CrowdSec is an open-source amp collaborative security solution built to secure Internet-exposed Linux services servers containers or virtual machines with a server-side agent. It is a modernized version of Fail2ban which was a great source of inspiration to the project founders.
CrowdSec is free under an MIT License and its source code available on GitHub. The solution is leveraging a log-based IP behavior analysis engine to detect attacks. When the CrowdSec agent detects any aggression it offers different types of remediation to deal with the IP behind it access prohibition captcha 2FA authentication etc.. The report is curated by the platform and if legitimate shared across the CrowdSec community so users can also protect their assets from this IP address.
A few months ago we added some interesting features to CrowdSec when releasing v1.0.x. One of the most exciting ones is the ability of the CrowdSec agent to act as an HTTP rest API to collect signals from other CrowdSec agents. Thus it is the responsibility of this special agent to store and share the collected signals. We will call this special agent the LAPI server from now on.