sysadmin
The Kubernetes and Cloud Native Manager - an extensible developer platform.
A self-service engineering platform, Meshery, is the open source, cloud native manager that enables the design and management of all Kubernetes-based infrastructure and applications (multi-cloud). Among other features, As an extensible platform, Meshery offers visual and collaborative GitOps, freeing you from the chains of YAML while managing Kubernetes multi-cluster deployments.
Exosphere offers aggregated patch and security update reporting as well as basic system status across multiple Unix-like hosts via SSH.
Exosphere is a CLI and Text UI driven application that offers aggregated patch and security update reporting as well as basic system status across multiple Unix-like hosts over SSH.
It is targeted at small to medium sized networks, and is designed to be simple to deploy and use, requiring no central server, agents and complex dependencies on remote hosts.
A time traveling resource monitor for modern Linux systems.
below is an interactive tool to view and record historical system data.
A curated list of amazingly awesome open source sysadmin resources.
Yet another docker compose manager for homelabs.
Dockman is a tool designed to simplify the management of Docker Compose files, particularly for homelab environments. It provides a straightforward way to edit, track, and back up your compose configurations.
Related contents:
Winget-Repo is a local, private repository for Winget.
Winget-Repo Winget-Repo is a private repository for the Windows Package Manager (Winget), designed to provide software and updates within local networks without internet access. It allows centralized management and efficient installation and updating of software on multiple Windows clients.
Easily manage your Caddy2 servers using a modern web UI, built on the MEVN stack (MongoDB, Express, Vue, Node.js).
Top-Rated Web-based Linux Server Management Tool.
🔥 1Panel provides an intuitive web interface and MCP Server to manage websites, files, containers, databases, and LLMs on a Linux server.
An automated system install and image customization tool for when PXE is not an option, or is not an option yet.
It's an automated system install and image-creation tool for situations where provisioning machines via a PXE server is not an option, or is not an option yet. It's ideal for small-scale greenfielding, proofs-of-concept, and general management of on-prem compute infrastructure in a cloud-native way without the cloud.
All-in-One Network Monitoring Software.
Related contents:
A modern web application for viewing and interacting with Docker container ports. Built with TypeScript, React, and Material-UI, it provides a user-friendly interface to manage and access your Docker containers.
Dashboard to manage your entire server infrastructure.
The only dashboard you'll ever need to manage your entire server infrastructure. Keep all your server data organized in one central place, easily add your self-hosted applications with quick access links, and monitor their availability in real-time with built-in uptime tracking. Designed for simplicity and control, it gives you a clear overview of your entire self-hosted setup at a glance.
a network diagnostic tool.
Trippy combines the functionality of traceroute and ping and is designed to assist with the analysis of networking issues.
The last bastion
Secure access to your internal SSH, HTTPS, MySQL and Postgres servers with SSO and RBAC.
- [Warpgate @ GitHub]{https://github.com/warp-tech/warpgate).
Simple yet powerful Traefik manager, enhanced with advanced features.
Mantræ is a user-friendly web interface designed to simplify the management of Traefik's dynamic configurations. Similar to Nginx Proxy Manager (NPM), this application allows you to manage your dynamic Traefik configuration from the comfort of a simple web ui.
Mantrae provides an intuitive UI for managing Traefik routers, middlewares, and DNS entries, making setup and configuration straightforward.
OPNManager is a streamlined, user-friendly application designed to simplify the management of OPNsense firewalls. Built with Tauri and SvelteKit, this cross-platform app provides an intuitive interface for users who need a more simplified alternative to the standard OPNsense web interface.
OpenRegex is a simple, self-hosted, web-based regular expression (regex) tester and debugger.
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available.
Most of the time when you are using a public network, you are behind some kind of firewall or proxy. One of their purpose is to constrain you to only use certain kind of protocols and consult only a subset of the web. Nowadays, the most widespread protocol is http and is de facto allowed by third party equipment.
Wstunnel uses the websocket protocol which is compatible with http in order to bypass firewalls and proxies. Wstunnel allows you to tunnel whatever traffic you want and access whatever resources/site you need.
Related contents:
A ssl/ssh multiplexer.
Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port).
sslh accepts connections on specified ports, and forwards them further based on tests performed on the first data packet sent by the remote client.
