diff --git a/Protest-Tests/ListenerTests.cs b/Protest-Tests/ListenerTests.cs
index 7976cd8c..100d70fa 100644
--- a/Protest-Tests/ListenerTests.cs
+++ b/Protest-Tests/ListenerTests.cs
@@ -7,12 +7,16 @@ public class ListenerTests {
     private readonly DirectoryInfo front;
 
     public ListenerTests() {
-        if (OperatingSystem.IsWindows())
+        if (OperatingSystem.IsWindows()) {
             front = new DirectoryInfo(@"..\..\..\..\..\Protest\front");
-        else
+        }
+        else {
             front = new DirectoryInfo(@"../../../../../Protest/front");
+        }
 
-        if (!front.Exists) Assert.Fail($"\"front\" directory not found: {front.FullName}");
+        if (!front.Exists) {
+            Assert.Fail($"\"front\" directory not found: {front.FullName}");
+        }
     }
 
     [SetUp]
@@ -21,8 +25,6 @@ public void Setup() {
             Http.Listener listener = new Http.Listener("127.0.0.1", 8080, front.FullName);
             listener.Start();
         });
-
-        //Thread.Sleep(100);
     }
 
     [Test]
@@ -46,7 +48,7 @@ public void Listener_NoneExistingPage_ReturnNotFound() {
     }
 
     [Test]
-    public void CsrfCheck_NoHostInReferer_ReturnOk() {
+    public void CsrfCheck_NoHostInReferrer_ReturnOk() {
         using HttpRequestMessage requestMessage = new HttpRequestMessage(HttpMethod.Get, "http://127.0.0.1:8080/");
 
         using HttpClient httpClient = new HttpClient();
@@ -56,7 +58,7 @@ public void CsrfCheck_NoHostInReferer_ReturnOk() {
     }
 
     [Test]
-    public void CsrfCheck_SameHostInReferer_ReturnOk() {
+    public void CsrfCheck_SameHostInReferrer_ReturnOk() {
         using HttpRequestMessage requestMessage = new HttpRequestMessage(HttpMethod.Get, "http://127.0.0.1:8080/");
         requestMessage.Headers.Add("Referer", "http://127.0.0.1:8080/");
 
@@ -67,9 +69,9 @@ public void CsrfCheck_SameHostInReferer_ReturnOk() {
     }
 
     [Test]
-    public void CsrfCheck_DifferentHostInReferer_ReturnImaTeapot() {
+    public void CsrfCheck_DifferentHostInReferrer_ReturnImaTeapot() {
         using HttpRequestMessage requestMessage = new HttpRequestMessage(HttpMethod.Get, "http://127.0.0.1:8080/");
-        requestMessage.Headers.Add("Referer", "http://127.0.0.2:8080");
+        requestMessage.Headers.Add("Referer", "http://127.0.0.2:8080/");
 
         using HttpClient httpClient = new HttpClient();
         HttpResponseMessage result = httpClient.Send(requestMessage);
diff --git a/Protest/Front/automation.js b/Protest/Front/automation.js
index ae5e1285..85cef32d 100644
--- a/Protest/Front/automation.js
+++ b/Protest/Front/automation.js
@@ -3,9 +3,8 @@ class Automation extends List {
 		super();
 
 		this.AddCssDependencies("list.css");
-		//this.AddCssDependencies("automation.css");
 
-		const columns = ["name", "status", "progress"];
+		const columns = ["name", "status", "start", "task"];
 		this.SetupColumns(columns);
 
 		this.columnsOptions.style.display = "none";
@@ -21,97 +20,10 @@ class Automation extends List {
 		this.pauseButton = this.AddToolbarButton("Pause", "mono/pause.svg?light");
 		this.stopButton  = this.AddToolbarButton("Stop", "mono/stop.svg?light");
 
