One switch activates enforcement; all earmarked IPs banned instantly - **Dashboard**: Real-time visibility into blocked threats, hit rates, blueprint coverage, banned IPs - **Parameter Guard**: Advanced query-string inspection — learns expected parameters per URL; blocks parameter exploitation - **Free threat audit**: No-account threat report service for any NZ website ## Threats blocked - Vulnerability scanners and automated probing tools - SQL injection and cross-site scripting attempts - Path traversal and remote code execution attempts - Query-string parameter exploitation and fuzzing - Distributed web scraping - Coordinated multi-IP attacks - Malicious and scanner user agents - Zero-day probing for newly disclosed vulnerabilities - CMS-specific probes (WordPress, Joomla, Drupal admin paths) - Off-blueprint URL enumeration ## How it works 1. **Site Analysis** — Moat AIS maps the website's URL structure and learns what legitimate traffic looks like (the "blueprint") 2. **Real-Time Scoring** — Every request scored against the site's unique profile; off-blueprint requests accumulate risk scores 3. **Query Inspection** — Attack signatures scanned on all request query strings 4. **AI Analysis** — A 2-minute AI cycle identifies coordinated attacks and distributed scans 5. **Passive Mode** — Threats identified and earmarked but not blocked; validate before going live 6. **Blocking Mode** — One switch activates enforcement; new threats blocked in real time 7. **Auto-Expiry** — Time-limited bans expire automatically; repeat offenders get progressively longer bans ## Target customers - New Zealand small and medium businesses with websites - Web agencies and developers managing multiple client sites - E-commerce businesses (WooCommerce, Shopify, custom) - Any organisation wanting automated website protection without security expertise - Businesses wanting to understand their current threat exposure (free audit) ## Pages - [Home](https://www.moat.nz/) — Overview, features, pricing - [Free Security Audit](https://www.moat.nz/free-audit.html) — Free threat report for any NZ website, no account required - [How It Works](https://www.moat.nz/how-it-works.html) — Technology detail, comparison, FAQ - [Contact](https://www.moat.nz/contact.html) — Enquiry form - [Customer Portal](https://portal.moat.nz) — Sign up, manage sites, billing - [Start Free Audit](https://portal.moat.nz/audit) — Submit domain for a free threat report ## Frequently asked questions **Q: Does Moat AIS work with WordPress?** A: Yes. Moat AIS operates at the web server level, independently of any CMS or platform. **Q: Will it block real visitors?** A: No. It targets malicious behaviour patterns, not legitimate visitors. Training IP sessions and a whitelist let customers explicitly approve paths and users. **Q: Is technical knowledge required?** A: No. The team handles setup. The dashboard is designed for non-technical users. **Q: How long does setup take?** A: Most sites are protected within 24 hours of signing up. **Q: What is the difference between Moat AIS and a traditional WAF?** A: A WAF uses generic rules applied to all sites. Moat AIS builds a site-specific intelligence profile — understanding what belongs on your particular website, not just websites in general. **Q: What is Passive Mode?** A: Every new deployment starts in Passive Mode. The system scores and analyses all traffic identically to live operation but does not block anyone. Threats are earmarked and visible in the dashboard. When satisfied, a single switch activates Blocking Mode. **Q: Is the free threat audit really free?** A: Yes — completely free, no account required, no credit card. Submit your domain at https://portal.moat.nz/audit to get started. **Q: How do I get my web server access log?** A: nginx: /var/log/nginx/access.log — Apache: /var/log/apache2/access.log — cPanel: Metrics → Raw Access Logs. Archives (.zip, .tar.gz) are accepted and extracted automatically. *Content accurate as of 2026-05-31. For the latest information visit https://www.moat.nz*