SpyLog Alternatives

CrowdSec is a cybersecurity automation engine, leveraging the unique combination of local IP behavior & global reputation features.

Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits, etc.

SSHGuard monitors services through their logging activity. It reacts to messages about dangerous activity by blocking the source address with the local firewall.

A FREE and open source application that allows auto banning ip addresses from failed login attempts. Many sources are watched such as SSH, SMTP, SQL-Server, MySQL, RDP and dropped packets.

The idea of denying access to SSH servers is nothing new and I was inspired by many other scripts that I discovered. However, none of them did things the way I envisioned them to. Also, they were all shell scripts which do not offer the elegance of Python.

Out-of-the-box security for Remote Deskop, Exchange, OWA, SharePoint, CRM, generic IIS applications and many other server systems.

RdpGuard allows you to protect your Remote Desktop (RDP) from brute-force attacks by blocking attacker's IP address. Fail2Ban for Windows.

Your Microsoft Windows servers are probably under constant attack and you may not even know it! Chances are if your hosting remote desktop, or other services such as Microsoft exchange, FTP, HTTP, HTTP’s or SQL. Your server is likely getting bombarded with failed login attempts.

Protected against RDP-Brute forcers. It installs a service which scans the event log for anomalies every 30 seconds (by default).

IPQ BDB filtering is done by a user space netfilter daemon that issues verdicts after looking up the IP address in a Berkeley DB. The fuzzy blocking model, freely inspired by STOCKADE, is designed to block non-distributed dictionary attacks and mitigate spam.