-		this.createButton.disabled = true; //TODO: <-
+		this.createButton.disabled = true;
 		this.deleteButton.disabled = true;
 		this.startButton.disabled = true;
 		this.pauseButton.disabled = true;
 		this.stopButton.disabled = true;
-
-		this.ListTasks();
-	}
-
-	async ListTasks() {
-		try {
-			const response = await fetch("automation/list");
-			if (response.status !== 200) LOADER.HttpErrorHandler(response.status);
-
-			const json = await response.json();
-			if (json.error) throw (json.error);
-
-			this.link = json;
-
-			for (let task in this.link.data) {
-				const element =  document.createElement("div");
-				element.id = task;
-				element.className = "list-element";
-				this.list.appendChild(element);
-
-				this.InflateElement(element, this.link.data[task]);
-
-				element.addEventListener("click", event=>this.Entry_onclick(event));
-			}
-		}
-		catch (ex) {
-			this.ConfirmBox(ex, true, "mono/error.svg");
-		}
-	}
-
-	InflateElement(element, entry) { //overrides
-		let icon;
-		switch (entry.name.v.toLowerCase()) {
-		case "lifeline": icon = "mono/lifeline.svg"; break;
-		case "lastseen": icon = "mono/lastseen.svg"; break;
-		case "watchdog": icon = "mono/watchdog.svg"; break;
-		case "issues"  : icon = "mono/issues.svg"; break;
-		case "fetch"   : icon = "mono/fetch.svg"; break;
-		default        : icon = "mono/automation.svg"; break;
-		}
-
-		const iconBox = document.createElement("div");
-		iconBox.className = "list-element-icon";
-		iconBox.style.backgroundImage = `url(${icon})`;
-		element.appendChild(iconBox);
-
-		super.InflateElement(element, entry, null);
-
-		if (!element.ondblclick) {
-			element.ondblclick = event=> {
-				event.stopPropagation();
-				this.Entry_ondblclick(event);
-			};
-		}
-	}
-
-	Entry_onclick(event) {
-		this.deleteButton.disabled = true;
-		this.startButton.disabled = true;
-		this.stopButton.disabled = true;
-
-		if (!(this.args.select in this.link.data)) {
-			return;
-		}
-
-		if (this.link.data[this.args.select].name.v.toLowerCase() === "lifeline" ||
-			this.link.data[this.args.select].name.v.toLowerCase() === "watchdog" ||
-			this.link.data[this.args.select].name.v.toLowerCase() === "fetch") {
-			this.deleteButton.disabled = true;
-		}
-		else {
-			//this.deleteButton.disabled = false; //TODO: <-
-		}
-
-		if (this.link.data[this.args.select].status.v.toLowerCase() === "stopped") {
-			//this.startButton.disabled = false;
-			this.stopButton.disabled = true;
-		}
-		else {
-			this.startButton.disabled = true;
-			//this.stopButton.disabled = false;
-		}
-
-	}
-
-	Entry_ondblclick(event) {
-
 	}
 }
\ No newline at end of file
diff --git a/Protest/Front/certificates.js b/Protest/Front/certificates.js
new file mode 100644
index 00000000..5bc7f2c1
--- /dev/null
+++ b/Protest/Front/certificates.js
@@ -0,0 +1,24 @@
+class Certificates extends List {
+	constructor() {
+		super();
+
+		this.AddCssDependencies("list.css");
+
+		const columns = ["name", "status", "start", "task"];
+		this.SetupColumns(columns);
+
+		this.columnsOptions.style.display = "none";
+
+		this.SetTitle("Certificates");
+		this.SetIcon("mono/certificate.svg");
+
+		this.SetupToolbar();
+		this.createButton = this.AddToolbarButton("Create task", "mono/add.svg?light");
+		this.deleteButton = this.AddToolbarButton("Delete", "mono/delete.svg?light");
+		this.downloadButton = this.AddToolbarButton("Delete", "mono/download.svg?light");
+
+		this.createButton.disabled = true;
+		this.deleteButton.disabled = true;
+		this.downloadButton.disabled = true;
+	}
+}
\ No newline at end of file
diff --git a/Protest/Front/keyboardtester.js b/Protest/Front/keyboardtester.js
index b28dcd9a..8b28ec1c 100644
--- a/Protest/Front/keyboardtester.js
+++ b/Protest/Front/keyboardtester.js
@@ -742,7 +742,7 @@ class KeyboardTester extends Window {
 
 		let gamepads = navigator.getGamepads();
 
