Our thesisHanover, Maryland
We are the safety rail every critical Linux change runs through before it touches production — whether a human or an AI made it.
Mission
Make every production Linux change safe to apply, simple to reverse, and provable after the fact — whether a person or an agent makes it. We start where the standard is strictest, in federal compliance, then bring that same rigor to every team running Linux at scale.
Vision
A future where safe, auditable, reversible change is simply how Linux gets operated — by the people running production and the AI agents working alongside them. The discipline that protects the most regulated systems today becomes the default everywhere.
How we build
AI drafts. Humans reason.
The tools you trust to keep production safe are built to the standard they enforce. We use AI heavily across our codebase, but every change that can reach production carries a human-written failure-mode analysis, committed to the repository where anyone can audit it.
We run on the same discipline we sell.
Where the rigor comes from
Built on federal-grade experience.
Hanalyx is built by people who spent over a decade inside environments where a bad configuration change isn't an inconvenience — it's an incident. That experience spans active-duty military IT, DoD STIG programs, the FBI, and DHS.
U.S. Army
25B IT Specialist · active duty
Network infrastructure, systems administration, and STIG compliance.
DoD program
Cybersecurity & Linux infrastructure
95% DoD STIG compliance across 300+ RHEL systems — automated scanning, remediation, and continuous monitoring.
FBI Cyber Division
Cybersecurity engineering
Linux systems engineering under strict federal security standards.
DHS program
Infrastructure & cybersecurity
Multi-agency Linux engineering, system hardening, and compliance support across DHS programs.
“No Linux change should ever be unsafe, unauditable, or unreversible — whether a human or an AI made it.”
Why our federal roots matter for the agentic era
The discipline federal work demanded — capture, validate, prove, reverse — is exactly what autonomous systems will need. Government was our proving ground, not our ceiling.
As AI agents begin to modify production at scale, every one faces the question we've been answering for a decade: can you prove the change was safe, and undo it if it wasn't? We're building the tools — OpenWatch, Kensa, and Specter — that answer it.
FAQ
About Hanalyx
What is Hanalyx?
Hanalyx builds production-safe infrastructure for the agentic era: tools that let teams and AI agents change production Linux without breaking it. The portfolio is three open-source products: OpenWatch, Kensa, and Specter.
Who is Hanalyx for?
Teams that operate and secure Linux at scale, especially in federal and regulated environments where every change must be safe, reversible, and auditable.
How do the three products fit together?
Kensa is the transactional change engine, OpenWatch is the compliance control plane that runs on top of it, and Specter is the spec compiler the team builds both with. Together they cover safe change, fleet posture, and verifiable specifications.
Are the products open source?
Yes. OpenWatch, Kensa, and Specter are open source and free to evaluate. Installation instructions and source are available from each product repository.
Certifications & standards