Agent Mode
English
    Listing Thumbnail

    CrowdSec - Live Exploit tracker

     Info
    Sold by: CrowdSec 
    Deployed on AWS
    CrowdSec delivers real-time, crowd-powered threat intelligence, with exclusive data and automated integration, to preemptively block cyberattacks and reduce alert fatigue. Know which CVE is trendy, where, when and why in real time. Sort out noise for emergency using our API.
    4.7

    Overview

    Try agent mode
    Create proposal
    Ask question
    Open image

    Screenshot 2026-03-02 at 17.58.21

    CrowdSec Threat Intelligence offers a powerful, crowd-powered cybersecurity solution that delivers real-time, ultra-curated threat data to help organizations proactively defend against cyber attacks. Designed for security teams and IT professionals, it provides exclusive insights into malicious IPs and live exploitation activity, enabling preemptive blocking of threats before they impact your infrastructure.

    • Real-time AI-driven blocklists are updated multiple times per hour to block up to 95% of mass exploitation attempts

    • Live Exploit Tracker delivers ground-truth intelligence on active attacks and zero-day exploit visibility

    • Exclusive data sourced from a global network of over 100,000 users across 190 countries, ensuring diverse and accurate threat detection

    • Detailed indicators of compromise, including targeted URLs, payloads, and user agents for enhanced context

    • Automated integration with firewalls, CDNs, and security tools via API for seamless deployment and response automation

    • Open-source Security Engine compatible across various operating systems and infrastructures

    • Continuous updates with a 5% daily rotation of IPs to maintain up-to-date protection and reduce false positives

    CrowdSec integrates smoothly with popular platforms such as Cisco, AWS, Fortinet, Cloudflare, and iptables, as well as SIEM and SOAR tools, enabling automated enrichment and incident response. This solution not only reduces alert fatigue by up to 80% but also lowers incident response workload and server resource usage, delivering immediate operational savings.

    Empower your security operations with CrowdSecs collaborative intelligence and stay ahead of evolving cyber threats with confidence and ease.

    Highlights

    • Live Exploit Tracker provides ground-truth insights on active attacks and zero-day exploit visibility
    • Seamless API integration with firewalls, CDNs, and SIEM/SOAR tools for automated response and reduced alert fatigue
    • CVSS, EPSS, CVE, and KVE scores estimate likelihood. Live Exploit Tracker shows reality.

    Details

    Sold by
    CrowdSec 
    Categories
    Security 
    Monitoring 
    Log Analysis 
    Delivery method
    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Learn more 
    Explore multi-product solutions
    Multi-product solutions

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases
    View financing details

    Pricing

    CrowdSec - Live Exploit tracker

     Info
    View purchase options
    Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    1-month contract (1)

     Info
    Dimension
    Description
    Cost/month
    Live Exploit Tracker
    Get insights on any CVE, along with the list of IP exploiting it
    $10,416.00

    Vendor refund policy

    Please contact us at support@crowdsec.net .

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Support

    Vendor support

    For support with CrowdSec Threat Intelligence Platform, please contact us at support@crowdsec.net 

    Support is available during business hours.

    Buyers can expect help via email or through our website for general inquiries, troubleshooting, and product guidance.

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Get support

    Similar products

    CrowdSec Threat Intelligence Feed 
    By CrowdSec 
    CrowdSec delivers real-time, crowd-powered threat intelligence to preemptively block malicious IPs and reduce security alerts, enabling faster, more accurate cyber reponse, avoid fraud and identity abuses.
    View product 
    CrowdSec Security Stack (WAF & IDS) 
    By CrowdSec 
    CrowdSec Security Engine provides a real-time, collaborative WAF / WAAP & IDS. When they block an IP address that attacked the protected workloads, that IP is curated and shared with all your other servers and every other network member to further protect everyone. It leverages open-source intelligence from a global user network to protect your infrastructure and applications. The WAF and IDS are provided as FOSS, along with their detection scenarios, virtual patches, and WAF rules. The Premium SaaS console provides extra security, compliance, QoL, centralisation, reporting, data retention and multi tenancy features.
    View product 
    CrowdSec Blocklists - WAF add-on protections 
    By CrowdSec 
    CrowdSec Blocklists delivers 0 false positives, real-time, crowd-powered, ultra-curated blocklists. They proactively block malicious IPs, reduce security alerts for SOCs, and defeat IAM brute-force and fraud.
    View product 
    Crowdsec CTI API access 
    By CrowdSec 
    CrowdSec is a CTI tool leveraging crowdsourced data to identify malevolent IPs in real time worldwide. This product allows you to subscribe to CrowdSec's CTI API.
    View product 