Probes for HTTP, TLS/SSL (including SNI and ALPN), SSH, OpenVPN, tinc, XMPP, SOCKS5, are implemented, and any other protocol that can be tested using a regular expression, can be recognised. A typical use case is to allow serving several services on port 443 (e.g. to connect to SSH from inside a corporate firewall, which almost never block port 443) while still serving HTTPS on that port.
Related contents:
Corkscrew is a tool for tunneling SSH through HTTP proxies, but... you might find another use for it.
Related contents:
Stealth tunneling through HTTP(S) proxies.
This is proxytunnel, a program that connects stdin and stdout to an origin server somewhere in the Internet through an industry standard HTTPS proxy. I originally wrote this program to be used as an extension to SSH, to be able to SSH to my box at home. In this file, I will describe the use with SSH. If you want to use it with some other application, feel free, and let me know!
Related contents:
opkssh is a tool which enables ssh to be used with OpenID Connect allowing SSH access management via identities like alice@example.com instead of long-lived SSH keys. It does not replace ssh, but rather generates ssh public keys that contain PK Tokens and configures sshd to verify the PK Token in the ssh public key. These PK Tokens contain standard OpenID Connect ID Tokens. This protocol builds on the OpenPubkey which adds user public keys to OpenID Connect without breaking compatibility with existing OpenID Provider.
Related contents:
Run a cloud exit assessment on your infrastructure to gain insights into the challenges and constraints of a potential cloud exit.
cloudexit is an open-source tool that empowers cloud engineers to conduct comprehensive cloud exit assessments. It helps identify and evaluate the risks associated with their cloud environment while providing actionable insights into the challenges and constraints of transitioning away from their current cloud provider. By leveraging EscapeCloud Community Edition, organizations can better prepare for a potential cloud exit, ensuring a smoother and more informed decision-making process.
A memory safe implementation of sudo and su.
A safety oriented and memory safe implementation of sudo and su written in Rust.
Related contents:
Termix is an open-source forever free self-hosted server management panel.
Termix is an open-source forever free self-hosted SSH (other protocols planned, see Planned Features) server management panel inspired by Nexterm. Its purpose is to provide an all-in-one docker-hosted web solution to manage your servers in one easy place. I'm using this project to help me learn React, Vite, and Docker but also because I could never settle on a server management software that I enjoyed to use.
Related contents:
A curated list of amazingly awesome open-source sysadmin resources.
Network Top -- Help you monitor network traffic with bpf.
netop is a terminal command line interface that can customize the
network traffic bpf filter rule 🎯.
Related contents:
Wireshark forDocker containers. See all incoming and outgoing requests in Docker containers with just one command.
Subtrace is Wireshark for your Docker containers. It lets developers see all incoming and outgoing requests in their backend server so that they can resolve production issues faster.
AADInternals is PowerShell module for administering Azure AD and Office 365.
The only cheat sheet you need. Unified access to the best community driven documentation repositories of the world.
Related contents:
Run sequential command(s) on a group of SSH servers.
SSH Commander is a powerful, colorful command-line tool for executing commands across multiple SSH servers simultaneously. It supports both password and key-based authentication, custom ports, and can execute both single commands and command files.
A Community Legacy in Memory of @tteck.
Proxmox VE Helper-Scripts is a collection of tools to simplify the setup and management of Proxmox Virtual Environment (VE). Originally created by tteck, these scripts are now continued by the community. Our goal is to preserve and expand upon tteck's work, providing an ongoing resource for Proxmox users worldwide.
Stratoshark lets you explore and analyze applications at the system call level using a mature, proven interface based on Wireshark.
Related contents:
List system USB buses and devices. A modern cross-platform lsusb that attempts to maintain compatibility with, but also add new features.
Related contents:
NumEcoEval est une solution permettant de calculer l’empreinte environnementale d'un système d'information. Le système d'information est défini comme l'ensemble des équipements physiques, des machines virtuelles et des applications gérés par une organisation.
Control panel to Start/Stop/View Logs for apps in Docker, Systemd, VMs or anything else (with user scripts).
TUI for journalctl, file system logs, as well Docker and Podman containers for quick viewing and filtering with fuzzy find, regex support (like fzf and grep) and coloring the output, written in Go with the gocui library.
Terminal user interface for journalctl, file system logs, as well Docker and Podman containers for quick viewing and filtering with fuzzy find, regex support (like fzf and grep) and coloring the output, written in Go with the awesome-gocui (fork gocui) library.
Coriolis® is the simplest way to migrate Windows or Linux virtual machines alongside their associated storage and networking configurations across multiple cloud platforms.
