SISTEM DETEKSI AKTIVITAS BERBAHAYA PADA SERVER MENGGUNAKAN CROWDSEC
DOI:
https://doi.org/10.35143/jkt.v11i1.6486Keywords:
CrowdSec, CTI, Cyber, CybercrimeAbstract
The rapid development of technology has driven almost all business sectors to adopt digital operations, but this shift has also increased the risk of cybercrime, targeting systems and data. Cyber Threat Intelligence (CTI) is a cybersecurity approach that involves collecting, analyzing, and understanding data to identify the motives, targets, and attack patterns of cybercriminals. One solution to address these threats is CrowdSec, an open-source software designed to detect and prevent cyber-attacks in various environments, including servers. Testing results demonstrate that CrowdSec is effective in detecting SSH brute-force, port scanning, and SQL injection attacks. By identifying suspicious attack patterns and blocking attackers' IPs, CrowdSec significantly reduces the risk of server damage. Its response times are fast: 23 seconds for SSH brute-force, 10 seconds for port scanning, and 6 seconds for SQL injection. Compared to Fail2Ban, CrowdSec offers greater configuration flexibility and broader attack detection capabilities, supported by the CrowdSec Hub, which provides a variety of attack scenarios. With its simple installation and configuration process, CrowdSec is an ideal choice for enhancing server security.Downloads
References
K. Baker, "Types Of Cyber Attack," 9 November 2023. [Online]. Available: https://www.crowdstrike.com/cybersecurity-101/cyberattacks/most-common-types-of-cyberattacks/.
S. Parulian, D. A. Pratiwi and M. C. Yustina, "Ancaman dan Solusi Serangan Siber di Indonesia," Telecommunications, Networks, Electronics, and Computer Technologies, p. 86, 2021.
S. Danischevsky, "Fail2Ban," 1 Juni 2023. [Online]. Available: https://github.com/fail2ban/fail2ban/wiki.
M. T. S. Rendratama, P. Sukarno and A. A. Wardana, "Perancangan dan Analisis Crowdsec Sebagai Intrusion Prevention System pada Infrastruktur Server," e-Proceeding of Engineering : Vol.10, No.2, pp. 1888-1893, 2023.
U. Airlangga, "Knowledge Base Apa Itu CISRT," 2024. [Online]. Available: https://kb.dsi.unair.ac.id/?kb=cisrt-apa-itu.
H. E. Ardiyanto and T. I. Bayu, "Perancangan Security Information and Event Management (SIEM) Menggunakan Open Source SIEM (OSSIM)," Fakultas Teknologi Informasi Universitas Kristen Satya Wacana, pp. 2-5, 2018.
CrowdSec, ""Docs CrowdSec"," 2023. [Online]. Available: https://doc.crowdsec.net/.
M. H. Dar and S. Z. Harahap, "Implementasi SNORT INTRUSION DETECTION SYSTEM (IDS) Pada Sistem Jaringan Komputer," Informatika : Fakultas Sains dan Teknologi, pp. 15-18, 2018.
R. Kurniawan and B. Rahardjo, "STUDI MODEL ORGANISASI CSIRTs (COMPUTER SECURITY INCIDENT RESPONSE TEAMS) PADA PERUSAHAAN BERSKALA BESAR," Seminar Nasional Aplikasi Teknologi Informasi 2007 (SNATI 2007), 2007.
S. Lund, A. Madgavkar, J. Manyika, S. Smit, K. Ellingrud and O. Robinson, "The Future of Work after COVID-19," 18 February 2021. [Online]. Available: https://www.mckinsey.com/featured-insights/future-of-work/the-future-of-work-after-covid-19.
Y. R. Mulyadi, ""Linux Ubuntu Server"," 2023. [Online]. Available: https://www.idn.id/linux-ubuntu-server/.
M. D. Pratama, F. Nova and D. Prayama, "Wazuh sebagai Log Event Management dan Deteksi Celah Keamanan pada Server dari Serangan Dos," Jurnal Ilmiah Teknologi Sistem Informasi (jitsi), 2022.
H. R. P. Sailellah, ""Pengertian Firewall dalam Jaringan Komputer dan Jenis-Jenisnya"," 28 April 2023. [Online]. Available: https://it.telkomuniversity.ac.id/pengertian-firewall-dalam-jaringan-komputer-dan-jenis-jenisnya/.
D. Team, ""Mengenal Linux: Sistem Operasi Open Source dan Gratis"," 7 Februari 2023. [Online]. Available: https://www.dewaweb.com/blog/sistem-operasi-linux/.
Y. Yuliana, H. A. Mooduto and R. Hadi, "Deteksi Ancaman Keamanan Pada Server dan Jaringan Menggunakan OSSEC," Jurnal Ilmiah Teknologi Sistem Informasi (jitsi), 2022.
Downloads
Published
Issue
Section
License
Copyright (c) 2025 Jurnal Komputer Terapan

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
Copyright info for authors
1. Authors hold the copyright in any process, procedure, or article described in the work and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
2. Authors retain publishing rights to re-use all or portion of the work in different work but can not granting third-party requests for reprinting and republishing the work.
3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) as it can lead to productive exchanges, as well as earlier and greater citation of published work.
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License 











