LastControl is a reporting and telemetry platform that runs on Linux machines using a TLS-enabled agent. Unlike large-scale enterprise monitoring systems, it aims to provide a fast-to-deploy, scalable, minimal, and easy-to-understand infrastructure.
- TLS-encrypted communication using socat
- Certificate-based client authentication
- CVE Analysis by comparing packages with the distro’s Security Tracker records
- Historical telemetry data and historical reporting
- Web UI
- Inventory Report
- Update Report
- Installed Packages
- Open Ports
- Local Users
- Roles
- System Load
- RRD Graphics
- CVE Page Associated with Installed Packages
- Vulnerability Exposure
- Historical Reports
- Ubuntu
- RHEL / Rocky / Alma
- Debian
- Oracle Linux
- Debian
- Ubuntu
LastControl does not compare only package versions.
Instead it correlates installed packages with official vendor security advisories.
This approach significantly reduces false positives and follows the security status published by distribution vendors.
- Oracle Linux
- SUSE
wget https://raw.githubusercontent.com/eesmer/LastControl/refs/heads/main/LastControl-ServerInstaller.sh
bash LastControl-ServerInstaller.sh
http://SERVER_IP
Username: admin
Password: lastcontrol
The server generates a custom installer:
http://SERVER_IP/download-agent
/usr/local/lastcontrol/dist/lastcontrol-agent_installer.sh
Copy the installer to the target machine and run:
bash lastcontrol-agent_installer.sh
The agent will:
- Install required dependencies
- Install reporting scripts
- Install TLS certificates
- Configure systemd timer
- Start periodic reporting