Related contents:
Near-live migration toolkit for VMware to OpenStack.
Migratekit is a CLI tool which can help you to migrate your virtual machines from VMware to OpenStack in a near-zero downtime. The goal of this project is to allow you to move as much data as possible online and only have a short downtime window to complete the migration.
Related contents:
Authentication, authorization, traceability and auditability for SSH accesses.
A so-called bastion is a machine used as a single entry point by operational teams (such as sysadmins, developers, devops, database admins, etc.) to securely connect to other machines of an infrastructure, usually using ssh.
The bastion provides mechanisms for authentication, authorization, traceability and auditability for the whole infrastructure.
Related contents:
Graphical Management for Kea DHCP.
Stork is an open source ISC project providing a monitoring application and dashboard for ISC Kea DHCP and (eventually) ISC BIND 9. A limited configuration management for Kea is available and is expected to grow substantially in the near future.
Stork provides a web-based graphical interface for monitoring, troubleshooting, and maintaining the configuration of, Kea DHCP servers. Stork provides a single point for administrative control for your Kea servers, including integration with LDAP for administrator authentication and authorization. The graphical interface makes it possible for network administrators to easily make configuration updates to the DHCP service without having to struggle with unfamiliar CLI.
Related contents:
Fast SNMP Scanner.
onesixtyone takes a different approach to SNMP scanning. It takes advantage of the fact that SNMP is a connectionless protocol and sends all SNMP requests as fast as it can. Then the scanner waits for responses to come back and logs them, in a fashion similar to Nmap ping sweeps. By default onesixtyone waits for 10 milliseconds between sending packets, which is adequate for 100MBs switched networks. The user can adjust this value via the -w command line option. If set to 0, the scanner will send packets as fast as the kernel would accept them, which may lead to packet drop.
Easily ask questions about your Linux, Windows, and macOS infrastructure.
Related contents:
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
An open-source guide to help you write better command-line programs, taking traditional UNIX principles and updating them for the modern day.
A Turn-key Suricata-based Network Detection and Response System. SELKS is now Clear NDR - Community
As the next generation open source turnkey Suricata implementation from Stamus Networks, the Clear NDR - Community edition is the successor to SELKS. We incorporated many lessons learned from the 10 years of SELKS innovation and user feedback into this platform.
A Kubernetes web UI that is fully-featured, user-friendly and extensible.
Headlamp was created to blend the traditional feature set of other web UIs/dashboards (i.e., to list and view resources) with added functionality.
CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code .
Manage your kubeconfig more easily.
List, switch, add, delete and more interactive operations to manage kubeconfig. It also supports kubeconfig management from cloud.
SOFA supports MacAdmins by efficiently tracking and surfacing information on updates for macOS and iOS.
SOFA supports MacAdmins by efficiently tracking and surfacing information on updates for macOS and iOS.
PostgreSQL Remote Control.
temBoard is a powerful management tool for PostgreSQL. It allows to observe, optimize, or configure PostgreSQL instances.
These scripts empower users to create a Linux container or virtual machine interactively, providing choices for both simple and advanced configurations. The basic setup adheres to default settings, while the advanced setup gives users the ability to customize these defaults.
Network Analysis & Packet Capture. It's amazing what you discover when you start looking.
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
Open-source best practices for protecting a secure, sensible cloud platform.
Your Quick Reference to Cloud Best Practices. An open-source collection of cloud infrastructure best practices, for bootstrapping your own cloud platform.
🤖 CLI AI Assistant
A simple command-line AI assistant that translates natural language into shell commands. Supports all Windows and Unix-based systems (Linux, MacOS).
Multi-vendor library to simplify Paramiko SSH connections to network devices.
Network automation to screen-scraping devices is primarily concerned with gathering output from show commands and with making configuration changes.
Netmiko aims to accomplish both of these operations and to do it across a very broad set of platforms. It seeks to do this while abstracting away low-level state control (i.e. eliminate low-level regex pattern matching to the extent practical).
Simple way to manage your remote machines and SSH keys.
Bare metal servers are awesome. They let you pick where to run your software and how to deploy it. You get full control to make the most of the server's resources. No limits, no compromises. That's real freedom.
Viking makes it easier to work with them.
Manage Kubernetes in style.
JET Pilot is an open-source Kubernetes desktop client that focuses on less clutter, speed and good looks.