v1.5 — 7 plugins, 2FA, 100+ machines

Monitor your Linux servers in real time

Centralized security log collection, automatic threat detection, smart banning and a full dashboard.
Lightweight, self-hosted, no external dependencies.

Open the dashboard Install an agent
19
Monitored machines
4.2M
Collected events
5.3k
Banned IPs
7
Available plugins

Everything you need to secure your servers

A complete system for detection, analysis and automatic response

Smart auto-ban

Rules configurable per attack type. Ban graduation, repeat offenders, permanent ban. Reduced thresholds for Tor/VPN and malicious ranges.

IP reputation

Score 0-100 across 3 axes: aggressiveness, diversity, persistence. Reputation per /24 range and AS. Noise vs targeted classification.

7 modular plugins

SSH, HTTP, FTP, SMTP, MySQL, PAM, Firewall. One-command install. 1080+ CrowdSec patterns.

Real-time dashboard

Geographic map, statistics, charts, advanced filters. Dark theme. CSV/JSON export.

Notifications

Email, Telegram, Webhook. Interactive bot with 8 commands. Anti-flood cooldown. Configurable triggers.

External blocklists

Automatic import from Firehol, Blocklist.de, Spamhaus, Tor. Ban enrichment. Export API in 8 formats.

Hardened security

2FA TOTP, CSRF, rate limiting, anti-SSRF, AES-256-GCM, HSTS/CSP headers. Full audit applied.

Scales to 100+ machines

Batch INSERT, optimized indexes, persistent connections, flock-protected crons. Production ready.

Plugins

Each plugin monitors a specific service and reports events to the central server

SSH
Brute force, invalid users
HTTP
Apache/Nginx, CVE, WordPress
FTP
vsftpd, proftpd, pure-ftpd
SMTP
Postfix, Exim, Sendmail
MySQL
MariaDB, auth, injections
PAM
sudo, su, cron, privileges
Firewall
iptables auto-ban

Installation in 2 commands

Deploy on a new machine in under a minute — with automatic approval

# 1. Install the agent (replace VOTRE_CLE with your enrollment key) curl -sSL https://bigbro.gergosnet.com/client/install.sh | sudo bash -s -- --key VOTRE_CLE
# 2. Install all plugins curl -sSL https://bigbro.gergosnet.com/client/update_plugins.sh | sudo bash
Your enrollment key is available in My profile on the dashboard.
It enables automatic approval — no admin action required.
Compatible with Debian 8+ to 13+, Ubuntu, RHEL, CentOS  ·  ARM and x86_64  ·  Python 3.5+
View the full documentation →

Ready to secure your servers?

Sign in to the dashboard to start monitoring your machines.

Open the dashboard