CertSentry

CertSentry is a web app (with optional lightweight desktop agent) that continuously inventories TLS certificates and SSH keys across your domains, cloud accounts, Kubernetes clusters, and internal services—then warns you before expirations, weak algorithms, or mis-issuance cause downtime or breaches. It focuses on the unglamorous reality: most teams don’t have a single source of truth for certs/keys, and outages from expired certs still happen weekly. The app discovers assets via DNS, CT logs, cloud APIs, and agent-based scanning, then correlates ownership to teams and repos. It generates actionable playbooks: renew paths, ACME compatibility, rotation steps, and change windows. It also flags risky patterns like long-lived keys, shared private keys, and certs issued from unexpected CAs. This is a traditional app with AI-assisted recommendations (not an “AI magic” product).