As 2021 comes to an end and with an exciting 2022 ahead of us, let’s take a moment to think back on the (almost) past year. And what a year, what a year! Considering that CrowdSec was created in 2020, right in the middle of the Covid-19, 2021 was the first full year of the […]
We’re honored to announce that CrowdSec has been named Hight Performer product in G2 Winter reports for 2022. The selection was made based on customer Satisfaction and Market Presence. CrowdSec received the highest Satisfaction score among products in Intrusion Detection and Prevention Systems (IDPS) and Threat Intelligence Software. 100% of users rated it 4 or […]
With the Log4j (CVE-2021-44228) exploit storming over the internet, countless java-based services were discovered being not only critically vulnerable but also said to be ridiculously easy to exploit, pushing sysadmins into a rush to identify and correct the vulnerable systems. It is too early to assess the long-term impact of Log4j but the consensus is […]
If you work in Infosec, you had a very lousy weekend. And that’s because of the Log4j zero-day vulnerability (CVE-2021-44228) that was discovered. We had no choice but to roll up our sleeves to help our community before things got messier than they already were. As a result, we have released a scenario that will […]
We’ve released version 1.2.1 of CrowdSec This version contains a few bug fixes, improvements for people dealing with massive databases with many agents and bouncers. But mostly, it introduces a new feature to make the creation and troubleshooting of parsers and scenarios easier – cscli explain. Debugging a faulty parser or creating a new scenario […]
Cyber security is the land of TLA (Three Letter Acronyms…get it? we are very meta here…). The complete value chain has dozens of acronyms from SOC to SIEM through DDoS, CTI etc. For the uninitiated, all these words sound like invoking millenary monsters from a Lovecraft novel. We could spend hours explaining those terms, but […]
Introduction The microservice architecture is the most significant security challenge in a Kubernetes (K8s) cluster. Every application you deploy opens a new potential entry for attackers, increasing the attack surface. As deployed applications generate logs and CrowdSec can run in a container… You see where I am going with this. In this blog post, we […]
Do you want to inspect multiple CrowdSec agent signals spread across different networks and discover more about your attackers? We are happy to announce that, although still in beta, it is now available to all. Not only can you enroll all your instances, but also monitor the alerts sent to the CrowdSec community. This private-public […]
If you never heard of it, G2 is a software buyer marketplace based on user reviews and feedback. It helps millions of people every month to make software decisions. Each year, they issue ranking reports based on real-user data. Dear users, you have spoken on G2 these past few months, and your voice has been […]
PHP is used by 79% of the websites for which we know the server-side programming language, according to W3Techs’ usage statistics. It is evident that we needed to provide a PHP bouncer to help you secure your websites. This day has finally come. CrowdSec bouncers can be set up at various levels of your applicative […]
We are thrilled to welcome Klaus Agnoletti to the CrowdSec family as our Head of Community! Klaus has an impressive background in information security. He spent almost 20 years as an infosec professional and consultant who eventually became a senior security architect. Just a few months ago, he joined CrowdSec and jumped directly into community […]
For this version, we set the spotlight on notification plugins, new bouncers and a completely reworked consensus engine. Notification plugins CrowdSec is now able to notify third-party services when an alert occurs or a decision is taken (configured at the profile level). 1.2 comes with Splunk, Elasticsearch and Slack native support, while the generic HTTP […]
You may have read about our brand new console, which is currently in private beta and provides an easy-to-use web interface to inspect multiple CrowdSec agent signals spread across different networks. Today let’s take a look at it to better understand what it can achieve. To use it, you must first make sure you have […]
During his speech on February 18, 2021, the President of France presented his national acceleration strategy for cybersecurity. CrowdSec responded to this call and has been selected as part of the Grand Défi Cyber. More and more cyber threats on a daily basis 2021 has been marked by an upsurge in ransomware attacks, which have […]
This article explains how to make CrowdSec and Docker Compose work together to protect applications exposed in containers. It should allow us to: Automatically ban malevolent IPs from accessing our container services Manually add/remove and inspect ban decisions Monitor CrowdSec’s behavior (via cli and dashboards) Target Architecture The chart below shows a glimpse of how […]
Today we announce that we have been named a winner for the Top 10 cybersecurity startups for 2021 at the Black Unicorn Awards which are hosted by Cyber Defense Magazine and take place each year during the Black Hat USA conference. Judges Robert R. Ackerman Jr. of www.allegiscyber.com, David DeWalt of www.nightdragon.com, Dr. Peter Stephenson […]
We are happy to share that Arturo Busleiman joins our ambassador roster. Arturo is a 39-year-old programmer and security consultant from Argentina who has dedicated his life to promoting and developing open source software. His first foray into Linux began in 1995 when he downloaded mini-Linux from a BBS. Since then, he has contributed not only […]
The release of CrowdSec v1.1.x introduces new package repositories for the CrowdSec agent and the bouncers, making the setup process even easier. In addition to that, multiple CrowdSec agents can be connected to the console to get a unified view of the attackers. In this tutorial, we are going to cover the following: CrowdSec setup […]
A short while ago, we sat down with Yannick Siegler, one of CrowdSec’s early spotters and most involved community member. Hi Yannick. Can you tell us a little bit more about yourself and your company? I have been an auto-entrepreneur for several years. I run my own company, Siegler Informatique, offering managed services and VPS. […]
The information security industry is obviously part of the IT sector, but security companies are different from traditional software companies in many ways. If your company builds cloud services or CRM systems or search engines, you don’t have an enemy. The closest thing to an enemy would be competing companies. However, infosec companies do have […]