-		for (var j = 0; j < gamepads.length; j++) {
+		for (let j=0; j<gamepads.length; j++) {
 			let gamepad = gamepads[j];
 			if (!gamepad) continue;
 
diff --git a/Protest/Front/loader.js b/Protest/Front/loader.js
index ebbe0dac..124ad0f9 100644
--- a/Protest/Front/loader.js
+++ b/Protest/Front/loader.js
@@ -120,6 +120,8 @@ const LOADER = {
 		"cameratester.js",
 		"screencapture.js",
 		"automation.js",
+		"tasks.js",
+		"certificates.js",
 		"backup.js",
 		"log.js"
 	],
@@ -339,6 +341,8 @@ const LOADER = {
 		case "Personalize"  : return new Personalize(command.args);
 		case "AccessControl": return new AccessControl(command.args);
 		case "Automation"   : return new Automation(command.args);
+		case "Tasks"        : return new Tasks(command.args);
+		case "Certificates" : return new Certificates(command.args);
 		case "Backup"       : return new Backup(command.args);
 		case "Log"          : return new Log(command.args);
 		}
diff --git a/Protest/Front/mono/certificate.svg b/Protest/Front/mono/certificate.svg
new file mode 100644
index 00000000..215b473d
--- /dev/null
+++ b/Protest/Front/mono/certificate.svg
@@ -0,0 +1,6 @@
+<svg width="48px" height="48px" version="1.1" xmlns="http://www.w3.org/2000/svg">
+<g fill="#202020">
+<path d="M32.015,48l-26.271,-0c-1.108,-0 -2.019,-0.912 -2.019,-2.02l-0,-43.96c-0,-1.108 0.911,-2.02 2.019,-2.02l33.522,0c1.108,0 2.02,0.912 2.02,2.02l-0,20.769l-0.342,-0.042l-0.856,-0.021l-0.347,-0.783c-0,-0.001 -0.18,-0.318 -0.18,-0.318l-0.233,-0.272l-0.274,-0.218l-0.307,-0.161l-0.33,-0.102l-0.348,-0.04l-0.357,0.026l-0.353,0.099l-0.799,0.308l-0.62,-0.591l-0.29,-0.226l-0.319,-0.161l-0.336,-0.096l-0.344,-0.032l-0.345,0.032l-0.336,0.096l-0.319,0.161l-0.289,0.226l-0.62,0.591l-0.8,-0.309l-0.002,-0l-0.353,-0.097l-0.356,-0.027l-0.347,0.04l-0.33,0.103l-0.305,0.161l-0.274,0.217l-0.233,0.27l-0.181,0.319l-0.347,0.784l-0.858,0.021c0.001,0 -0.363,0.045 -0.363,0.045l-0.34,0.111l-0.306,0.171l-0.266,0.221l-0.221,0.266l-0.17,0.306l-0.112,0.339l-0.044,0.364l-0.021,0.857l-0.783,0.347c-0.001,0 -0.319,0.18 -0.319,0.18l-0.271,0.233l-0.218,0.274l-0.161,0.306l-0.103,0.331l-0.04,0.348l0.027,0.357l0.098,0.353l0.309,0.799l-0.592,0.62l-0.225,0.289l-0.162,0.319l-0.096,0.337l-0.031,0.344l0.031,0.345l0.096,0.336l0.162,0.319l0.225,0.289l0.592,0.62l-0.309,0.8l-0.001,0.002l-0.097,0.352l-0.026,0.356l0.04,0.348l0.102,0.33l0.161,0.305l0.217,0.274l0.271,0.233l0.318,0.181l0.785,0.347l0.021,0.857l0.044,0.364l0.112,0.34l0.17,0.306l0.221,0.266l0.266,0.221l0.306,0.17l0.34,0.111l0.288,0.036l-2.104,5.441c-0,0.003 -0.09,0.48 -0.09,0.48l0.106,0.52l0.283,0.419l0.42,0.284l0.519,0.106l0.277,-0.029l0.264,-0.086l1.971,-0.872l0.873,1.973c0.002,0.002 0.205,0.326 0.205,0.326l0.284,0.25l0.343,0.16l0.383,0.056Zm9.271,-3.456l-0,1.436c-0,1.108 -0.912,2.02 -2.019,2.02l-7.252,-0l0.399,-0.061l0.353,-0.172l0.288,-0.269l0.2,-0.35l2.238,-5.787l0.074,-0.038l1.873,4.844c0.001,0.002 0.199,0.348 0.199,0.348l0.287,0.267l0.352,0.171l0.398,0.061l0.381,-0.056l0.342,-0.159l0.284,-0.249l0.205,-0.327l0.85,-1.921l0.548,0.242Zm-22.359,-22.234c-0,-0.322 -0.262,-0.584 -0.584,-0.584l-10.014,0c-0.322,0 -0.584,0.262 -0.584,0.584l0,1.167c0,0.322 0.262,0.583 0.584,0.583l10.014,0c0.322,0 0.584,-0.261 0.584,-0.583l-0,-1.167Zm13.93,-10.815c0,-0.322 -0.261,-0.584 -0.583,-0.584l-23.945,0c-0.322,0 -0.584,0.262 -0.584,0.584l0,1.167c0,0.322 0.262,0.584 0.584,0.584l23.945,-0c0.322,-0 0.583,-0.262 0.583,-0.584l0,-1.167Zm0,5.407c0,-0.322 -0.261,-0.583 -0.583,-0.583l-23.945,-0c-0.322,-0 -0.584,0.261 -0.584,0.583l0,1.168c0,0.322 0.262,0.583 0.584,0.583l23.945,0c0.322,0 0.583,-0.261 0.583,-0.583l0,-1.168Zm0,-10.814c0,-0.322 -0.261,-0.584 -0.583,-0.584l-23.945,0c-0.322,0 -0.584,0.262 -0.584,0.584l0,1.167c0,0.322 0.262,0.583 0.584,0.583l23.945,0c0.322,0 0.583,-0.261 0.583,-0.583l0,-1.167Zm-12.849,32.444c0,-0.322 -0.261,-0.584 -0.583,-0.584l-10.015,0c-0.322,0 -0.583,0.262 -0.583,0.584l-0,1.167c-0,0.322 0.261,0.584 0.583,0.584l10.015,-0c0.322,-0 0.583,-0.262 0.583,-0.584l0,-1.167Z"/>
+<path d="M27.615,37.132l-0.026,-1.043c-0.007,-0.304 -0.19,-0.578 -0.467,-0.701l-0.955,-0.422c-0.381,-0.17 -0.565,-0.614 -0.415,-1.003l0.376,-0.974c0.109,-0.284 0.045,-0.606 -0.165,-0.827l-0.72,-0.755c-0.288,-0.302 -0.288,-0.783 0,-1.086l0.72,-0.755c0.21,-0.22 0.274,-0.542 0.165,-0.826l-0.376,-0.974c-0.151,-0.39 0.033,-0.835 0.415,-1.003l0.955,-0.423c0.278,-0.123 0.46,-0.396 0.467,-0.7l0.026,-1.044c0.01,-0.417 0.35,-0.758 0.767,-0.768l1.044,-0.025c0.304,-0.008 0.577,-0.19 0.701,-0.468l0.422,-0.954c0.17,-0.381 0.614,-0.566 1.003,-0.416l0.974,0.376c0.284,0.11 0.606,0.046 0.826,-0.164l0.756,-0.72c0.302,-0.288 0.783,-0.288 1.085,-0l0.756,0.72c0.22,0.21 0.542,0.274 0.826,0.164l0.974,-0.376c0.39,-0.151 0.834,0.034 1.003,0.416l0.423,0.954c0.123,0.278 0.395,0.461 0.7,0.468l1.044,0.025c0.42,0.01 0.757,0.348 0.768,0.768l0.025,1.044c0.007,0.304 0.189,0.577 0.468,0.7l0.954,0.423c0.384,0.17 0.567,0.611 0.416,1.003l-0.376,0.974c-0.11,0.284 -0.046,0.606 0.164,0.826l0.72,0.755c0.29,0.305 0.29,0.782 0,1.086l-0.72,0.755c-0.21,0.221 -0.274,0.543 -0.164,0.827l0.376,0.974c0.15,0.389 -0.034,0.834 -0.416,1.003l-0.954,0.422c-0.279,0.123 -0.461,0.396 -0.468,0.701l-0.025,1.043c-0.009,0.351 -0.251,0.648 -0.576,0.739l2.313,5.983c0.011,0.028 0.016,0.058 0.016,0.088c0,0.133 -0.109,0.243 -0.242,0.243c-0.035,-0 -0.068,-0.007 -0.099,-0.021l-2.69,-1.19c-0.031,-0.014 -0.065,-0.021 -0.099,-0.021c-0.096,-0 -0.183,0.057 -0.222,0.145l-1.19,2.69c-0.039,0.088 -0.126,0.145 -0.222,0.145c-0.101,-0 -0.191,-0.062 -0.227,-0.156l-2.43,-6.285c-0.025,0.019 -0.048,0.038 -0.07,0.059l-0.756,0.721c-0.146,0.139 -0.334,0.212 -0.522,0.217l-2.425,6.271c-0.037,0.095 -0.129,0.159 -0.231,0.159c-0.097,-0 -0.186,-0.059 -0.226,-0.148l-1.21,-2.737c-0.04,-0.089 -0.129,-0.147 -0.226,-0.147c-0.035,0 -0.069,0.007 -0.101,0.021l-2.736,1.211c-0.032,0.014 -0.066,0.021 -0.101,0.021c-0.135,0 -0.247,-0.111 -0.247,-0.247c0,-0.031 0.006,-0.061 0.017,-0.09l2.618,-6.771c-0.112,-0.065 -0.242,-0.103 -0.377,-0.107l-1.044,-0.025c-0.417,-0.01 -0.757,-0.35 -0.767,-0.768Zm6.822,-12.824c-3.504,-0 -6.348,2.844 -6.348,6.348c-0,3.504 2.844,6.348 6.348,6.348c3.504,0 6.349,-2.844 6.349,-6.348c-0,-3.504 -2.845,-6.348 -6.349,-6.348Z"/>
