I got tired of security tools that wake me up at 3am with alerts but leave all the real work to me.
So I built Cortex — the autonomous decision engine that powers Watch.
Most tools (Falco, Wazuh, OSSEC, etc.) are great at detecting things, but terrible at deciding what to do about them. You end up with alert fatigue and manual investigation every single time.
I wanted something different.
Cortex is the AI-powered security brain inside Watch. It runs on every server and works like this:
Context — Automatically builds a rich snapshot of the system (processes with ancestry, network connections, file integrity, SSH activity, DNS queries, etc.)
Reason — The on-device AI analyzes everything and answers:
Plan — If action is needed, it creates a clear, safe response plan (ban IP, kill process, revert file changes, etc.). It also deduplicates plans so you don’t get spammed with the same alert 50 times.
Actuate — It can act autonomously (in Autopilot or Sovereign mode) or queue the plan for your one-click approval.
All of this happens on-device, in milliseconds, even if the backend is unreachable.
When a brute-force attack hits, you can literally watch Cortex:
You see the full reasoning chain in plain English.
Try the Public Demo Right Now (No Account Needed)
I run a small independent software company (AL'S-OPS LLC) and got frustrated with the existing tools. Either they were:
Cortex was designed to fix all four problems.
One-line install:
bash
curl -fsSL https://watch.alsopss.com/install.sh | sudo bash