Explore all CrowdSec integrations
Integrate CrowdSec with your existing tools, turbocharge their efficiency, and make your security ecosystem more powerful and efficient.
security-engine
data-source
cloud
services
AWS CloudWatch
A monitoring and observability service built for DevOps engineers, developers, site reliability engineers (SREs), and IT managers.
Data source
security-engine
data-source
cloud
services
AWS Kinesis
A platform for streaming data on AWS, offering powerful services to make it easy to load and analyze streaming data.
Data source
security-engine
data-source
cloud
services
AWS S3
An object storage service that offers industry-leading scalability, data availability, security, and performance.
Data source
security-engine
remediation-component
cloud
saas
services
AWS WAF
A web application firewall service that helps protect web applications from common web exploits and bots.
Firewall
Remediation Component
security-engine
linux
infrastructure
Amzn Linux 2
Amazon Linux 2 is Amazon Web Services' own Linux distribution, optimized for high performance and reliability in the cloud.
Platform
Security Engine
services
web-host-manager
plugin
CPanel
A web hosting control panel that provides a graphical interface and automation tools designed to simplify the process of hosting a web site.
Service
Plugin
security-engine
remediation-component
web-server
services
Caddy
An open-source web server with automatic HTTPS, known for its simplicity and performance.
Service
Remediation Component
cti-enrichment
browser-security
web-data
Chrome Extension
A small software program that customizes the browsing experience on the Google Chrome web browser, adding new features or functionality.
Service
CTI redirect
security-engine
linux
infrastructure
CloudLinux
CloudLinux is a commercial Linux distribution designed for shared hosting providers, enhancing stability and density.
Platform
Security Engine
security-engine
remediation-component
infrastructure
cloud
web-server
Cloudflare
A global network designed to make everything you connect to the Internet secure, private, fast, and reliable.
Firewall
Remediation Component
security-engine
linux
infrastructure
Debian/Ubuntu
Ubuntu, derived from Debian, is a popular and accessible operating system that offers a range of support options, including paid plans for businesses and free community support, making it appealing for both enterprise and personal use.
Platform
Security Engine
security-engine
infrastructure
containers
Docker
An open platform for developing, shipping, and running applications in containers, facilitating consistency across environments.
Platform
Security Engine
third-party
cms
detection-prevention
services
Drupal
Drupal is an open-source content management system (CMS) used for building and maintaining websites, offering a wide range of modules, themes, and features.
CMS
Plugin
security-engine
linux
infrastructure
EL/Centos Stream 8
EL/CentOS Stream is a rolling-release Linux distribution aimed at providing a preview of future Red Hat Enterprise Linux (RHEL) technologies.
Platform
Security Engine
security-engine
linux
infrastructure
EL/Centos7
EL/CentOS 7, backed by Red Hat, offers enterprise-grade stability and compatibility.
Platform
Security Engine
security-engine
remediation-component
web-server
library
Express.js
A fast, unopinionated, minimalist web framework for Node.js, designed for building web applications and APIs.
SDK
Remediation Component
security-engine
remediation-component
web-server
cdn
Fastly
An edge cloud platform that provides a content delivery network, internet security services, and scalable cloud computing.
Service
Remediation Component
security-engine
infrastructure
FreeBSD
FreeBSD is a free and open-source Unix-like operating system known for its reliability, performance, and advanced networking features.
Platform
Security Engine
cti-enrichment
big-data
analytics
csv-file-handling
Gigasheet
A web-based tool for analyzing large datasets without programming, making it easier to filter, sort, and gain insights from big data.
SIEM
CTI API
saas
firewall
cloud
Google Cloud Platform (GCP) Network Firewall
A high-performance, managed network firewall service for GCP resources.
Firewall
Remediation Component
security-engine
remediation-component
web-server
load-balancer
networking
HAProxy
A free, very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications.
Service
Remediation Component
security-engine
data-source
services
Kafka
A distributed streaming platform that lets you publish and subscribe to streams of records, store streams of records in a fault-tolerant way, and process them as they occur.
Data source
security-engine
infrastructure
containers
Kubernetes
Kubernetes is an open source platform for automating deployment, scaling, and operations of application containers across clusters of hosts, enhancing infrastructure efficiency and reliability.
Platform
Security Engine
security-engine
remediation-component
infrastructure
linux
scripting
Linux Custom
A specialized integration within Linux that enables the execution of system commands.
Service
Remediation Component
feeds-component
cti-enrichment
alerts
information-sharing
services
MISP
An open-source software solution for collecting, storing, distributing and sharing cyber security indicators and threats.
Incident response
CTI API
cti-enrichment
security-research
data-analysis
MSTICpy
A Python library for cyber investigations and incident response, developed to support security analysts in their work.
Incident response
CTI API
security-engine
remediation-component
cms
ecommerce
third-party
Magento
An open-source e-commerce platform written in PHP, known for its flexibility, scalability, and extensive features.
CMS
Remediation Component
cti-enrichment
open-source-intelligence
services
data-integration
Maltego
Maltego is a data visualization and link analysis tool used for digital forensics and intelligence gathering, enabling users to discover hidden relationships between entities.
