Cmd was built Linux-first from the ground up, delivering best-in-class security that’s easy, intuitive, and fully integrated into modern DevOps workflows.
Enforce privileged access without disrupting your users.
Enforce privileged access without disrupting your users. In-line 2FA and real-time authorization keep users on task.
Easily identify who’s using shared and privileged accounts.
Easily identify who’s using shared and privileged accounts. Complete your audits in a fraction of the time.
Real-time threat detection based on MITRE ATT&CK.
Real-time threat detection based on MITRE ATT&CK. Easily search and review forensic data to discover what happened and why.
Designed with the modern developer in mind.
Designed with the modern developer in mind. Cmd works with popular practices and tools to be a seamless part of the DevOps experience.
Establish controls for individual commands that users can and can not execute – including root users and privileged/shared accounts – to protect sensitive data and critical actions.
Get visibility across every user and shared account action, including full command-line and server context. Easily search terminal data and identify issues to resolve.
Out-of-the-box and configurable alerts contain detailed tracking of users, processes, files and netcons, notifying you in real-time of MITRE ATT&CK techniques or other abnormal behavior.
Guaranteed user attribution for every action, even when using a shared, privileged, or root account. In-line integration with a variety of 2FA providers for strong authentication.
Require authorization in real-time for sensitive commands or file modifications. Approvals can be policy-based (user, group, time-of-day) or manual through Slack or Teams.
Intuitive, flexible policies let you create workflows that match how your work flows exactly. Create easy automation paths to register alerts, create tickets for analysts or DevOps, or trigger proactive enforcement.
Build and customize reports to satisfy auditors, regulators, and your own internal security policies. Cmd is a drop-in replacement for auditd that requires no setup, is completely centralized, and is far easier to read.
Cmd plays well with all your favorite tools from Slack and Teams to 2FA, SIEM, Logging, and Ticketing systems. Because that’s how we make it easy for you to work the way you want to.
Drive immediate value with easy deployment with no reboot required, through Chef, Puppet, Salt, Ansible or any other configuration management application. Also available as a 10-second scriptable curl install.
Cmd supports most any Distro you throw at it, including Red Hat, Ubuntu, SUSE, CentOS, Debian, Amazon Linux.
No active SSH session
Standard active SSH session
*Standard user behaviour monitored & averaged over a 24 hour period & basic execution filtering applied. On server grade hardware & network.