Welcome and thank you for being here. We’d love you to join the community. By doing so, you will protect your servers for free and
also win a special prize. Just follow the 2 steps right below!
Crowd-powered security
Collaborative firewall leveraging both behavior & reputation
Let’s”outsmart hackers together” in 5 simple steps:
CrowdSec analyzes logs (systems, cloud trails, app, pub/sub, etc.)
IP behavior is evaluated by scenarios (you can write or download)
The agent checks if the IP is present in the IP reputation DB
Your policy is automatically enforced: block, captcha, 2FA, etc.
Finally, the aggressive IP is shared with the community
- 64% : Non-human traffic on web ports
- 937 : Average daily scans on an IP
- 6 billions : Attacks on application layer
- 70% : Breaches starting from the application layer
(Sources : CrowdSec | Akamai SOTI 2019 | Verizon report 2019)
A next-gen fail2ban was needed
Automate your security: Data connectors, scenarios & bouncers are readily available from our Hub to defeat various attacks like password brute force, port scans, web scans, credential stuffing, and more.
CrowdSec key features
Acquire
Logs are normalized using GROK patterns, enriched by our IP blocklists.
Analyze
YAML Scenarios allow to detect most attacks, as long as they generate logs (which the vast majority does).
Act & share
In case of an aggression, you can react with a captcha or 2FA, drop the packet, etc. You decide how & where.