A fully local, interactive TUI for secure VPS management. Connect via SSH, run security audits, and benchmark your servers - all from your terminal. No cloud dependencies, no tracking. Your data stays on your machine.
- VPS Management - Add, edit, and organize multiple VPS configurations
- SSH Connect - One-click terminal sessions with saved credentials
- Security Audit - 13 comprehensive security checks (SSH, firewall, ports, etc.)
- Benchmark - System info, CPU, memory, disk I/O, and network speed tests
- Encrypted Storage - Passwords secured with AES-256-GCM + Argon2id
- Cross-Platform - Works on Linux, macOS, and Windows
npm install -g serv1xOr with pnpm:
pnpm add -g serv1x# Run directly with npx (no install needed)
npx serv1x
# Or if installed globally
serv1xThis launches the interactive TUI where you can:
- Add VPS - Register a new server with SSH credentials
- Quick Connect - One-time SSH connection without saving
- Manage Servers - View, edit, delete, or connect to saved servers
- Security Check - Run comprehensive security audit on a server
- Benchmark - Test server performance (CPU, disk, network)
Serv1x takes security seriously:
| Feature | Implementation |
|---|---|
| Password Encryption | AES-256-GCM with authenticated encryption |
| Key Derivation | Argon2id (memory-hard, GPU-resistant) |
| File Permissions | Config files secured with 600/700 permissions |
| Host Key Verification | Enabled by default to prevent MITM attacks |
| No Telemetry | Zero data collection, fully offline |
- Passwords are never stored in plain text
- Each password uses a unique random salt and IV
- Master key is stored locally with restricted permissions
- Export function strips all passwords for safe sharing
The security audit includes:
| Check | Description |
|---|---|
| Root Login | Checks if root SSH login is disabled |
| Password Auth | Verifies key-only authentication |
| SSH Port | Detects non-standard SSH port usage |
| SSH Version | Ensures up-to-date OpenSSH |
| Firewall | Checks iptables/ufw/firewalld status |
| Fail2ban | Verifies brute-force protection |
| Open Ports | Scans for exposed services |
| NOPASSWD Sudo | Detects insecure sudo configurations |
| Unattended Upgrades | Checks automatic security updates |
| SELinux/AppArmor | Verifies mandatory access control |
| Home Permissions | Checks user directory security |
| Failed Logins | Reviews recent authentication failures |
| System Updates | Checks for pending security patches |
- Node.js 18.0.0 or higher
- SSH Client installed on your system
- Linux/macOS: Pre-installed
- Windows 10+: OpenSSH included
- Build tools (for native dependencies)
- Linux:
sudo apt install python3 make g++ - macOS:
xcode-select --install - Windows: Visual Studio Build Tools
- Linux:
Config files are stored in:
- Linux/macOS:
~/.config/serv1x/ - Windows:
%USERPROFILE%\.config\serv1x\
| File | Purpose |
|---|---|
config.json |
VPS list and settings |
.masterkey |
Encryption key (600 permissions) |
known_hosts |
SSH host key verification |
# Clone the repository
git clone https://github.com/aldevvv/serv1x.git
cd serv1x
# Install dependencies
pnpm install
# Run in development mode
pnpm dev
# Build for production
pnpm build
# Run production build
pnpm start- Ink - React for CLI interfaces
- TypeScript - Type-safe development
- node-ssh - SSH connections
- node-pty - Interactive terminals
- Argon2 - Password hashing
- Conf - Config management
MIT License - see LICENSE for details.
aldevvv - @aldevvv