Manage PCE plugins as Docker containers. Auto-restart, health checks, cron scheduling, web dashboard, AI-assisted policy generation, and a plugin registry.
plugger init && plugger install pce-health-monitor && plugger run
From a single command to a production-grade platform.
One command starts everything. Auto-restart on crash with exponential backoff, health checks, cron scheduling, and embedded dashboard.
Plugin tiles, live log streaming, config editing, dark/light theme. All plugin UIs consolidated under one port via reverse proxy.
Security posture scoring, policy suggestions, compliance mapping. Optional LLM integration with Anthropic, OpenAI, or Ollama for AI narratives and recommendations.
Search, install, and upgrade plugins by name. Official + custom registries. Browse in the dashboard or CLI. Multi-arch images on GHCR.
Palo Alto DAG sync, Active Directory label mapping, 15+ notification outputs (Slack, Teams, PagerDuty), webhook-driven automation, time-based scheduling.
Scaffold plugins in Go, Shell, or Python with the Illumio SDK. Docker-based with automatic credential injection, port discovery, and health checks.
Auto-detects Docker (Desktop, Colima, Podman), reads PCE credentials from .env or environment, tests connectivity.
plugger init
From the registry by name, a URL, a local manifest file, or a container image reference.
plugger install ai-security-report
Starts all plugins with auto-restart, health checks, cron scheduling, event webhooks, and the web dashboard.
plugger run
Install with plugger install <name> · Click any plugin for full documentation
Comprehensive security posture analysis. 10 categories, scoring, compliance mapping (NIST/CIS/PCI-DSS), environment heatmap, AI narratives, PDF export.
plugger install ai-security-report
Docs →
Policy advisor. Tiered rule generation (ringfencing/app-tiered/high-security), infrastructure detection, label gaps. One-click provisioning to PCE draft.
plugger install ai-assisted-rules
Docs →
Real-time PCE health dashboard. Checks health, node availability, CPU/memory/disk, and service status with color-coded indicators.
plugger install pce-health-monitor
Docs →
Interactive traffic flow analysis with Chart.js. Top talkers, blocked flows, policy decisions, Sankey diagram for source-service-destination.
plugger install traffic-reporter
Docs →
Git-like policy change tracker. Field-level diffs between draft and active, history snapshots, user attribution from audit events.
plugger install policy-diff
Docs →
Resolve label-based policy into IP-level firewall rules. Expand labels, label groups, IP lists to concrete IPs. JSON/TSV export per ruleset.
plugger install policy-resolver
Docs →
Real-time event monitoring. 15+ output plugins: Slack, Teams, PagerDuty, Email, webhooks, Jira, ServiceNow, Syslog.
plugger install pce-events
Docs →
Scheduled security posture scoring. Enforcement coverage, label coverage, policy rules. Generates HTML + JSON reports.
plugger install pce-posture-report
Docs →
Discover offline, unresponsive, and trafficless workloads. Groups by app|env labels. Optional cleanup (unpair/delete).
plugger install stale-workloads
Docs →
Time-based rule and ruleset scheduling. Business hours, maintenance windows, weekend lockdowns. YAML config, immediate reconciliation.
plugger install rule-scheduler
Docs →
Sync Illumio workload labels to Palo Alto Dynamic Address Groups via PAN-OS XML API. Configurable tag format, dry-run mode.
plugger install palo-alto-dag-sync
Docs →
Discover AD computers via LDAP and map OU, group, location attributes to Illumio labels. Analytics mode for safe feasibility testing.
plugger install ad-label-sync
Docs →
Sync BMC Helix/Remedy CMDB CIs to Illumio labels. Maps business service, environment, location to labels. Analytics + sync modes.
plugger install remedy-cmdb-sync
Docs →
Everything you need to install, configure, operate, and extend Plugger.
Install, initialize, connect to your PCE, and run your first plugin in minutes.
Prerequisites, building from source, global config, Docker socket, .env files, data layout.
All commands: init, run, install, create, start, stop, search, upgrade, repo, and more.
Build your own plugins: manifests, metadata, templates (Go/Shell/Python/JavaScript), health checks, web UI proxying.
Production deployment, systemd, auto-restart, health checks, monitoring, troubleshooting, backup.
Webhook endpoint, event plugins, pce-events integration, traffic watchers, ephemeral containers.
Full docs for every plugin. Click to expand or use the plugin cards above.
# Install $ git clone https://github.com/alexgoller/illumio-plugger.git $ cd illumio-plugger && make build # Setup (auto-detects Docker, reads .env) $ plugger init ✓ Docker socket: ~/.docker/run/docker.sock ✓ PCE is reachable # Browse and install plugins $ plugger search NAME VERSION MODE DESCRIPTION ai-security-report 0.1.0 daemon AI-powered security posture analysis... ai-assisted-rules 0.2.0 daemon Policy advisor — tiered rules... pce-health-monitor 0.1.0 daemon Real-time PCE health dashboard... traffic-reporter 0.1.0 daemon Interactive traffic flow analysis... rule-scheduler 0.1.0 daemon Time-based rule scheduling... $ plugger install ai-security-report $ plugger install pce-health-monitor # Start everything $ plugger run Plugger running: 2 plugin(s) active Dashboard: http://localhost:8800
Scaffold a new plugin in Go, Shell, or Python. Runs as a Docker container with automatic PCE credential injection.
plugger create my-plugin -t go
plugger create my-plugin -t shell
plugger create my-plugin -t python
plugger create my-plugin -t javascript