STEALTHNODE
Deploy a secure node in one click
Windows only · Run as Administrator
What gets installed
- →Wazuh agent — Continuous monitoring, file integrity monitoring, and anomaly detection. Streams telemetry to the central server.
- →Osquery — Exposes the OS as a relational database. Powers SQL-like introspection of processes, sockets, registry, and kernel modules.
- →Cloudflare Tunnel — Secure, outbound-only connection. No open ports. Each node gets a unique tunnel URL for on-demand AI investigation.
- →StealthNode agent — Lightweight MCP bridge. Starts automatically at boot via Task Scheduler.
When the server flags an anomaly, it spins up an ephemeral AI sandbox that connects via your tunnel to investigate. Pay-per-incident—no 24/7 cloud compute.