Fail2Ban

Intrusion prevention software. Ban IPs that show malicious signs based on log file analysis.

Visit Website★ GitHub (12K)

About Fail2Ban

Fail2Ban scans log files like /var/log/auth.log and bans IP addresses conducting too many failed login attempts. It updates firewall rules to reject the IP address for a configurable amount of time.

Key Features

Log file monitoring
Configurable ban actions
Multiple jail support
Email notifications
Whitelisting & regex filters
iptables, nftables, firewalld support

Why choose Fail2Ban?

Fail2Ban is an open source alternative to CrowdSec, DenyHosts. Licensed under GPL-2.0, it gives you full access to the source code and the freedom to modify, self-host, and contribute. You can deploy it on your own servers for complete data ownership and privacy.

Quick Info

LicenseGPL-2.0
LanguagePython
GitHub Stars★ 12K
Self-HostedYes
Alternative toCrowdSec, DenyHosts

Categories

🔒 Security & Auth🏠 Self-Hosted

Related Projects

HashiCorp Vault✓ Verified★ 31K
Secrets management and data protection. Secure, store, and control access to tokens, passwords, and keys.
Security & AuthBSL-1.1Self-Hosted
Alt: AWS Secrets Manager, CyberArkGo
Keycloak✓ Verified★ 24K
Identity and access management. SSO, social login, user federation, and fine-grained authorization.
Security & AuthApache-2.0Self-Hosted
Alt: Auth0, OktaJava
Bitwarden✓ Verified★ 16K
Password manager with zero-knowledge encryption. Free for personal use. Self-hostable.
Security & AuthGPL-3.0Self-Hosted
Alt: 1Password, LastPassC#