BrkrOps

About BrkrOps

Tools built by people
who've been in certificate hell.

BrkrOps builds enterprise PKI tools out of Edmonton, Alberta — the kind of tools we wished existed when we were the ones staring at a failed CRL at 11pm on a Friday.

BrkrOps was founded on a straightforward observation: Windows Server PKI — ADCS, certificate templates, CRL distribution, CA health — is genuinely complex infrastructure that organizations depend on for everything from user authentication to code signing to encrypted communications. And yet the tooling to manage it has been an afterthought for decades.

The CA snapin. Certutil. Manual CRL health checks via scheduled tasks emailing CSV files that nobody reads. Disaster recovery documentation that was accurate in 2019 and hasn't been touched since.

Truvald started as internal tooling built to manage a multi-CA, multi-forest enterprise environment. Over time it grew into something comprehensive enough to share — and professional enough to sell. It's built by PKI practitioners, for PKI practitioners, with enough thought given to non-specialists that your helpdesk can use the cert inspector without a three-hour training session.

We're a small operation. That's a feature, not a bug. It means you deal directly with the people who built the software, who actually know how PKI works, and who have a personal stake in making sure it's good. There is no Tier 1 support. There is no knowledge base article that doesn't apply to your situation. There's just us, your problem, and a genuine interest in solving it.

Questions, feedback, or just want to talk PKI? patrick@pixa.ca

Location

Edmonton,
Alberta, Canada

Mountain Time (UTC-7 summer / UTC-6 winter). Remote-first, with clients across Canada and internationally.

patrick@pixa.ca
How We Build
Honesty about what the tool can and can't do.
The evaluation trial is the full product. We don't gate features to force upgrades, and we don't hide limitations in fine print. If Truvald can't solve your specific problem, we'll tell you.
No fluff. Every screen is there for a reason.
PKI tools that make you click through five wizard pages to get to the information you need are the enemy. Truvald is built around getting you to actionable data as fast as possible.
Designed for real environments, not ideal ones.
Legacy CAs from acquisitions. Offline Root CAs that haven't been turned on in three years. Air-gapped segments. Multi-domain forests with inconsistent naming conventions. We've seen it all and Truvald handles it.
Support that actually knows the product.
When you email us with a problem, you're emailing the person who wrote the code. The response comes from someone who understands both your problem and the software deeply enough to actually help.
Security first, always.
Truvald is read-only by default, runs with minimal required permissions, stores nothing remotely, and is never the thing in your environment with the most access. We take the trust seriously.
Pricing that doesn't require three budget approvals.
$1,200/yr per installation. No per-CA pricing, no per-user seats, no module tiers. Clear, predictable, and accessible to teams that aren't at Fortune 500 scale.
Built With
C# / .NET 8
Core application, Windows platform APIs
Windows Forms
UI — native, fast, no Electron overhead
SQLite
Local data storage — no external DB required
Active Directory / LDAP
Discovery, gMSA, forest topology
ADCS / CertSvc
CA management, CRL, cert lifecycle
IIS / CEWS / CEPS
Enrollment service discovery and documentation
Inno Setup
Installer — clean, signed, auto-updating
PdfSharp / ClosedXML
PDF and Excel report generation
Previously known as Akaro. The product was rebranded Truvald in 2025 under BrkrOps to reflect the company's full rebrand. Existing installations update automatically — no user action required.