+<path d="M34.704,26.889l0.971,1.969c0.044,0.088 0.128,0.149 0.225,0.163l2.173,0.316c0.145,0.021 0.254,0.148 0.254,0.295c-0,0.08 -0.032,0.156 -0.089,0.212l-1.573,1.533c-0.07,0.068 -0.102,0.167 -0.086,0.264l0.371,2.164c0.003,0.017 0.005,0.033 0.005,0.05c-0,0.164 -0.135,0.298 -0.298,0.298c-0.048,-0 -0.096,-0.012 -0.139,-0.034l-1.944,-1.022c-0.086,-0.045 -0.19,-0.045 -0.277,-0l-1.943,1.022c-0.043,0.022 -0.091,0.034 -0.139,0.034c-0.163,-0 -0.298,-0.134 -0.298,-0.298c0,-0.017 0.002,-0.033 0.005,-0.05l0.371,-2.164c0.016,-0.097 -0.016,-0.196 -0.086,-0.264l-1.573,-1.533c-0.057,-0.056 -0.089,-0.132 -0.089,-0.212c-0,-0.147 0.109,-0.274 0.254,-0.295l2.173,-0.316c0.097,-0.014 0.181,-0.075 0.225,-0.163l0.971,-1.969c0.051,-0.101 0.155,-0.166 0.268,-0.166c0.113,0 0.217,0.065 0.268,0.166Z"/>
+</g></svg>
\ No newline at end of file
diff --git a/Protest/Front/mono/task.svg b/Protest/Front/mono/task.svg
new file mode 100644
index 00000000..7b2266fe
--- /dev/null
+++ b/Protest/Front/mono/task.svg
@@ -0,0 +1,3 @@
+<svg width="48px" height="48px" version="1.1" xmlns="http://www.w3.org/2000/svg">
+<path fill="#202020" d="M44.568,3.428c1.889,0 3.432,1.532 3.432,3.426l0,34.289c0,1.892 -1.542,3.428 -3.432,3.428l-41.139,0c-1.893,0 -3.429,-1.536 -3.429,-3.428l0,-34.289c0,-1.894 1.536,-3.426 3.429,-3.426l41.139,0Zm-22.589,37.717l22.589,0l0,-29.11l-41.139,0l0,29.11l13.356,0c-2.395,-2.709 -5.154,-5.648 -8.287,-8.826c-0.78,-0.84 -0.732,-2.154 0.107,-2.935l3.042,-2.827c0.839,-0.781 2.154,-0.733 2.934,0.106l4.061,4.369c4.966,-5.726 10.395,-11.318 16.613,-16.686c0.821,-0.784 2.354,-0.583 2.864,0.272l1.609,3.299c0.598,0.997 0.338,2.864 -0.437,3.669c-5.902,4.453 -11.648,10.862 -17.312,19.559Zm20.721,-30.994c1.284,0 2.325,-1.041 2.325,-2.325c0,-1.284 -1.041,-2.326 -2.325,-2.326c-1.284,0 -2.325,1.041 -2.325,2.325c0,1.284 1.041,2.326 2.325,2.326Z"/>
+</svg>
\ No newline at end of file
diff --git a/Protest/Front/tasks.js b/Protest/Front/tasks.js
new file mode 100644
index 00000000..8db75f4c
--- /dev/null
+++ b/Protest/Front/tasks.js
@@ -0,0 +1,116 @@
+class Tasks extends List {
+	constructor() {
+		super();
+
+		this.AddCssDependencies("list.css");
+
+		const columns = ["name", "status", "progress"];
+		this.SetupColumns(columns);
+
+		this.columnsOptions.style.display = "none";
+
+		this.SetTitle("Tasks");
+		this.SetIcon("mono/task.svg");
+
+		this.SetupToolbar();
+		this.createButton = this.AddToolbarButton("Create task", "mono/add.svg?light");
+		this.deleteButton = this.AddToolbarButton("Delete", "mono/delete.svg?light");
+		this.toolbar.appendChild(this.AddToolbarSeparator());
+		this.startButton = this.AddToolbarButton("Start", "mono/play.svg?light");
+		this.pauseButton = this.AddToolbarButton("Pause", "mono/pause.svg?light");
+		this.stopButton  = this.AddToolbarButton("Stop", "mono/stop.svg?light");
+
+		this.createButton.disabled = true; //TODO: <-
