Threats Blocked by CrowdSec

Live production view of automated threat detection and fleet-wide enforcement across beane.me.

📊 Recent CrowdSec Bans

Timestamp

IP Address

Scenario

Detected On

Scope

2026-03-07 21:23

199.45.154.137

protocol-mismatch

Ares

Fleet

2026-03-07 20:53

74.243.251.125

Multiple (2)

Fleet

2026-03-07 20:29

93.123.109.62

crowdsecurity/http-open-proxy

Ares

Fleet

2026-03-07 19:17

51.68.107.138

crowdsecurity/http-bad-user-agent

Triton

Fleet

2026-03-07 18:33

169.150.203.195

Iris

Fleet

2026-03-07 18:17

20.100.177.179

Triton

Fleet

2026-03-07 16:59

114.232.36.39

crowdsecurity/http-cve-2021-41773

Ares

Fleet

2026-03-07 16:51

4.204.200.32

+18

Multiple (3)

Fleet

Scenario	Category	Hits	Last Seen
webshell-high-confidence	post-exploitation	1	2026-03-07 16:51
php-known-backdoor	web-exploitation	1	2026-03-07 16:51
wordpress-probe	web-exploitation	1	2026-03-07 16:51
wp-obscure-path-backdoor	web-exploitation	1	2026-03-07 16:51
wp-sensitive-paths	web-exploitation	1	2026-03-07 16:51
wp-obscure-nested-php	web-exploitation	1	2026-03-07 16:51
wp-nested-backdoor	web-exploitation	1	2026-03-07 16:51
crowdsecurity/http-admin-interface-probing	reconnaissance	1	2026-03-07 16:51
crowdsecurity/http-probing	other	1	2026-03-07 16:51
php-obscure-path-backdoor	web-exploitation	1	2026-03-07 16:51
crowdsecurity/http-wordpress-scan	web-exploitation	1	2026-03-07 16:51
webshell-probe	post-exploitation	1	2026-03-07 05:57
php-backdoor-generic	web-exploitation	1	2026-03-07 05:57
generic-backdoor-detection	other	1	2026-03-07 05:57
php-suspicious-name	web-exploitation	1	2026-03-07 05:57
php-any-suspicious	web-exploitation	1	2026-03-07 05:57
crowdsecurity/http-crawl-non_statics	other	1	2026-03-07 05:57
mgmt-path-probe	reconnaissance	1	2026-03-06 12:25

2026-03-07 16:46

51.68.107.154

crowdsecurity/http-bad-user-agent

Iris

Fleet

2026-03-07 16:29

204.76.203.25

suspicious-probe

Argus

Fleet

2026-03-07 16:07

20.205.120.43

+10

Triton

Fleet

2026-03-07 15:31

185.93.89.110

suspicious-probe

Zephyrus

Fleet

2026-03-07 15:31

20.214.142.73

Triton

Fleet

2026-03-07 15:13

176.65.148.74

crowdsecurity/http-open-proxy

Ares

Fleet

2026-03-07 15:10

158.94.211.102

protocol-mismatch

Ares

Fleet

2026-03-07 14:48

2602:80d:1006::6e

protocol-mismatch

Ares

Fleet

2026-03-07 14:26

205.210.31.197

protocol-mismatch

Ares

Fleet

2026-03-07 13:23

167.172.76.200

Triton

Fleet

2026-03-07 13:00

159.195.42.18

suspicious-probe

Triton

Fleet

2026-03-07 12:32

18.97.26.7

protocol-mismatch

Ares

Fleet

2026-03-07 11:51

46.105.39.49

crowdsecurity/http-bad-user-agent

Iris

Fleet

2026-03-07 11:01

44.204.154.217

crowdsecurity/http-cve-probing

Vault

Fleet

2026-03-07 10:59

154.47.31.5

Triton

Fleet

2026-03-07 10:15

185.193.156.145

Triton

Fleet

2026-03-07 10:09

116.240.149.7

crowdsecurity/http-bad-user-agent

Ares

Fleet

Top Troublemaker Today

4.204.200.32

18 scenarios

Community Defense

13772+

0 reported today
Last: 136.117.160.203

View AbuseIPDB Profile →

Public Threat Intelligence API

GET https://threats.beane.me/api

Machine-readable feed of recent CrowdSec decisions.

Updated automatically · Rate limited · No authentication required

View raw JSON →

Defense Summary

Active detection via CrowdSec scenarios
Brute force protection via Fail2Ban
Real-time IP logging and manual subnet bans
Hardened environment deployed on NGINX