Threats Blocked by CrowdSec

Live production view of automated threat detection and fleet-wide enforcement across beane.me.

📊 Recent CrowdSec Bans

Timestamp

IP Address

Scenario

Detected On

Scope

2026-02-26 21:49

20.104.124.39

Triton

Fleet

2026-02-26 20:43

45.148.10.238

Zephyrus

Fleet

2026-02-26 20:08

34.158.168.101

protocol-mismatch

Ares

Fleet

2026-02-26 19:55

159.223.72.38

crowdsecurity/http-open-proxy

Ares

Fleet

2026-02-26 19:05

74.243.251.125

Triton

Fleet

2026-02-26 18:47

141.98.11.171

suspicious-probe

Triton

Fleet

2026-02-26 18:45

199.45.155.76

crowdsecurity/http-bad-user-agent

Zephyrus

Fleet

2026-02-26 18:38

152.42.200.86

crowdsecurity/http-open-proxy

Ares

Fleet

2026-02-26 18:24

165.154.206.35

protocol-mismatch

Ares

Fleet

2026-02-26 18:10

20.63.83.113

+16

Triton

Fleet

Scenario	Category	Hits	Last Seen
webshell-high-confidence	post-exploitation	1	2026-02-26 18:10
webshell-probe	post-exploitation	1	2026-02-26 18:10
php-known-backdoor	web-exploitation	1	2026-02-26 18:10
php-backdoor-generic	web-exploitation	1	2026-02-26 18:09
wp-sensitive-paths	web-exploitation	1	2026-02-26 18:09
php-obscure-path-backdoor	web-exploitation	1	2026-02-26 18:09
wp-obscure-nested-php	web-exploitation	1	2026-02-26 18:09
wordpress-probe	web-exploitation	1	2026-02-26 18:09
wp-nested-backdoor	web-exploitation	1	2026-02-26 18:09
generic-backdoor-detection	other	1	2026-02-26 18:09
php-suspicious-name	web-exploitation	1	2026-02-26 18:09
php-any-suspicious	web-exploitation	1	2026-02-26 18:09
crowdsecurity/http-crawl-non_statics	other	1	2026-02-26 18:09
php-suspicious-enum	web-exploitation	1	2026-02-26 18:09
crowdsecurity/http-wordpress-scan	web-exploitation	1	2026-02-26 18:09
crowdsecurity/http-probing	other	1	2026-02-26 18:09

2026-02-26 18:08

199.45.155.89

crowdsecurity/http-bad-user-agent

Hermes

Fleet

2026-02-26 18:03

62.210.97.98

protocol-mismatch

Ares

Fleet

2026-02-26 17:18

103.82.21.232

wp-sensitive-paths

Triton

Fleet

2026-02-26 16:48

51.68.236.93

crowdsecurity/http-bad-user-agent

Triton

Fleet

2026-02-26 16:48

139.162.186.99

Triton

Fleet

2026-02-26 15:36

197.140.29.82

crowdsecurity/http-cve-2021-41773

Ares

Fleet

2026-02-26 15:20

141.98.11.181

Iris

Fleet

2026-02-26 15:04

4.204.195.211

+11

Triton

Fleet

2026-02-26 14:55

20.205.227.70

+11

Multiple (2)

Fleet

2026-02-26 14:41

51.68.107.161

crowdsecurity/http-bad-user-agent

Iris

Fleet

2026-02-26 14:36

43.140.119.240

crowdsecurity/http-cve-2021-41773

Ares

Fleet

2026-02-26 14:05

185.91.69.217

crowdsecurity/http-cve-2021-41773

Ares

Fleet

2026-02-26 13:57

34.134.33.16

Triton

Fleet

2026-02-26 13:53

51.68.107.151

crowdsecurity/http-bad-user-agent

Iris

Fleet

2026-02-26 13:28

41.63.63.134

crowdsecurity/http-cve-2021-41773

Ares

Fleet

Top Troublemaker Today

20.63.83.113

16 scenarios

Community Defense

13772+

0 reported today
Last: 136.117.160.203

View AbuseIPDB Profile →

Public Threat Intelligence API

GET https://threats.beane.me/api

Machine-readable feed of recent CrowdSec decisions.

Updated automatically · Rate limited · No authentication required

View raw JSON →

Defense Summary

Active detection via CrowdSec scenarios
Brute force protection via Fail2Ban
Real-time IP logging and manual subnet bans
Hardened environment deployed on NGINX