Safer Together
in 5 minutes 

CrowdSec is a security automation engine, using both local IP behavior detection & our community-driven IP reputation database.

Our decentralized collaborative security engine is based on a cloud infrastructure
CrowdSec community will grow accuracy and efficiency
An Open-source approach to a decentralized collaborative security engine

Crowd powered security

CrowdSec analyzes the behavior of IP addresses interacting with your apps, websites, services, etc. Offending or suspicious IPs can be locally dealt with (block, captcha, 2FA, etc.) and are shared within our community so its members can protect each other.

The next-gen security tool leveraging both IP behavior & reputation

Let’s”outsmart hackers together” in 5 simple steps:

CrowdSec analyzes logs (systems, cloud trails, app, pub/sub, etc.)

IP behavior is evaluated by scenarios (you can write or download)

The agent also checks if this IP is known in our community DB

It then enforces your policy: block, throttle, captcha, 2FA, MFA, etc.

Finally, the aggressive IP is shared with the community

  • CrowdSec heuristics protect plenty of endpoints
  • which enrich its IP reputation database
  • that, in return, all members can use
  • to preemptively block malevolent actors
CrowSec is dynamic and open source
We protect what Firewalls can’t
Firewalls mainly consist of static rules which do not protect public applications or services that need to stay accessible by anyone (Web, App, DNS, mail, etc.)
  • 64% : Non-human traffic on web ports
  • 937 : Average daily scans on an IP
  • 6 billions : Attacks on application layer
  • 70% : Breaches starting from the application layer

(Sources : CrowdSec | Akamai SOTI 2019 | Verizon report 2019)

Crowd-sourced alerts
Assisted setup
Cloud born,
API accessible
Let’s achieve a “digital herd immunity”
Free and open source, CrowdSec goal is to become the de-facto security component deployed on any code, service, or object exposed on the Internet.
Let’s leverage the crowd strength to become safer together.

A new approach was needed

Crowd Sourced
Our tool is crowd-sourced by multiple experts all around the world and the community keeps growing, join the ride!
Open Source & Free
Our agent is free & open-source, available on GitHub, you can download it, audit it and contribute to improve it.
Reputation & Behavior
We use 2 strong mechanisms to protect you: the behavior profiling and the community reputation database.
Automated & Evolutive
You can automate any response to any dubious behavior or IP thanks to our ready-to-use attack scenario database.

Automate your security: Analyze your logs, match them against scenarios, and leverage bouncers readily available from our Hub to defeat various kinds of attacks like password brute force, port scans, web scans, credential stuffing, and more.

CrowdSec key features

CrowdSec, written in Go language is designed to run seamlessly on servers, Cloud machines, Containers or to be called through API directly from your code.


CrowdSec assisted setup allows you to plug any event or log source (system, application, probe, cloud, container, pub/sub…). Events are normalized (using GROK patterns) and enriched by our community-based IP blacklists. Just browse the Hub to install any of the ready-to-use datasources, recorded attack scenarios and means to block them.


Based on those logs, the scenarios analyze if a visitor is trying to tamper with your security. IE: Password Bruteforce generates password failures, Webscans trigger 404 errors and Port scans generate dropped packets. Better, if you detect the three events, it means that you’re aimed by a targeted attack, not just random scans.

Act & share

Upon unmasking an aggressive IP, your system can adapt tailor-made remediations, like preventing access to some admin areas, send a captcha, drop the packet, send a 2FA challenge, etc. You decide how and where. Once identified, the IP is shared with the community to help others as they helped you and increase the efficiency of the solution.

Some upcoming milestones

May 2020
CrowdSec Open Source Product Launched !
June/July 2020
CrowdSec introduced @OSSIR & Pass the salt conference
First fundraiser (pre-seeding, cashed-in $1M)
September 2020
Recruited two more engineers (front/fullstack), a marketer and a community manager
December 2020
Premium offers (MVP)
Q1 2021
Premium SAAS feature launch
July 2021
Fundraiser: A serie
AI team start adding features
4th Quarter 2021
Partnership & OEM program
1st half 2022
Artificial intelligence: Anticipation of attacks
2nd half 2022
Fundraiser: B serie
Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.