crowdsecurity/crowdsec — reverse-engineered prompt
Reverse engineered prompt
Build me an open source security tool for servers and apps that can watch logs and HTTP requests, figure out when someone is doing things like brute force attempts, port scans, or web scans, and then automatically block or remediate those bad IPs. I want it to use a crowdsourced community blocklist too, so it can proactively stop known malicious addresses and also share useful signals back to the wider network.
Please make it feel like an all in one security engine with sensible defaults, but still easy to extend with more detection scenarios from a hub and custom rules later. It should support the idea of analyzing events in one place and enforcing blocks in another place across app, system, or infrastructure layers. A simple console or monitoring view for alerts, decisions, and overall security status would be great.
It should be installable on common environments like Linux and containers, with decent docs, tests, and packaging so someone can get started quickly. Feel free to check the current docs online if needed.
Want more depth? Deep Reverse