ctrl-exec is an open source mTLS remote script execution framework for Linux infrastructure. It gives operations teams a controlled, auditable execution layer between their tooling and their servers — without SSH shell access, without proprietary agents, and without external dependencies.

The software is free. Commercial support, implementation services, and corporate licensing are available from a growing network of providers.

Technical documentation and reference material is at ctrl-exec.io.

What ctrl-exec Does

A lightweight agent runs on each managed host. The control binary dispatches named scripts to one or more agents in parallel over mutual TLS. Each agent executes only the scripts its operator has explicitly allowlisted. Every invocation is logged with a correlated request ID on both ends.

The result is a defined, auditable operational interface that replaces ad-hoc SSH access — suitable for compliance-driven environments, distributed infrastructure, deployed asset fleets, and organisations running AI agents against live systems.

Commercial Services

Implementation and consultancy is available from Open Digital, covering strategy, deployment, and integration with existing identity and compliance infrastructure.

Corporate support and licensed distributions are available from Xi Software, covering support contracts, SLA-backed assistance, and packaged distributions for enterprise deployment.

Other providers offering ctrl-exec services are listed separately. If your organisation provides ctrl-exec services and would like to be listed, make contact.