Inside CrowdSec

To keep CrowdSec’s Central API (CAPI) reliable as usage continues to grow, we’ve introduced rate limiting. This change helps prevent misconfigured or broken deployments from generating excessive traffic, ensuring fair access and consistent performance for everyone.

Learn how to secure Kubernetes ingress with Traefik & CrowdSec. Enable open-source WAF, virtual patching, & DevSecOps-friendly protection for web-native workloads.

CrowdSec enhances DevSecOps with behavior-based detection and edge filtering. Strengthen security without slowing pipelines.

A behind-the-scenes look at why we replaced a clever but over-engineered SPOA architecture with a simple, reliable single-listener design backed by goroutines.

Secure apps with CrowdSec WAF: start with virtual patching, extend with CRS, add custom rules, and scale to enterprise protection.

Discover how CrowdSec Remediation Metrics turn blocked attacks into actionable insights, optimized defenses, & demonstrate measurable results.

Discover how users around the world are deploying CrowdSec WAF across Kubernetes, cloud, and on-prem environments.

Protect your apps with a modern, open-source WAF that adapts in real time using behavior-driven detection and global threat intelligence.

Explore CrowdSec’s enhanced CTI scoring system, now more explainable and reliable, with improved quantiles for accurate threat analysis and IP data tracking.

Follow our journey as we upgrade the CrowdSec infrastructure to allow our IPv6-only users to set up CrowdSec without any hiccups.

Delve into IP-based cyber defense and explore how the Network Effect and AI are transforming CTI into crowd-powered Tactical Threat Intelligence.

For us, the FOSS business model is about creating enterprise-grade open-source software while aligning community, investor, and client interests.

While working on some new features for CrowdSec, we also have been experimenting with scenarios focused on post-exploitation behaviors, relying on auditd for Linux. That experiment led to another…how quickly can a machine get compromised? How fast can the CrowdSec network spot this compromised machine? And, how fast will it make its way to the crowdsourced blocklist? This article will answer all these questions and more!

We report on the Netgear RCE, provide data on the exploit, show how the exploit works in practice, and speculate on vulnerability still persist in the wild.

All users on the CrowdSec Console can now subscribe their instances to third-party blocklists cherry-picked by our expert team. With these 14 blocklists, including 3 premium ones, you can secure your systems against VoIP fraud, botnets, and more.

Scenarios are core elements of the CrowdSec detection engine and enable it to recognize suspicious behavior as well as make a decision on whether to block an IP. Discover how to modify existing scenarios, and help make the community safer by creating new ones.

COO Laurent Soubrevilla took a gamble when he started CrowdSec with the other founders but made sure to make all the right decisions to ensure it would withstand the challenges of 2022 and 2023. In this article, he shares the story, strategy, and takeaways from launching an open-source and collaborative software company in the field of cybersecurity.

There are not many FOSS security tools available for Windows servers, but CrowdSec has made the move to change that. Offering a free tool to keep your Windows servers secure, you gain much more than protection with CrowdSec. Let’s dive into the benefits and take a closer look in this article.

You can now integrate CrowdSec CTI into your XSOAR and XSIAM platforms, freeing up time spent investigating each unwanted behavior. Your SOC team will have access to highly accurate and centralized IP reputation data built from a global community of real users, spread across 178 countries.

Bennet also works at Esyoil where they are actively using CrowdSec in their production environment as he will explain in the interview. Actually, Bennet first reached out to us with suggestions for improvement but then ended up liking CrowdSec so much that he enrolled as an ambassador. We’re very happy about that and for everything, […]

We were so lucky to get an interview with early CrowdSec supporter and contributor of the CrowdSec Traefik bouncer Fabien Bonalair. The Traefik bouncer empowers existing Traefik Proxy users to mitigate security threats from attackers directly in Traefik. Obviously, this is terrific – especially in a K8s environment where blocking traffic using a host firewall […]