+		this.deleteButton.disabled = true;
+		this.startButton.disabled = true;
+		this.pauseButton.disabled = true;
+		this.stopButton.disabled = true;
+
+		this.ListTasks();
+	}
+
+	async ListTasks() {
+		try {
+			const response = await fetch("tasks/list");
+			if (response.status !== 200) LOADER.HttpErrorHandler(response.status);
+
+			const json = await response.json();
+			if (json.error) throw (json.error);
+
+			this.link = json;
+
+			for (let task in this.link.data) {
+				const element =  document.createElement("div");
+				element.id = task;
+				element.className = "list-element";
+				this.list.appendChild(element);
+
+				this.InflateElement(element, this.link.data[task]);
+
+				element.addEventListener("click", event=>this.Entry_onclick(event));
+			}
+		}
+		catch (ex) {
+			this.ConfirmBox(ex, true, "mono/error.svg");
+		}
+	}
+
+	InflateElement(element, entry) { //overrides
+		let icon;
+		switch (entry.name.v.toLowerCase()) {
+		case "lifeline": icon = "mono/lifeline.svg"; break;
+		case "lastseen": icon = "mono/lastseen.svg"; break;
+		case "watchdog": icon = "mono/watchdog.svg"; break;
+		case "issues"  : icon = "mono/issues.svg"; break;
+		case "fetch"   : icon = "mono/fetch.svg"; break;
+		default        : icon = "mono/task.svg"; break;
+		}
+
+		const iconBox = document.createElement("div");
+		iconBox.className = "list-element-icon";
+		iconBox.style.backgroundImage = `url(${icon})`;
+		element.appendChild(iconBox);
+
+		super.InflateElement(element, entry, null);
+
+		if (!element.ondblclick) {
+			element.ondblclick = event=> {
+				event.stopPropagation();
+				this.Entry_ondblclick(event);
+			};
+		}
+	}
+
+	Entry_onclick(event) {
+		this.deleteButton.disabled = true;
+		this.startButton.disabled = true;
+		this.stopButton.disabled = true;
+
+		if (!(this.args.select in this.link.data)) {
+			return;
+		}
+
+		if (this.link.data[this.args.select].name.v.toLowerCase() === "lifeline" ||
+			this.link.data[this.args.select].name.v.toLowerCase() === "watchdog" ||
+			this.link.data[this.args.select].name.v.toLowerCase() === "fetch") {
+			this.deleteButton.disabled = true;
+		}
+		else {
+			//this.deleteButton.disabled = false; //TODO: <-
+		}
+
+		if (this.link.data[this.args.select].status.v.toLowerCase() === "stopped") {
+			//this.startButton.disabled = false;
+			this.stopButton.disabled = true;
+		}
+		else {
+			this.startButton.disabled = true;
+			//this.stopButton.disabled = false;
+		}
+
+	}
+
+	Entry_ondblclick(event) {
+
+	}
+}
\ No newline at end of file
diff --git a/Protest/Front/ui.js b/Protest/Front/ui.js
index f7bd0f1d..7bafd0a7 100644
--- a/Protest/Front/ui.js
+++ b/Protest/Front/ui.js
@@ -346,7 +346,9 @@ const MENU = {
 		{ t:"RBAC",           i:"mono/rbac.svg?light",        g:"manage", h:false, f:()=> new AccessControl("rbac"),     k:"rbac acl role based users access control list permissions" },
 		{ t:"Open sessions",  i:"mono/hourglass.svg?light",   g:"manage", h:true,  f:()=> new AccessControl("sessions"), k:"alive connections" },
 
