Know your servers.
Stop the threats.
GRID::SENTINEL is a lightweight self-hosted monitoring platform. Real-time SSH attack detection, nginx error tracking, and system metrics. Deployed in minutes with a single curl command.
MIT licensed · Runs on any VPS · No cloud account required
How it works
From zero to full server visibility in under five minutes.
Deploy the hub
Run the hub on any VPS with Docker Compose. It provisions a private CA and generates certificates automatically.
Provision each server
Run make provision ID=myserver from the hub. It signs a client cert, registers the server, and prints the install command.
Watch the dashboard
Open the dashboard in any browser. Server cards appear immediately. SSH attacks and nginx errors stream live as they happen.
Everything you need.
Nothing you don't.
Built for developers and sysadmins who want real visibility without the enterprise complexity.
Real-time SSH detection
Failed passwords, invalid users, publickey failures. Captured from the systemd journal as they happen, not on a cron schedule.
Nginx error tracking
4xx and 5xx responses captured with method, path, and status. Spot abuse patterns, broken routes, and misconfigurations at a glance.
CPU / mem / disk metrics
Per-server resource snapshots on every heartbeat. History charts on click so you can see load trends before they become incidents.
mTLS by default
Each agent gets a unique client certificate signed by the hub's private CA. nginx rejects any unsigned connection. No open endpoints.
One-liner agent install
Provision a server from the hub with one command. It signs the cert, registers the server, and prints a curl command ready to paste.
Your data, your servers
The hub runs on your VPS. Data lives in SQLite on your own disk. No cloud accounts, no telemetry. Export a backup from the dashboard anytime.
Security findings kanban
Track vulnerabilities across your entire infrastructure in one board. Each finding carries a CVSS score, OWASP reference, severity, and notes. Move findings through Open, In Progress, Resolved, and Accepted Risk columns as you remediate.
Simple pricing
The core product is free forever. Pay only for the features that save you time.
Everything you need to monitor your own servers.
- Unlimited agents
- SSH attack detection
- Nginx error tracking
- CPU / mem / disk metrics
- mTLS per-agent authentication
- One-liner provisioning
- Self-hosted hub (Docker)
- 30-day event retention
- Community support
- MIT licensed
Alerting and extended retention for when it matters.
- Everything in Free
- Email alerts
- Slack alerts
- Webhook alerts
- 365-day event retention
- Security findings kanban (CVSS + OWASP + workflow)
- Priority support
- Cloud-managed hub (coming soon)
Get started in minutes
Three commands. Full visibility.
# Clone and start
git clone https://github.com/yourusername/sentinel.git
cd sentinel
docker compose up -d# Signs cert, registers server, prints install command
make provision ID=myserver
# Output:
✓ Server registered: myserver
✓ Client cert signed
→ Run on myserver:
curl -fsSL https://gridsentinel.pro/install.sh | sudo bash -s -- \
--hub https://gridsentinel.pro \
--id myserver \
--key <KEY># Paste the command from step 2 on the target server
curl -fsSL https://gridsentinel.pro/install.sh | sudo bash -s -- \
--hub https://gridsentinel.pro \
--id myserver \
--key <KEY>
✓ sentinel-agent installed and runningThen open the dashboard and watch your servers appear.
Read the full docs on GitHubBuilt by a developer, for developers
GRID::SENTINEL exists because setting up Prometheus, Grafana, and Alertmanager just to know if a VPS is down is overkill. A lightweight Python agent and a FastAPI hub is enough. It runs on hardware you control, stores data you own, and costs nothing to self-host.
The core is open-source under the MIT license. Pro adds the features that save time: alerts and longer retention, at a price that covers the infrastructure and nothing more.