FastNetMon is a very high performance DDoS detector built on top of multiple packet capture engines: NetFlow, IPFIX, sFlow and SPAN/port mirror.
It could detect malicious traffic in your network and immediately block it with BGP blackhole or BGP flow spec rules.
It has solid support for all top network vendors and has unlimited scalability due to flexible design.
You could integrate FastNetMon into any existing network without any changes and additional hardware!
DataDome might be a bit more popular than FastNetMon. We know about 4 links to it since March 2021 and only 3 links to FastNetMon. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
If you have a BGP peering with you ISP/upstream provider, ask them if they have a blackhole community you can broadcast to. Usually they are ASN:666. The only downside is you would only be able to advertise your IP address to that, essentially killing your internet (if that's your only IP) as long as the block is up. We usually set our filter to 15 minutes and most attackers give up after that. At this level, you... Source: 11 months ago
Have you looked at fastnetmon ? It's freemium and It looks like the commercial version would work you, but I think the community edition is aslo worth a look. It's primary function is to detect DDOS attacks, but it can export data in ways that might be useful to you. Source: almost 2 years ago
To mitigate DoS attacks means you need information - preferably before the users start screaming. Running sampling on your edge router with something like Fastnetmon will give you alerting of a probable DDoS attack before it becomes a significant problem. Source: over 2 years ago
I think part of the problem is the SS bypass function is just not great. Another part might be not having everything whitelisted that needs to be. For example, using the NoScript browser plugin I can see that this webpage right here attempts connections to reddit.com, redditmedia.com, redditstatic.com, datadome.co, google.com and sentry.io. Source: over 1 year ago
We have AWS enterprise support, after weeks of trying to mitigate with WAF under the direction of AWS, they finally recommended DataDome to us (via AWS MarketPlace) and admitted that Shield/WAF isn't as advanced as their solution. Source: almost 2 years ago
There are specialized products like https://datadome.co/ (disclaimer: I know them) which are specialized in bot protection, they're probably too expensive for a personal use but maybe you can try reaching their support to see if there'd be a way to get it cheap for personal use. Source: over 2 years ago
DataDome | NYC / Paris | Full Time | Onsite or Remote https://datadome.co https://docs.datadome.co/ Bot hunters is a full time job! With our SaaS cybersecurity technology, we detect and manage non-human traffic in real-time to protect our clients’ websites and APIs. Named as a Strong Performer by Forrester, DataDome is a growing cybersecurity pioneering in bot detection and protection for content publishers,... - Source: Hacker News / almost 3 years ago
Andrisoft WanGuard - DDoS protection software solution for networks. Attacks detected by NetFlow,NetStream,sFlow,jFlow,IPFIX,Port Mirroring and mitigated with firewall filters
GeeTest CAPTCHA - GeeTest protects your websites, mobile Apps and APIs from bot threats.
NetVizura NetFlow Analyzer - NetFlow Analyzer is a solution for bandwidth monitoring and traffic analysis. It helps with traffic investigation, analysis and reporting
MTcaptcha - Enterprise Captcha solutions
Arbor - Easily manage product development
hCaptcha - Do you use a captcha to keep out bots? hCaptcha is a drop-in replacement for reCAPTCHA that earns website owners money and helps companies get their data labeled.