Components
Luumen desktop app
The app you install on macOS, Windows, or Linux. Opens SSH and WinRM sessions, hosts the LuumenAI panel, and runs vulnerability scans locally over your existing connections.
Your servers
The Linux and Windows hosts you connect to. Luumen reaches them the same way OpenSSH or PuTTY would — using your credentials over the protocols you’ve already enabled.
Luumen cloud
A hosted account that stores your host list, credentials (encrypted at rest), Skills, snippets, and session metadata. Sign in from any device to access the same workspace.
LuumenAI
The AI copilot embedded in every session. Reads context from your live SSH or WinRM connection and proposes commands you approve before they run.
How a session works
You open a host
The desktop app initiates an SSH or WinRM connection to the host using the credentials you’ve stored. The connection is direct from your device to the host — Luumen doesn’t proxy session traffic.
LuumenAI loads context
Once connected, the AI panel loads with context for the host: OS, IP, last scan results, and recently observed state.
You work in the terminal or ask LuumenAI
Run commands as you would in any SSH client. When you ask LuumenAI a question, it can propose commands to investigate further. Every command needs your approval before it runs on the host.
What stays on your device
- Terminal session content (keystrokes and command output) is not stored by Luumen’s cloud beyond what’s needed for session logs in your workspace.
- Your local OS keychain or filesystem can be used for SSH key storage if you prefer; Luumen also supports storing keys encrypted in your cloud account so they’re available across devices.
What goes to the cloud
- Host list (names, hostnames, ports, connection type).
- Credentials, encrypted at rest with AES-256.
- Skills, snippets, and saved settings.
- Vulnerability scan results.
- Audit logs for credential access and admin actions.
No-agent architecture
Luumen uses the SSH or WinRM access you’ve already authorized on each host. It does not:- install an agent or daemon on the hosts you connect to
- require any inbound network access to your hosts
- need firewall rule changes beyond your existing remote-access policy
Running a Luumen-managed agent across a fleet for scheduled compliance scans, SAP monitoring, or integrations is part of Luumen Enterprise.
Next steps
Install Luumen
Download and install the desktop app.
First SSH connection
Connect to a host and try LuumenAI.