Server access, reimagined.
From authentication to monitoring—everything your team needs, out of the box.
Leave security worries behind.
Every interaction is protected—from your first login to your monthly monitoring report. Zero-trust authentication, encrypted connections, granular access controls, and automated security audits, so you can focus on what matters.
Every interaction is protected—from your first login to your monthly monitoring report. Zero-trust authentication, encrypted connections, granular access controls, and automated security audits, so you can focus on what matters.
Secure access
Just log in like a website.
Sign in with your password and verify with MFA—then access every server you're authorised for. No SSH keys to manage, no per-server credentials. One secure identity across your entire infrastructure.
Zero open ports.
Zero attack surface.
Alpacon connects through outbound-only tunnels—no inbound ports, no VPN infrastructure. Just log in and click your server.
See how it worksManage & operate
Manage multiple servers
effortlessly. All at a glance.
See every server's status, resources, and uptime in one dashboard. Search, filter, and connect to any server with a single click.
Select. Run in batch.
Select servers, run commands, or schedule tasks—all in one go. See the results at a glance. No more repeating the same operation server by server.
Launch your terminal directly
in a web browser.
Launch a fully functional terminal with a single click, right in your browser—no installation required. Manage shell configurations centrally in Alpacon, synced automatically with your servers.
Sudo MFA Elevate privileges with MFA—no shared root passwords, full audit trail for every sudo action.
Browser-based file manager
Upload, download, and manage files on remote servers—directly in your browser. Drag and drop files, browse directories, and track every transfer.
$ alpacon tunnel prod-db -l 5432 -r 5432
✓ Tunnel active
localhost:5432 → prod-db:5432
$ psql -h localhost -p 5432 -U admin
Connected to prod-db-01.
Secure port forwardingBeta
Forward local ports to remote servers through encrypted tunnels. Access databases, internal APIs, and services without exposing ports.
Access control
Add users instantly.
Manage them by role.
Add users with one click—no per-server accounts needed. Assign workspace and group roles to control exactly who can access what. Fine-grained RBAC ensures no one gets more privileges than they need.
Grant access. Set limits. Revoke instantly.
Share sessions with time-limited links—5 to 180 minutes. Set read-only or full control, protect with a password, and revoke access instantly. No server credentials ever shared.
Stay alert. Protect your system.
Get instant alerts via email or Slack when resource thresholds are exceeded, network traffic spikes, or scheduled tasks fail. Monthly reports give administrators a clear view of system performance.
Workspace isolation
Separate environments per team or customer. Each workspace has its own servers, members, and access policies—fully isolated with independent billing and audit trails.
Approval workflows
When a user without sudo privileges runs a privileged command, the request is routed to a manager or superuser for approval. Every request is logged with full context.
Security & compliance
Every session. Recorded. Searchable.
Every terminal session is automatically recorded—commands, file transfers, and user activity. Search and replay any session instantly for audits, incident response, or team onboarding. Full compliance-ready audit trails without any manual setup.
AI-powered threat detection.Beta
Each session is analysed with an AI-driven risk score. Suspicious patterns are mapped to MITRE ATT&CK techniques, attack chains are detected within each session, and a visual timeline helps you understand exactly what happened—and when.
Developer tools
Enjoy Alpacon CLI for diverse environments.
Access servers, transfer files, and run commands from your terminal. Alpacon CLI mirrors the full web experience—shell sessions, file operations, and batch commands—all from the command line.
Securely automate CI/CD with fine-tuned tokens.
Create tokens with predefined command sets to control exactly which actions can be executed. Integrate our Docker image into your CI/CD pipeline and authenticate securely.
# Token policy
server: prod-web-*
user: deploy
commands:
docker compose pull
docker compose up -d
Let AI operate your servers.Beta
Operate servers with natural language from Claude, Cursor, or VS Code. Powered by MCP (Model Context Protocol), alpacon-mcp gives AI agents token-authenticated access to your infrastructure—scoped by the same ACL rules as any user.
Real-time alerts. Delivered anywhere.
Send event notifications to any HTTP endpoint as JSON—server disconnections, security alerts, and more. Connect to Slack, monitoring tools, or your own automation.
POST hooks.slack.com/…
{ "username": "alpacon",
"text": "*Command Denied*\\n
rm -rf / on prod-db-01" }
Need IP management, DNS, or a private CA?