If you work in Infosec, you had a very lousy weekend. And that’s because of the Log4j zero-day vulnerability (CVE-2021-44228) that was discovered. We had no choice but to roll up our sleeves to help our community before things got messier than they already were.  As a result, we have released a scenario that will […]

We’ve released version 1.2.1 of CrowdSec This version contains a few bug fixes, improvements for people dealing with massive databases with many agents and bouncers. But mostly, it introduces a new feature to make the creation and troubleshooting of parsers and scenarios easier  – cscli explain. Debugging a faulty parser or creating a new scenario […]

Cyber security is the land of TLA (Three Letter Acronyms…get it? we are very meta here…). The complete value chain has dozens of acronyms from SOC to SIEM through DDoS, CTI etc. For the uninitiated, all these words sound like invoking millenary monsters from a Lovecraft novel. We could spend hours explaining those terms, but […]

Introduction The microservice architecture is the most significant security challenge in a Kubernetes (K8s) cluster. Every application you deploy opens a new potential entry for attackers, increasing the attack surface. As deployed applications generate logs and CrowdSec can run in a container… You see where I am going with this. In this blog post, we […]

You can secure your WordPress sites with CrowdSec using our latest application remediation component, available on the WordPress marketplace. Read more to see how to install it.

Do you want to inspect multiple CrowdSec agent signals spread across different networks and discover more about your attackers? We are happy to announce that, although still in beta, it is now available to all. Not only can you enroll all your instances, but also monitor the alerts sent to the CrowdSec community. This private-public […]

If you never heard of it, G2 is a software buyer marketplace based on user reviews and feedback. It helps millions of people every month to make software decisions. Each year, they issue ranking reports based on real-user data. Dear users, you have spoken on G2 these past few months, and your voice has been […]

PHP is used by 79% of the websites for which we know the server-side programming language, according to W3Techs’ usage statistics. It is evident that we needed to provide a PHP bouncer to help you secure your websites. This day has finally come. CrowdSec bouncers can be set up at various levels of your applicative […]

We are thrilled to welcome Klaus Agnoletti to the CrowdSec family as our Head of Community! Klaus has an impressive background in information security. He spent almost 20 years as an infosec professional and consultant who eventually became a senior security architect. Just a few months ago, he joined CrowdSec and jumped directly into community […]

For this version, we set the spotlight on notification plugins, new bouncers and a completely reworked consensus engine. Notification plugins CrowdSec is now able to notify third-party services when an alert occurs or a decision is taken (configured at the profile level). 1.2 comes with Splunk, Elasticsearch and Slack native support, while the generic HTTP […]

You may have read about our brand new console, which is currently in private beta and provides an easy-to-use web interface to inspect multiple CrowdSec agent signals spread across different networks. Today let’s take a look at it to better understand what it can achieve. To use it, you must first make sure you have […]

During his speech on February 18, 2021, the President of France presented his national acceleration strategy for cybersecurity. CrowdSec responded to this call and has been selected as part of the Grand Défi Cyber. More and more cyber threats on a daily basis 2021 has been marked by an upsurge in ransomware attacks, which have […]

This article explains how to make CrowdSec and Docker Compose work together to protect applications exposed in containers. It should allow us to: Automatically ban malevolent IPs from accessing our container services Manually add/remove and inspect ban decisions Monitor CrowdSec’s behavior (via cli and dashboards) Target Architecture The chart below shows a glimpse of how […]

Today we announce that we have been named a winner for the Top 10 cybersecurity startups for 2021 at the Black Unicorn Awards which are hosted by Cyber Defense Magazine and take place each year during the Black Hat USA conference. Judges Robert R. Ackerman Jr. of www.allegiscyber.com, David DeWalt of www.nightdragon.com, Dr. Peter Stephenson […]

We are happy to share that Arturo Busleiman joins our ambassador roster. Arturo is a 39-year-old programmer and security consultant from Argentina who has dedicated his life to promoting and developing open source software. His first foray into Linux began in 1995 when he downloaded mini-Linux from a BBS. Since then, he has contributed not only […]

The release of CrowdSec v1.1.x introduces new package repositories for the CrowdSec agent and the bouncers, making the setup process even easier. In addition to that, multiple CrowdSec agents can be connected to the console to get a unified view of the attackers. In this tutorial, we are going to cover the following: CrowdSec setup […]

A short while ago, we sat down with Yannick Siegler, one of CrowdSec’s early spotters and most involved community member. Hi Yannick. Can you tell us a little bit more about yourself and your company? I have been an auto-entrepreneur for several years. I  run my own company, Siegler Informatique, offering managed services and VPS. […]

The information security industry is obviously part of the IT sector, but security companies are different from traditional software companies in many ways. If your company builds cloud services or CRM systems or search engines, you don’t have an enemy. The closest thing to an enemy would be competing companies. However, infosec companies do have […]

Today, along with the release of CrowdSec v1.1.x, we are happy to announce that we moved to Package Cloud, a cloud-hosted package distribution. What does that mean? We are now distributing more packages! Alongside existing ones for Debian and Ubuntu (Bionic, Bullseye, Buster, Focal, Stretch, Focal for x86-64 & arm), we now provide packages for […]

We are a security company. Our goal is to help our community members secure their assets. But one of our core values is to drink our own champagne and walk the talk. So, a few months ago, we asked Synacktiv to perform a code review on the CrowdSec agent. The tests were performed using a […]

Did you know that every day across the Internet, each IP address is scanned hundreds of times? Or that more than 2,000 attacks are perpetrated, stealing 1.4 million personal records? That’s right, every single day! Companies, institutions, individuals are more aware of the issue than they used to be and are ready to deal with […]