Outnumbering hackers all together
CrowdSec is an open-source and collaborative EDR. Analyze behaviors, respond to attacks & share signals across the community.
CrowdSec is designed to run seamlessly on virtual machines, bare-metal servers, containers or to be called directly from your code with our API.
Our strength comes from our cybersecurity community which is burning hackers’ anonymity. By sharing the IP addresses that aggressed you, you help us curate and redistribute a qualified IP blacklist to protect everyone.
By decoupling detection (agent) and remediation (bouncer), CrowdSec doesn’t interrupt your data streams nor creates any single point of failure. It can fit any serverless, cloud-based, VM or bare-metal context in one (agent) to one (bouncer), one to many, many to one, and many to many typologies.
Written in Golang, CrowdSec is 60x faster than its predecessor (Fail2ban) and can parse massive amounts of logs in no time. Agents can read log files, SIEM events, through a network socket and can be used in high throughput networks. For CPU & RAM-constrained assets, bouncers can just make very light API calls.
Leave a Comment
Related Posts
Cyber insurance isn't helping with cybersecurity, and it might be making the ransomware crisis worse, say researchers
Comment
.png)