Skip to content

kastelldev/kastell

Server & OS Management

Server security auditing and hardening toolkit. 413 security checks across 29 categories (SSH, Firewall, Docker, TLS, HTTP Headers), CIS/PCI-DSS/HIPAA compliance mapping, 19-step production hardening, fleet management, and forensic evidence collection. Supports Hetzner, DigitalOcean, Vultr, and Linode. 13 MCP tools.

Track releases GitHub Website
TypeScript Latest v2.2.7 · 18d ago Security brief →

Features

  • Unified CLI for auditing, auto‑fixing, hardening and continuous monitoring of servers
  • Built‑in MCP server enabling AI agents (Claude, Cursor, etc.) to manage infrastructure directly
  • Interactive menu guiding users through deployment, security checks, backups and maintenance without memorizing commands

Recent releases

View all 37 releases →
No immediate action
v2.2.7 Bug fix

Plugin manifest sync fix

Open
No immediate action
v2.2.6 Bug fix

Windows lock recovery

Open
No immediate action
v2.2.5 Breaking risk

Price field type change

Open
Upgrade now
v2.2.4 Breaking risk
Auth

MCP structured content + shared schemas

Open
Config change
v2.2.0 New feature
Auth Breaking upgrade

Plugin ecosystem

Open

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
53
Forks
2
Languages
TypeScript JavaScript Shell
Downloads/week
694 ↑383%
NPM Maintainers
1 Single npm maintainer
Contributors
3
TypeScript
Types included ✓
View on GitHub View on npm Homepage

Install & Platforms

Install via
npm
Platforms
linux

Similar tools

vito
girste/mcp-cybersec-watchdog
Tanstack Compromise Checker
gebalamariusz/cloud-audit
smith-and-web/obsidian-mcp-server

Alternative to

Lynis OpenSCAP

Beta — feedback welcome: [email protected]