Search Results

The AppSec engine works as WAF analyzing traffic and blocking malicious activity based and on the predefined rule set of known attack vectors. Installing the ruleset cscli collections install crowdsecurity/appsec-virtual-patching crowdsecurity/appsec-generic...

All the reports can be seen in the CrowdSec Alerts console

Don't forget to add a cronjob to update the signatures touch /usr/local/sbin/waf-update.sh chmod +x /usr/local/sbin/waf-update.sh nano -w /usr/local/sbin/waf-update.sh #!/bin/sh cscli appsec-rules upgrade -a --force crontab -u root -e 5 5 * * 0 /u...

More details here nano -w /etc/fail2ban/jail.local [nginx-bad-request] enabled = true port = http,https filter = nginx-bad-request logpath = %(nginx_error_log)s [nginx-botsearch] enabled = true port = http,https filter = nginx-botsearc...