    Customer reviews

    Leave a review 

    Ratings and reviews

     Info
    4.7
    86 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    87%
    10%
    2%
    0%
    0%
    0 AWS reviews
    |
    86 external reviews
    External reviews are from G2 .
    Samuel L.

    Fantastic software with affordable options including free. Extremely extensive library of modules.

    Reviewed on Jun 14, 2023
    Review provided by G2
    What do you like best about the product?
    It's free and given I have two start ups in pre-seed round that is a god send. It is fantastic software that I use on all my servers. From basic ssh bouncers to more complex strategies.
    What do you dislike about the product?
    The UI is really nice, but things can get a bit hairy when you start deploying more complicated bouncers. It's no longer a click and deploy experience and many bouncers I use are community submitted so documentation is hit or miss.
    What problems is the product solving and how is that benefiting you?
    It is serving as a augmentation to the base firewall and also as an IDS system for all my servers. It is easy to use that dashboard to quickly get a glance at all my nodes and their security status.
    Silvio M.

    An useful instrument for cybersecurity

    Reviewed on Jun 08, 2023
    Review provided by G2
    What do you like best about the product?
    - Easy to use.
    - Many possibilities to integrate it, defining golang bouncer scripts.
    - Collaborative cyber threat intelligence.
    What do you dislike about the product?
    - It should offer Crowdsec Web Panel, also as self-hosted service, on the server where Crowdsec is installed.
    - Missing the ability to use custom blocklists in Web Panel, with the possibility to enable only two blocklists for free users.
    - A map summarizing the attacks collected and custom alert filters would be appreciated.
    What problems is the product solving and how is that benefiting you?
    It helps me to detect and manage intrusions.
    Joe L.

    Easy to install and configure crowd powered fail2ban

    Reviewed on Jun 08, 2023
    Review provided by G2
    What do you like best about the product?
    Simple to install and configure.
    Web gui shows useful stats and lookup for bad ip addresses.
    Running CrowdSec will help add to the community block list
    What do you dislike about the product?
    The most useful blocklist like the VPN list is paywalled.
    Pricing is a mystery.
    What problems is the product solving and how is that benefiting you?
    Blocks most bots and bad actors on all services on the server
    Rei B.

    It's a real life-saver in terms of hosting stuff

    Reviewed on Jun 07, 2023
    Review provided by G2
    What do you like best about the product?
    What I love about it is it's open source nature. By parsing logs you can block bad actors just like you would with fail2ban - but with grok patterns which are way easier to write and implement. New parsers are easily constructed and it's really easy to keep a ton of bad traffic out of your network.
    What do you dislike about the product?
    A bad thing about it is that you'd have to get a premium subscription in case you want more 'signals' than you share. Mostly ssh and http scenarios do although cover most of your bases.
    What problems is the product solving and how is that benefiting you?
    Crowdsec itself saves me a lot of CPU load by keeping nasty IP addresses at bay. I had a 15% load decrease on the hypervisor which may not sound like much. In my case it was around the CPU power that a complete Linux VM would need.
    Miroslav G.

    A simple yet brilliant idea.

    Reviewed on Jun 07, 2023
    Review provided by G2
    What do you like best about the product?
    Simple installation and usage. Supports most applications from the start.
    A web (cloud) console. Ability to import more IPs to block and export.
    What do you dislike about the product?
    The console has little control over the agents. I'd like it to be more usable.
    Ability yo control more aspects of the agent. Ability to customize block lists (for example ability to download from specific source)
    What problems is the product solving and how is that benefiting you?
    Managing blocklists via a simple interface and providing basic security abilities for free.
    Creating a blocklists for firewalls like pfSense, Fortigate and such.
    View all reviews