Crowdsec: send logs to Elasticsearch (ELK)

In this tutorial, I will explain how to send decision logs to Elasticsearch (ELK) so that you can create a dashboard to use the logs. What you need to achieve what described in the tutorial: Crowdsec version 1.2.x or higher an Elasticsearch server or an ELK stack Since version 1.2 of Crowdsec, a notification system …

Read more

Crowdsec: protecting Windows servers

In a previous tutorial, I explained how to protect your Linux servers with Crowdsec in order to block “malicious” traffic. For almost 2 months now, the Crowdsec version has been available for Windows. If you are not yet familiar with Crowdsec, here is a brief presentation: Crowdsec will analyze different log files (Web, firewall, SSH, …

Read more