Explore allCrowdSec integrations

SUSE

Security Engine package for SUSE Linux, offering high-efficiency behavior detection to your services exposed to ingress attacks. (from crowdsec 1.6.4)

Sophos Firewall

Channel CrowdSec and custom blocklists directly into your Sophos firewall thanks to CrowdSec Blocklist as a Service Endpoint

PaloAlto firewall

Channel CrowdSec and custom blocklists directly into your PaloAlto firewall thanks to CrowdSec Blocklist as a Service Endpoint

Fortinet

Channel CrowdSec and custom blocklists directly into your Fortinet applicances thanks to CrowdSec Blocklist as a Service Endpoint

Checkpoint

Channel CrowdSec and custom blocklists directly into your Checkpoint applicances thanks to CrowdSec Blocklist as a Service Endpoint for checkpoint IOC feeds

F5

Channel CrowdSec and custom blocklists directly into your F5 applicances thanks to CrowdSec Blocklist as a Service Endpoint

Cisco

Channel CrowdSec and custom blocklists directly into your Cisco applicances thanks to CrowdSec Blocklist as a Service Endpoint

Open-appsec

Couple CrowdSec behavior detection and open-appsec signals to unlock the power of the crowd

Syslog

Detect malicious behavior on your services by locally monitoring your syslog files or streams

AWS S3

Connect a S3 bucket containing some logs directly into the security engine to benefit from our catalog of malicious behavior detection and easily create your own.

AWS Kinesis

Connect your Kinesis directly into the security engine to benefit from our catalog of malicious behavior detection and easily create your own.

AWS CloudWatch

Connect your CloudWatch directly into the security engine to benefit from our catalog of malicious behavior detection and easily create your own.

Kafka

Plug your Kafka into CrowdSec security stack to privately detect malicious behaviors on your infrastructure

MongoDB

Plug a mongoDB stream into CrowdSec security stack to detect malicious behavior

Magento

Security Plugin for Magento2 with scan protection and unlocking CrowdSec proactive remediation

WordPress

CrowdPowered security plugin protecting you from mass attacks and unlocking Drupal security collaboration

ShieldPro

Advanced WordPress protection seemlessly integrated with CrowdSec's network

Drupal

CrowdPowered security module protecting you from mass attacks and unlocking Drupal security collaboration

WHM

Easily monitor and control your security stack from the WHM plugin

Microsoft Copilot for Security

Get extensive understanding of threats thanks to the AI powered threat intelligence report based on CrowdSec CTI

TheHive / Cortex

Get threat enrichment for observables in TheHive Cortex thanks to this analyzer leveraging CrowdSec CTI. Gain insights into attack types, threat classification, and more to enhance your security incident response.

Sekoia

Get Threat enrichment anywhere in Sekoia XDR thanks to this playbook taking advantage of CrowdSec CTI API

PaloAlto Cortex

Add context to your incidents thanks to CrowdSec CTI integration with Cortex XSOAR. Gain insights into attack types, threat classification, and more to enhance your incident response.

OpenCTI

Advanced Observable enrichments connector, get the most of CrowdSec Threat Intelligence for a better understanding of bad actors hitting your infrastructure

Add context to your IP IOCs with CrowdSec CTI for MSTICpy, supporting Microsoft Sentinel. Enrich your threat intelligence using Jupyter notebooks, providing detailed insights and enhancing your security response workflows.

Maltego

Benefit from our 11 transforms for Maltego to enhance your investigations with the power of CrowdSec CTI. Get context like threat behavior, targeted countries, and many more.

IntelOwl

Add CrowdSec Threat intelligence context to your observables thanks to this IntelOwl analyzer

Gigasheet

Easily add context to IPs withing your Gigasheet thakns to this custom enrichment taking advantage of CrowdSec CTI API

Chrome Extension

Quick access to CrowdSec CTI web UI

Qradar

Assistant app for QRadar, integrating CrowdSec's CTI to consult extra context to IPs via right-click actions. Gain insights into attack types, threat classification, and more to enhance threat detection and response.

Splunk Siem

Enrich your events directly in Splunk Siem with CrowdSec's enrichment App. Improve your detection and repsonse to security events with actionnable threat insights

Splunk Soar

Improve your event investigation with CrowdSec's enrichment App for Splunk Soar. Improve your detection and repsonse to security events with actionnable threat insights

MISP feed

Channel your security stack alerts into MISP thanks to this MISP-feed generator

MISP

Add IP threat context thanks to this MISP Module leveraging CrowdSec CTI data

Prometheus Endpoint

Monitor security metrics in real-time with CrowdSec's Prometheus endpoint integration, providing comprehensive insights.

