AI Analysis
AI that understands
your infrastructure.
HostAtlas integrates AI analysis throughout the platform. Explain server anomalies, analyze attack patterns, generate scripts from natural language, and receive daily infrastructure summaries — all powered by the LLM provider you choose. Not locked to one vendor. Bring your own API key.
4
AI providers
1-click
AI Explain
Free
Default (Groq)
Daily
Summary email
AI-Powered Features
AI that understands your infrastructure.
Every AI feature works out of the box. No API keys to configure. No prompt engineering. Just click and get actionable insights.
AI Assistant
Ask questions in natural language. "Which servers need attention?" "Why is my DB slow?" Smart routing picks the right model for each query.
AI Explain
One-click analysis on any server, domain, or incident. Get a plain-language summary of what's happening and what to do next.
AI Optimize
Analyze your server and database configs against best practices. Get specific parameter changes with current vs. suggested values.
AI Script Generation
Describe what you need in plain English and get a production-ready bash script. Review, edit, then execute directly on any server.
AI Explain
One click. Full analysis.
The AI Explain button appears throughout the HostAtlas platform — on server dashboards, domain detail pages, and incident reports. Click it to get a plain-language analysis of the current state, potential issues, and recommended actions. No prompt engineering required.
Server Analysis
Feeds the AI current metrics, service status, recent alerts, and resource trends. Returns a summary of server health, identifies anomalies, and suggests optimization opportunities.
Domain Analysis
Analyzes DNS configuration, SSL certificate status, health check history, and vhost configuration. Highlights misconfigurations, security gaps, and performance improvements.
Incident Analysis
Reviews crash logs, metric snapshots, and timeline events. Provides root cause hypothesis, affected services, and step-by-step remediation guidance.
AI Explain
Context: web-prod-01 · Server Dashboard
Summary
The server is under moderate load with CPU averaging 68% over the last hour. This is elevated compared to the 7-day average of 42%. The primary consumer is the MySQL process, which is using 3.2 GB of RAM and showing increased slow query rates.
Key Findings
MySQL slow queries increased 340% in the last 4 hours. Check for missing indexes on recently deployed queries.
Disk I/O wait is 12%, suggesting the MySQL temp tables are spilling to disk. Consider increasing tmp_table_size.
All other services (nginx, Redis, PHP-FPM) are healthy and within normal parameters.
Recommended Actions
1. Run SHOW PROCESSLIST to identify long-running queries.
2. Check the slow query log for the last 4 hours.
3. Review recent deployments for schema changes.
Post-Attack Analysis
Attacked? AI tells you what happened.
When HostAtlas detects suspicious activity or your team triggers an investigation, the AI analyzes access logs, error patterns, and system metrics to produce a detailed post-attack report. Attack type classification, severity assessment, source IP identification, and actionable blocking recommendations — all generated automatically.
Post-Attack Analysis
Attack Type
Brute Force (SSH)
Duration
2h 14m
Attempts
14,832
Analysis
A distributed SSH brute-force attack targeted the root and admin accounts from 23 unique source IPs. The attack began at 02:17 UTC and lasted approximately 2 hours. No successful authentication was detected. The attack originated primarily from CIDR blocks associated with cloud hosting providers in Southeast Asia.
Top Source IPs
Recommended Actions
Block 23 source IPs via firewall (iptables/ufw rules provided below)
Disable password authentication for SSH. Use key-based auth only.
Install fail2ban to automatically block brute-force attempts.
AI Script Generation
Describe it. AI writes it.
Tell the AI what you want to accomplish in plain English, and it generates a production-ready shell script. Install packages, configure services, set up cron jobs, or automate deployments — without writing a single line of bash yourself.
Natural Language Input
Describe the task in your own words. "Install Redis 7, configure max memory to 2 GB, set eviction policy to allkeys-lru, and enable AOF persistence." The AI handles the rest.
OS-aware Generation
The AI knows the target server's OS, package manager, and installed services. Scripts use the correct package manager (apt, yum, dnf) and service manager automatically.
Review Before Execution
Generated scripts are presented for review in the editor before execution. Read the code, modify if needed, then execute on the target server. Nothing runs without your approval.
AI Script Generator
Prompt
"Install Node.js 20 LTS, create a systemd service for my Express app at /var/www/api, and set up a logrotate config for the app logs."
2# AI-generated: Install Node.js 20 + systemd + logrotate
3
4set -euo pipefail
5
6# Install Node.js 20 LTS via NodeSource
7curl -fsSL https://deb.nodesource.com/setup_20.x | bash -
8apt-get install -y nodejs
9
10# Create systemd service
11cat > /etc/systemd/system/express-api.service <<'EOF'
12[Unit]
13Description=Express API
14After=network.target
15EOF
16...
Script Optimization
Paste your script. AI makes it better.
Have an existing script that works but could be improved? The AI optimization feature analyzes your script for security issues, error handling gaps, performance improvements, and best practices — then rewrites it with detailed explanations of every change.
Security Hardening
Identifies unsafe practices like unquoted variables, missing input validation, world-readable permissions, and hardcoded credentials. Rewrites affected sections following security best practices.
Error Handling
Adds set -euo pipefail, proper exit codes, cleanup traps, and error messages. Ensures scripts fail safely and provide useful output when something goes wrong.
Performance
Identifies redundant operations, suggests parallel execution where safe, replaces expensive subshells with built-in bash operations, and reduces unnecessary disk I/O in loops.
Daily AI Summary
Your infrastructure. Summarized daily.
Every morning, HostAtlas sends you an AI-generated summary of your infrastructure's health. Overnight incidents, resource trends, upcoming certificate expirations, and anomalies — all condensed into a single email that takes 60 seconds to read.
Overnight Incident Recap
Every incident that occurred since your last summary is included with a one-sentence AI analysis of root cause and resolution status. No need to log in to check if anything happened overnight.
Resource Trend Alerts
The AI identifies servers where disk usage, memory, or CPU are trending upward. Get warned about capacity issues days before they become critical — not when the alert fires at 3 AM.
Upcoming Expirations
SSL certificates and domains nearing expiration are highlighted in the summary. The AI prioritizes items by urgency so the most critical renewals appear first.
HostAtlas Daily Summary
noreply@hostatlas.app · Apr 3, 2026 · 07:00 UTC
Infrastructure Status
All 12 servers are online. 47 domains healthy. 2 incidents in the last 24 hours — both auto-resolved.
web-prod-03: Disk usage at 82% and growing ~1.2 GB/day. Estimated 14 days until 90% threshold.
api.example.com: SSL certificate expires in 12 days. Auto-renewal expected in 2 days.
Incident #287: MySQL restart on db-prod-01 at 03:14 UTC. Auto-recovered. Cause: OOM killer (peak RAM 97%).
Recommendation
Consider increasing MySQL's innodb_buffer_pool_size or upgrading db-prod-01 from 8 GB to 16 GB RAM. The OOM events correlate with batch job execution between 02:00-04:00 UTC.
AI analysis included on every plan.
Free by default with Groq. Bring your own OpenAI, Anthropic, or Ollama key for maximum flexibility. AI Explain, attack analysis, script generation, and daily summaries — all included.