Skip to content
Near-Realtime attack and abuse defence and intrusion prevention
Perl
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
build
conf
examples
lib/autoban
plugins
web
.gitignore
LICENSE
README
autoban.pl
dependencies.txt

README

             _        _                 
  __ _ _   _| |_ ___ | |__   __ _ _ __  
 / _` | | | | __/ _ \| '_ \ / _` | '_ \ 
| (_| | |_| | || (_) | |_) | (_| | | | |
 \__,_|\__,_|\__\___/|_.__/ \__,_|_| |_|
 
Because the world needs more opensource DoS/DDoS mitigation and protection 


NOTE: This project has stalled as I no longer have time to work on it and the existing code should be considered unstable.


The original version of autoban was developed at one of the internet's largest websites in order to block abuse and attacks that caused downtime. This is an attempt to rewrite that project and opensource it. 
autoban works by analyzing logs stored in elasticsearch against filters and rules then generating ban or block entries.

Inputs gather data about ip addresses
Filters determine an action to take based upon the data from inputs
Outputs take an action based upon a filter
	

Kindly see the wiki for more information: https://github.com/jjfalling/autoban/wiki


Original version and concept developed in collaboration with Kurt Hurtado (https://github.com/kurtado)
You can’t perform that action at this time.