Python SDK

Easily interface your Python application with CrowdSec Central API. Allowing you to send threats signals and benefit from the crowd effect

Windows Firewall

Apply CrowdSec remediations in your windows firewall

PHP Legacy App

Apply CrowdSec remediation in front of any PHP legacy application without having to change a line of code.

PHP SDK

Easily interface your PHP application with CrowdSec Central API. Allowing you to send threats signals and benefit from the crowd effect

OpenResty

Secure OpenResty with CrowdSec's remediation component.

Protect your infrastructure with this NGINX module. Applying CrowdSec Remediations and blocklists, Ban or captcha. Supports CrowdSec's virtual patching collection & appSec capabilities

MikroTik RouterOS

Integrate CrowdSec's security measures into MikroTik RouterOS for advanced network protection.

HAProxy

Remediate CrowdSec decisions and apply AppSec rules thanks to the HAProxy remediation component.

nftables

Apply CrowdSec's remediation directly in your IPTables of type NFtables

iptables

Apply CrowdSec's remediation directly in your IPTables

Linux Custom

Apply CrowdSec's remediation decisions in custom Linux scripts for tailored security.

Fastly

Integrate CrowdSec's security measures into Fastly, enhancing edge cloud platform protection.

Express.js

Secure your Express.js applications with CrowdSec's remediation component, protecting against malicious behaviors.

Cloudflare

Integrate CrowdSec's remediation deceisions and lists into Cloudflare

Enhance AWS Network Firewall with CrowdSec's remediation decisions, from greatly improving anti-bot mass attacks to application security remediation.

Google Cloud Platform (GCP) Cloud Armor

Integrate CrowdSec's remediation decisions into GCP Cloud Armor, from greatly improving anti-bot mass attacks to application security remediation.

Google Cloud Platform (GCP) Network Firewall

Seamlessly integrate CrowdSec's remediation decisions into GCP Network Firewall, from greatly improving anti-bot mass attacks to application security remediation.

AWS WAF

Seemlessly integrate remediation decisions and CrowdSec lists into AWS WAF for a crowd powered anti-bot

Traefik Proxy

Protect your infrastructure with this Traefik plugin. (supports CrowdSec's virtual patching colletion & appSec capabilities)

Caddy

Apply CorwdSec remediations and crowd-powered anti-bot lists directly into Caddy thanks to this remediation component

Docker

Run our security stack in a container using CrowdSec's Docker image

Kubernetes

Easily protect your K8 with CrowdSec Security stack by leveraging our helm chart and malicious behavior detection collection

Windows

Security Engine package for Windows, CrowdSec offer a light-weight behavior detection and protection for exposed services directly into your Windows system.

pfSense

Plugin for pfSense, offering intuitive control and insights over the Security Engine package and its applied protection

pfSense

Security Engine package for pfSense, high-efficiency behavior detection for your exposed services and crowd-powered mass-attack protection. Integrated protection with the corresponding pfSense plugin

OPNSense

Plugin for OPNSense, offering intuitive control and insights over the Security Engine package and its applied protection

OPNSense

Security Engine package for OPNSense, high-efficiency behavior detection for your exposed services and crowd-powered mass-attack protection. Integrated protection with the corresponding OPNSense plugin

FreeBSD

Security Engine package for FreeBSD, providing high-efficiency behavior detection and protection.

Security Engine package for CloudLinux, offering high-efficiency threat detection and security tailored for hosting environments.

OpenWRT

Security Engine package for OpenWRT, delivering high-efficiency network security and behavior detection for embedded devices.

Security Engine package for Amazon Linux 2, offering high-efficiency behavior detection and protection tailored for AWS environments.

Red Hat

Security Engine package for Red Hat, providing high-efficiency behavior detection for services exposed to ingress attacks, ensuring enterprise-grade protection.

Security Engine package for CentOS Stream 8, offering high-efficiency behavior detection to your services exposed to ingress attacks.

Security Engine package for CentOS 7, offering high-efficiency behavior detection to your services exposed to ingress attacks.

Debian/Ubuntu

Security Engine package for Debian/Ubuntu, offering high-efficiency behavior detection to your services exposed to ingress attacks.