Introduction
Self-hosted services exposed through a reverse proxy inevitably attract automated scanners probing for misconfigurations, admin panels, and vulnerable endpoints. In this article, I show how to turn routine Traefik access logs into an active defensive control using Elastic Security and Cloudflare.
I use an out-of-the-box ES|QL detection rule to identify web server discovery and fuzzing...
