
Sensor Agent for 404 Network
Remote Network Monitor
Deploy lightweight sensors on your servers to monitor network health, run diagnostics, and detect threats from your iPhone or Mac.
The 404 Sensor is a single static binary — no runtime, no dependencies — that runs on any Linux server, Raspberry Pi, Docker container, or Mac. Once deployed, it streams real-time network telemetry back to your 404 app over an encrypted TLS connection.
Under 10 MB, no runtime or interpreter required. Runs on any Linux distribution, Raspberry Pi, or Mac with zero setup overhead.
All traffic encrypted via TLS 1.3. HMAC-SHA256 challenge-response authentication ensures only your app can connect.
Run ping, traceroute, port scans, and DNS lookups from the sensor’s network perspective — invaluable for diagnosing remote site issues.
Syncs the NVD vulnerability feed so your 404 app can correlate discovered services against known CVEs in real time.
Sensor results are buffered locally when the app is offline and synced automatically when the connection is restored.
A lightweight read-only web dashboard is available at http://sensor-ip:4040 for quick browser-based status checks.
Select your platform and run the command below.
Launch the sensor in listen mode. It will print a QR code and pairing code.
Open the 404 app and connect to your new sensor.
Point your iPhone camera at the QR code in the terminal to auto-fill the IP, port, and pairing code. No manual entry needed.
| Flag | Default | Description |
|---|---|---|
--port |
40404 |
TCP port the sensor listens on for app connections. |
--dashboard-port |
4040 |
Port for the local web dashboard (read-only status page). |
--name |
hostname | Display name shown in the 404 app sensor list. |
--nvd-key |
— | NVD API key for CVE database sync (higher rate limits, recommended for production). |
--interval |
60s |
Autonomous monitoring check interval (ping, uptime, memory). |
--no-dashboard |
— | Disable the web dashboard entirely. |
The sensor was built with a zero-trust philosophy. Every connection is verified, every byte is encrypted.
All traffic between the sensor and the 404 app is encrypted end-to-end. No plaintext ever leaves the sensor.
Challenge-response handshake on every connection. Connecting without the correct pairing key is rejected immediately.
Pairing codes are valid for one session only. Re-pairing generates a new code automatically.
The sensor does not store diagnostic results, credentials, or network data. Only the CVE cache is written to disk.