+		{ t:"Tasks",          i:"mono/task.svg?light",        g:"manage", h:false, f:()=> new Tasks(), k:"" },
 		{ t:"Automation",     i:"mono/automation.svg?light",  g:"manage", h:false, f:()=> new Automation(), k:"" },
+		{ t:"Certificates",   i:"mono/certificate.svg?light", g:"manage", h:false, f:()=> new Certificates(), k: "" },
 
 		{ t:"Backup",         i:"mono/backup.svg?light",      g:"manage", h:false, f:()=> new Backup() },
 		{ t:"Log",            i:"mono/log.svg?light",         g:"manage", h:false, f:()=> new Log() },
diff --git a/Protest/Http/Auth.cs b/Protest/Http/Auth.cs
index 2178b5b0..183a90bf 100644
--- a/Protest/Http/Auth.cs
+++ b/Protest/Http/Auth.cs
@@ -126,12 +126,13 @@ public static bool AttemptAuthentication(HttpListenerContext ctx, out string ses
 
     public static string GrandAccess(HttpListenerContext ctx, string username) {
         string sessionId = Cryptography.RandomStringGenerator(64);
+        string userHostName = ctx.Request.UserHostName.Split(':')[0];
 
-        //RFC6265: no port allowed in the Domain attribute
+        //RFC6265: no port in the "Domain" attribute
 #if DEBUG
-        ctx.Response.AddHeader("Set-Cookie", $"sessionid={sessionId}; Domain={ctx.Request.UserHostName.Split(':')[0]}; Max-age=604800; HttpOnly; SameSite=Strict;");
+        ctx.Response.AddHeader("Set-Cookie", $"sessionid={sessionId}; Domain={userHostName}; Max-age=604800; HttpOnly; SameSite=Strict;");
 #else
-        ctx.Response.AddHeader("Set-Cookie", $"sessionid={sessionId}; Domain={ctx.Request.UserHostName.Split(':')[0]}; Max-age=604800; HttpOnly; SameSite=Strict; Secure;");
+        ctx.Response.AddHeader("Set-Cookie", $"sessionid={sessionId}; Domain={userHostName}; Max-age=604800; HttpOnly; SameSite=Strict; Secure;");
 #endif
 
         Session newSession = new Session() {
diff --git a/Protest/Http/Cache.cs b/Protest/Http/Cache.cs
index 72e86974..d6b764fa 100644
--- a/Protest/Http/Cache.cs
+++ b/Protest/Http/Cache.cs
@@ -292,11 +292,16 @@ private Entry ConstructEntry(string name, byte[] bytes, bool isGzipped, string e
         headers.Add(new KeyValuePair<string, string>("Last-Modified", birthdate));
         headers.Add(new KeyValuePair<string, string>("Referrer-Policy", "no-referrer"));
 
