Self-hosted · E2E encrypted

Remote access,
without compromise

Remote desktop, shell, and fleet management on your own hardware. No per-seat licensing. No cloud dependency. No third party in the path.

screenviewer — session E2E
60Hzbinary input
E2EDTLS-SRTP
RSA-4096device certs
100%self-hosted
01Quick start
Run it on your machine
$ git clone https://github.com/allaspectsdev/ScreenViewer.git $ cd ScreenViewer && pnpm install $ docker compose -f infra/docker-compose.yml up -d # postgres · redis · coturn $ cp .env.example .env # set your secrets $ pnpm --filter @screenviewer/db db:push $ pnpm dev
portal at localhost:3000 · api at localhost:3001 · needs node 20+ · pnpm 9+ · docker
want it pre-populated? pnpm --filter @screenviewer/db db:seed → login admin@acme.test / demo1234
02Three ways in
1

Unattended access

Generate an enrollment token in the portal, install the agent on any Windows, macOS, or Linux machine. It creates an RSA-4096 key pair, receives a device certificate, and holds a persistent connection to your server — always ready to connect.

2

Ad-hoc support zero install

Generate a one-time 6-digit code. The person you're helping opens your support URL in their browser, types the code, and shares their screen — nothing to download, nothing to install.

https://your-server/support/<code>
3

Connect

Click a device in the portal. WebRTC negotiates a peer-to-peer connection (your own coturn relays if NAT demands it), the screen streams over an encrypted video track, and input flows down a 60Hz binary channel. Sessions survive network blips with a 30-second ICE-restart window.

03What's in the box
01

Remote desktop

WebRTC screen streaming with adaptive quality and multi-monitor switching.

02

Remote shell

Full PowerShell / Bash terminal via xterm.js. Gated to admin and owner roles.

03

File transfer + browser

Drag-and-drop chunked transfer with SHA-256 verification, jailed to the user's home.

04

Session recording

VP9 WebM recording with configurable retention, for compliance and audit.

05

SSO + MFA

SAML 2.0 and OpenID Connect with JIT provisioning. TOTP two-factor.

06

RBAC + audit log

Owner → Admin → Technician → Viewer. Every security event logged, exportable.

07

Fleet dashboard

Live device status, groups, search, system info — CPU, memory, displays, NICs.

08

Two agents

Full Electron desktop agent, or a lightweight Rust native agent for servers.