Incident response
CTI API
cti-enrichment
feeds-component
analytics
siem
detection-and-response
Microsoft Copilot for Security
Microsoft Copilot for Security is a generative AI-powered security solution that helps increase the efficiency and capabilities of defenders to improve security outcomes at machine speed and scale.
Incident response
CTI API
security-engine
remediation-component
router
networking
services
MikroTik RouterOS
An operating system based on the Linux kernel, aimed at providing routers and network devices with a wide range of features.
Firewall
Remediation Component
feeds-component
database
MongoDB
A NoSQL database designed for ease of development and scaling, known for its flexible document schemas.
Data source
security-engine
remediation-component
web-server
services
Nginx Lua
A powerful tool for extending NGINX functionality with the use of Lua scripting language.
Service
Remediation Component
security-engine
infrastructure
firewall
detection-prevention
plugin
OPNSense
OPNsense is a user-friendly, open-source firewall and routing platform based on FreeBSD, focusing on security and versatility.
Platform
Security Engine
cti-enrichment
data-structuring
services
OpenCTI
OpenCTI is an open-source platform for managing and sharing cyber threat intelligence, supporting knowledge representation and data visualization for enhanced decision-making.
Incident response
CTI API
security-engine
remediation-component
web-server
services
OpenResty
A full-fledged web platform that integrates the standard Nginx core and LuaJIT, aimed at dynamic web applications.
Service
Remediation Component
security-engine
linux
infrastructure
OpenWRT
OpenWRT is a flexible, open source firmware for routers and embedded devices, emphasizing user control and network performance.
Platform
Security Engine
security-engine
remediation-component
web-server
services
scripting
PHP Legacy App
Refers to older PHP-based applications that may require maintenance or integration with modern systems.
Service
Remediation Component
security-engine
remediation-component
third-party
web-server
services
PHP SDK
A software development kit for PHP, enabling developers to build applications and services with PHP.
SDK
Remediation Component
cti-enrichment
soar
incident-management
services
PaloAlto Cortex XSoar
Palo Alto Networks Cortex XSOAR is a Security Orchestration, Automation, and Response (SOAR) platform that streamlines incident management and resolution across multiple security tools.
Incident response
CTI API
security-engine
monitoring-reporting
Prometheus Endpoint
An HTTP endpoint that exposes metrics in a format that can be scraped by a Prometheus server for monitoring and alerting.
Service
Metrics feed
security-engine
third-party
detection-prevention
Python SDK
A software development kit for Python, facilitating the creation of applications and the integration with other services.
SDK
SDK
feeds-component
cti-enrichment
siem
services
network-security
Qradar
An integrated security information and event management (SIEM) solution that provides real-time visibility to the entire IT infrastructure for threat detection and prioritization.
SIEM
CTI API
security-engine
linux
infrastructure
Red Hat
RHEL (Red Hat Enterprise Linux) is a leading enterprise Linux operating platform, offering robust stability and scalability.
Platform
Security Engine
cti-enrichment
detection-and-response
threat-hunting-services
Sekoia
Sekoia is a security platform that combines threat intelligence, detection, and response capabilities, helping security teams to anticipate, analyze, and remediate threats effectively.
Incident response
CTI API
third-party
cms
detection-prevention
services
ShieldPro
ShieldSecurity is a WordPress security plugin that helps protect websites from threats, including malware, spam, and unauthorized access.
CMS
Plugin
feeds-component
cti-enrichment
analytics
siem
detection-and-response
Splunk
A software platform for searching, analyzing, and visualizing machine-generated data gathered from websites, applications, sensors, devices, and more.
SIEM
CTI API
cti-enrichment
incident-response
services
threat-intelligence-analysis
The Hive
TheHive is a scalable, open-source Security Incident Response Platform (SIRP) that streamlines the handling of security incidents and fosters collaboration among incident response teams.
Incident response
CTI API
security-engine
remediation-component
web-server
load-balancer
services
Traefik Proxy
A modern HTTP reverse proxy and load balancer that makes deploying microservices easy.
Service
Remediation Component
web-host-manager
services
plugin
WHM
A web-based control panel for server administration, automating tasks and managing website hosting.
Service
Plugin
security-engine
infrastructure
Windows
Windows is a widely-used operating system from Microsoft, known for its user-friendly interface, compatibility with a vast array of software, and broad hardware support.
Platform
Security Engine
security-engine
remediation-component
infrastructure
firewall
Windows Firewall
A software component of Microsoft Windows that provides firewalling and packet filtering functions.
Firewall
Remediation Component
security-engine
remediation-component
cms
WordPress
A popular content management system (CMS) used for creating and managing websites, known for its ease of use and flexibility.
CMS
Remediation Component
security-engine
remediation-component
linux
firewall
services
iptables
A user-space utility program that allows a system administrator to configure the IP packet filter rules of the Linux kernel firewall.
Service
Remediation Component
security-engine
remediation-component
linux
firewall
services
nftables
The next generation packet filtering framework by the Netfilter project, which replaces iptables.
Service
Remediation Component
security-engine
infrastructure
firewall
detection-prevention
services
pfSense
pfSense is an open source firewall backed by Netgate based on FreeBSD, known for its reliability, feature-richness, and flexibility.
Platform
Security Engine
Get started with CrowdSec today