Most sysadmins spend their day bouncing between a dozen tabs:
It's noisy, slow, and scattered. MYSYSAD solves that by giving you one clean, private workbench to start your day โ and increasingly, to finish it too.
The site has grown well beyond a utility tray. It now includes full application-grade tools: a forensic image editor, a visual network topology designer, an interactive VPC subnet planner, multi-file log analyzers, credential debugging suites, infrastructure code generators, and more. All of it client-side, all of it free.
Fast, in-page utilities for the tasks you run a dozen times a day. No page loads, no waiting โ results appear as you type.
CIDR calculator with full host-range breakdowns, live DNS record lookup (A, AAAA, MX, TXT, CNAME), subnet mask converter, MAC vendor identification, and SSL certificate inspection. Run quick checks without leaving the dashboard.
Base64 encode/decode, URL percent-encoding, hash generation (MD5, SHA-1, SHA-256, SHA-512), JWT decode and inspection, JSON formatter and validator, YAML โ JSON conversion. All processing happens locally โ paste credentials or tokens without worry.
A searchable reference for 300+ commands across Linux, Docker, Kubernetes, Git, Systemd, MySQL, PostgreSQL, Networking, and Ansible. Chmod calculator with visual permission grid. Cron expression builder with human-readable output. Unix timestamp converter. Nginx, Apache, and systemd config generators.
Cryptographically secure password generator with full entropy control. SSH key pair generation (RSA and Ed25519) running entirely in WebCrypto โ keys never touch a server. HTTP status code reference.
50+ copy-paste Python scripts for monitoring, file operations, network utilities, Docker management, log analysis, backup automation, and security checks. Live regex tester with match highlighting. Side-by-side diff checker. Visual cURL request builder. In-browser Python sandbox powered by WebAssembly.
Full standalone applications embedded in the platform. These go well beyond calculator-style utilities โ they're purpose-built tools for complex, real-world sysadmin workflows.
A forensic-grade image operations console. Redact credentials from screenshots, annotate with shapes and callouts, burn audit stamps, apply OCR-powered auto-redaction, deskew scanned documents, and export annotated images โ all client-side with no upload.
Visual network topology designer. Drag-and-drop nodes, define subnets with VLSM planning, annotate connections, simulate packet flow paths, and export production-ready network diagrams โ entirely in the browser.
Design AWS-style VPC architectures with subnet collision detection, CIDR allocation previews, and availability zone mapping. Generate infrastructure-as-code scaffolding from your visual design.
Build and visualize SSH tunnel configurations โ local forwarding, remote forwarding, dynamic SOCKS proxies, and jump host chains โ with generated ready-to-run commands.
Construct complex log search queries visually with field filters, time ranges, and boolean logic. Works against paste-in log data or uploaded log files processed entirely in-browser.
Upload multi-file server logs for local parsing, pattern extraction, and PII redaction. Process thousands of lines without sending data anywhere.
Strip secrets, credentials, IP addresses, email addresses, and custom patterns from log data before sharing or filing tickets. Pattern library is fully configurable.
Parse Linux Out-of-Memory killer log segments and get a structured analysis: which process was killed, memory pressure context, and suggested remediation paths.
Full TLS certificate analysis โ chain validation, SAN enumeration, expiry tracking, cipher suite inspection, and HSTS/HPKP header review.
Audit HTTP response security headers against OWASP best practices. Identifies missing headers, misconfigured CSP directives, and insecure cookie flags.
Parse and inspect PEM certificates, certificate chains, and CSRs locally. Extracts subject, issuer, SANs, key usage, and validity details without uploading the certificate.
Decode and debug SAML assertions, OAuth tokens, OIDC ID tokens, and SSO flows. Visualizes claims, expiry, audience mismatches, and signature metadata.
Generate production-quality Kubernetes YAML manifests for Deployments, Services, ConfigMaps, Ingress, and more โ with field validation and best-practice hints.
Paste or upload Terraform HCL to analyze resource graphs, detect common misconfigurations, and visualize provider dependency trees.
Paste a Docker Compose file and get an interactive service dependency graph showing networks, volumes, port mappings, and environment bindings at a glance.
Test NGINX location block routing logic against request paths without running a server. Identifies which block wins and why โ invaluable for debugging complex configurations.
500+ curated Linux commands with usage examples, flag references, and a visual pipeline builder for chaining commands with pipes and redirects.
Paste any shell command or script for plain-language explanation and risk auditing. Flags destructive operations, privilege escalations, and potentially dangerous patterns before you run anything.
A forensic patching engine for HTML and config files. Locate, diff, and precisely modify lines in large files with a visual before/after comparison before writing any changes.
A full-featured local photo management tool. Tag, categorize, star-rate, rename, deduplicate, and batch-move thousands of photos into organized folders โ using the browser's File System Access API with zero uploads.
Semantic JSON/YAML configuration drift detection for Kubernetes, Terraform, and cloud environments. Paste two config versions to get a structural diff with path-level change classification.
Generate SPF, DKIM, and DMARC DNS records for email authentication. Enter your domain and mail provider details, get copy-paste TXT records ready for your DNS zone.
Generate Apache-compatible htpasswd entries with bcrypt, SHA-256, SHA-512, and MD5 (apr1) algorithms. Create password-protected directories without needing the CLI tool.
