> crowdsec
Protect servers with CrowdSec collaborative security. Use when a user asks to block malicious IPs, detect brute force attacks, protect web servers, or set up a community-driven firewall and intrusion detection system.
curl "https://skillshub.wtf/TerminalSkills/skills/crowdsec?format=md"CrowdSec
Overview
CrowdSec is an open-source, community-driven security engine. It detects attacks (brute force, DDoS, scans) by analyzing logs and shares threat intelligence with the community. Think fail2ban but collaborative and modern.
Instructions
Step 1: Install
curl -s https://install.crowdsec.net | sudo bash
sudo apt install crowdsec crowdsec-firewall-bouncer-iptables
Step 2: Configure Collections
# Install detection scenarios
sudo cscli collections install crowdsecurity/nginx
sudo cscli collections install crowdsecurity/sshd
sudo cscli collections install crowdsecurity/linux
sudo cscli collections list
Step 3: Monitor
sudo cscli decisions list # blocked IPs
sudo cscli alerts list # alerts
sudo cscli metrics # statistics
Step 4: Docker Deployment
# docker-compose.yml — CrowdSec with Nginx bouncer
services:
crowdsec:
image: crowdsecurity/crowdsec
volumes:
- /var/log/nginx:/var/log/nginx:ro
- crowdsec_config:/etc/crowdsec
- crowdsec_data:/var/lib/crowdsec/data
environment:
COLLECTIONS: "crowdsecurity/nginx crowdsecurity/http-cve"
bouncer:
image: crowdsecurity/nginx-bouncer
environment:
CROWDSEC_BOUNCER_API_KEY: your-api-key
volumes:
crowdsec_config:
crowdsec_data:
Guidelines
- Free and open-source. Community shares 10M+ threat signals.
- Bouncers enforce decisions — iptables, nginx, Cloudflare, AWS WAF.
- Lower false positives than fail2ban due to community-validated intelligence.
- Console (app.crowdsec.net) provides dashboard and threat visualization.
> related_skills --same-repo
> zustand
You are an expert in Zustand, the small, fast, and scalable state management library for React. You help developers manage global state without boilerplate using Zustand's hook-based stores, selectors for performance, middleware (persist, devtools, immer), computed values, and async actions — replacing Redux complexity with a simple, un-opinionated API in under 1KB.
> zod
You are an expert in Zod, the TypeScript-first schema declaration and validation library. You help developers define schemas that validate data at runtime AND infer TypeScript types at compile time — eliminating the need to write types and validators separately. Used for API input validation, form validation, environment variables, config files, and any data boundary.
> xero-accounting
Integrate with the Xero accounting API to sync invoices, expenses, bank transactions, and contacts — and generate financial reports like P&L and balance sheet. Use when: connecting apps to Xero, automating bookkeeping workflows, syncing accounting data, or pulling financial reports programmatically.
> windsurf-rules
Configure Windsurf AI coding assistant with .windsurfrules and workspace rules. Use when: customizing Windsurf for a project, setting AI coding standards, creating team-shared Windsurf configurations, or tuning Cascade AI behavior.