AiP Defense is described as 'Your Microsoft Windows servers are probably under constant attack and you may not even know it! Chances are if your hosting remote desktop, or other services such as Microsoft exchange, FTP, HTTP, HTTP’s or SQL. Your server is likely getting bombarded with failed login attempts' and is a Firewall in the security & privacy category. There are more than 10 alternatives to AiP Defense for Windows, Linux, Web-based and Self-Hosted. The best AiP Defense alternative is Fail2ban, which is both free and Open Source. Other great apps like AiP Defense are IPBanPro, Denyhosts, RdpGuard and SpyLog.
Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits, etc. Generally Fail2Ban is then used to update firewall rules to reject the IP addresses for a specified amount of time...
IPBan is a FREE and open source application that allows auto banning ip addresses from failed login attempts. Many sources are watched such as SSH, SMTP, SQL-Server, MySQL, RDP and dropped packets.
The idea of denying access to SSH servers is nothing new and I was inspired by many other scripts that I discovered. However, none of them did things the way I envisioned them to. Also, they were all shell scripts which do not offer the elegance of Python.
RdpGuard allows you to protect your Remote Desktop (RDP) from brute-force attacks by blocking attacker's IP address. Fail2Ban for Windows.
IPQ BDB filtering is done by a user space netfilter daemon that issues verdicts after looking up the IP address in a Berkeley DB. The fuzzy blocking model, freely inspired by STOCKADE, is designed to block non-distributed dictionary attacks and mitigate spam.
Out-of-the-box security for Remote Deskop, Exchange, OWA, SharePoint, CRM, generic IIS applications and many other server systems.
Protected against RDP-Brute forcers. It installs a service which scans the event log for anomalies every 30 seconds (by default).
Built to react fast in server farms environments (ISPs, HSPs, organisations...) Hookem-Banem is a log monitoring system which monitors logs being sent to a central server (syslog, file...) and on detection of malicious intent (repeated login failures, many failed RCPT commands...
win2ban is a Fail2ban implementation for Windows systems. It is a packaging of Fail2ban, Python, Cygwin, Winlogbeat and many other related tools to make it a complete and ready-to-use solution for brute-force attack protection.
mobileFX Spartan RDP Guard is an intrusion detection system (IDS) and host-based intrusion prevention system (HIPS) implemented as a Windows 64-bit or 32-bit Service with location-based attack reporting and instant notifications.
Syspeace automatically blocks brute force attacks primarily for Windows Servers with good information in the admin mils telling you DNS names, country of origin and username used for the attack.
United States
Germany
EU
Norway
United Kingdom