Interactive jq JSON query builder โ paste a JSON payload, type a filter expression, see output instantly. Generates the equivalent shell command for use in pipelines.
Decode SELinux AVC denials and AppArmor log messages into plain English. Explains what was blocked, why, and suggests the correct policy fix.
Generate CSRs, self-signed certificates, and key pairs visually. Fill in subject fields, select algorithms, and get the complete OpenSSL commands and output files.
Simulate Linux file permission checks with kernel-accurate path traversal. Enter a user, file path, and operation to see exactly how the permission check resolves through the directory hierarchy.
TCP/UDP port database with risk ratings, protocol descriptions, Nmap scan commands, and local audit scripts. Search by port number, service name, or risk level.
Deep TLS certificate chain analysis โ decode PEM/DER certificates, inspect X.509 extensions, check for weak signature algorithms, and visualize the full trust path from leaf to root CA.
Interactive reference tables for Chi-square, Z-score, and t-Student distributions. Look up critical values, calculate p-values, and visualize rejection regions with live distribution curves.
Multi-mode calculator: scientific, base converter (bin/oct/dec/hex), transfer time estimator, RAID capacity planner, and SLA availability calculator โ all in one tool.
Production-ready crontab manifest generator with CRON_TZ timezone injection, flock execution locking, error hooks, environment headers, and multi-job queue management.
Advanced Base64 tool with hex stream conversion, visual bit-mapping, and UTF-8 forensic analysis โ for debugging encoded payloads in JWTs, API responses, and binary protocols.
Side-by-side and unified diff views with word-level diffing, change statistics, and syntax-aware comparison โ far beyond the inline diff checker.
Collapsible tree view with click-to-copy dot-notation paths, format/minify toggle, and deep structure navigation โ for exploring complex JSON payloads.
Full header/payload/signature breakdown with temporal forensics (exp, iat, nbf timestamps), algorithm detection, and claim-level inspection beyond the inline decoder.
Visual bitmask mapping, wildcard mask calculation, broadcast address detection, and binary network analysis with a full usable-hosts breakdown.
Visually construct iptables and UFW firewall rules with chain selection, protocol matching, and port ranges. Generates copy-paste commands with proper ordering.
Multi-format data conversion hub โ Base64, JWT, JSON, URL encoding, hex, and more in a single unified interface with bidirectional transformation.
Generate database and service connection strings for PostgreSQL, MySQL, MongoDB, Redis, and more. Supports SSL options, SSH tunneling parameters, and query string options.
Visualize cron schedule execution on a timeline. Paste a cron expression to see upcoming fire times, interval gaps, and schedule density over the next 24 hours or week.
Check DNS record propagation across 12+ global resolvers simultaneously. See which nameservers have updated and which are still serving stale records.
Build systemd service unit files with a visual form. Set ExecStart, restart policies, dependencies, environment, sandboxing options, and generate a ready-to-deploy .service file.
Audit AWS IAM policies and Kubernetes RBAC manifests for overly permissive rules, wildcard actions, missing conditions, and common security anti-patterns.
Full-featured regex engine with named capture groups, lookahead/lookbehind support, match highlighting, substitution preview, and flag toggles (g, i, m, s).
Alongside the tooling, MYSYSAD aggregates the feeds that matter to sysadmins and security professionals โ r/sysadmin, r/netsec, Hacker News, CISA advisories, Krebs on Security, LWN.net, and community threads โ in a single, noise-free reading view. Updated continuously so you don't have to hunt.
The News page is the only part of MYSYSAD that makes external network requests: your browser fetches from Reddit and Hacker News (Algolia) directly, and a lightweight server-side proxy fetches RSS from CISA, Krebs, and LWN. No tool data ever passes through this proxy. Full details in our Privacy Policy.
MYSYSAD is built on three principles that have never changed, no matter how much the platform has grown:
No bloat, no heavy frameworks, no nonsense. Loads instantly, stays fast, works offline for most tools.
All 74 tools run locally in your browser. Logs, credentials, certificates, images โ none of it is transmitted to any server. The only server-side component is a lightweight RSS proxy for the News page. Full disclosure in our Privacy Policy.
Every feature earns its place by saving real time or eliminating real friction. If it doesn't, it doesn't ship.
NO ACCOUNTS. NO TRACKING. NO ADS. NO UPLOADS. NO BS.
MYSYSAD is created and maintained by a sysadmin who wanted a cleaner, faster, more private way to work. If you've spent 20 minutes hunting for a cron expression, decoding a JWT at 2 AM, trying to remember the right kubectl flag, or needed to redact a screenshot before filing a ticket โ this site was built for you.
The platform has grown from a handful of quick utilities into a comprehensive toolkit through direct use and direct feedback. Every tool on this site is something that was needed in a real shift, on a real system.
Tech Stack: Pure HTML, CSS, and Vanilla JavaScript. No frameworks, no build pipeline, no external dependencies beyond a few well-established CDN libraries. Fast, transparent, and auditable.
Have a tool request, bug report, or feature idea?
Reach out via email: Contact Support
Feature requests are genuinely welcome. If there's a tool you reach for every week and it isn't here, say so. The best additions to this platform came from exactly that kind of message.