+        if (name == "/" || name == "/login") {
+            headers.Add(new KeyValuePair<string, string>("Cache-Control", "no-store"));
+        }
+        else {
 #if DEBUG
-        headers.Add(new KeyValuePair<string, string>("Cache-Control", "no-store"));
+            headers.Add(new KeyValuePair<string, string>("Cache-Control", "no-store"));
 #else
-        headers.Add(new KeyValuePair<string, string>("Cache-Control", name == "//" ? "no-store" : $"max-age={CACHE_CONTROL_MAX_AGE}"));
+            headers.Add(new KeyValuePair<string, string>("Cache-Control", $"max-age={CACHE_CONTROL_MAX_AGE}"));
 #endif
+        }
 
         Entry entry = new Entry() {
             bytes = raw,
diff --git a/Protest/Http/Listener.cs b/Protest/Http/Listener.cs
index c78b133f..82bc0cf6 100644
--- a/Protest/Http/Listener.cs
+++ b/Protest/Http/Listener.cs
@@ -47,15 +47,15 @@ private static readonly Dictionary<string, Func<HttpListenerContext, Dictionary<
         { "/db/gandalf",          (ctx, parameters, username) => Tools.PasswordStrength.GandalfThreadWrapper(ctx, username) },
 
         { "/fetch/networkinfo",   (ctx, parameters, username) => Protocols.Kerberos.NetworkInfo() },
-        { "/fetch/singledevice",  (ctx, parameters, username) => Tasks.Fetch.SingleDeviceSerialize(parameters, true) },
-        { "/fetch/singleuser",    (ctx, parameters, username) => Tasks.Fetch.SingleUserSerialize(parameters) },
-        { "/fetch/status",        (ctx, parameters, username) => Tasks.Fetch.Status() },
-        { "/fetch/devices",       (ctx, parameters, username) => Tasks.Fetch.DevicesTask(ctx, parameters, username) },
-        { "/fetch/users",         (ctx, parameters, username) => Tasks.Fetch.UsersTask(parameters, username) },
-        { "/fetch/approve",       (ctx, parameters, username) => Tasks.Fetch.ApproveLastTask(parameters, username) },
-        { "/fetch/abort",         (ctx, parameters, username) => Tasks.Fetch.CancelTask(username) },
-        { "/fetch/discard",       (ctx, parameters, username) => Tasks.Fetch.DiscardLastTask(username) },
-        { "/fetch/import",        (ctx, parameters, username) => Tasks.Import.ImportTask(parameters, username) },
+        { "/fetch/singledevice",  (ctx, parameters, username) => Workers.Fetch.SingleDeviceSerialize(parameters, true) },
+        { "/fetch/singleuser",    (ctx, parameters, username) => Workers.Fetch.SingleUserSerialize(parameters) },
+        { "/fetch/status",        (ctx, parameters, username) => Workers.Fetch.Status() },
+        { "/fetch/devices",       (ctx, parameters, username) => Workers.Fetch.DevicesTask(ctx, parameters, username) },
+        { "/fetch/users",         (ctx, parameters, username) => Workers.Fetch.UsersTask(parameters, username) },
+        { "/fetch/approve",       (ctx, parameters, username) => Workers.Fetch.ApproveLastTask(parameters, username) },
+        { "/fetch/abort",         (ctx, parameters, username) => Workers.Fetch.CancelTask(username) },
+        { "/fetch/discard",       (ctx, parameters, username) => Workers.Fetch.DiscardLastTask(username) },
+        { "/fetch/import",        (ctx, parameters, username) => Workers.Import.ImportTask(parameters, username) },
 
         { "/manage/device/wol",       (ctx, parameters, username) => Protocols.Wol.Wakeup(parameters) },
         { "/manage/device/shutdown",  (ctx, parameters, username) => OperatingSystem.IsWindows() ? Protocols.Wmi.Wmi_Win32PowerHandler(parameters, 12) : null },
@@ -82,20 +82,20 @@ private static readonly Dictionary<string, Func<HttpListenerContext, Dictionary<
         { "/debit/templates",         (ctx, parameters, username) => Tools.DebitNotes.ListTemplate() },
         { "/debit/banners",           (ctx, parameters, username) => Tools.DebitNotes.ListBanners() },
 
-        { "/watchdog/list",           (ctx, parameters, username) => Tasks.Watchdog.List() },
-        { "/watchdog/view",           (ctx, parameters, username) => Tasks.Watchdog.View(parameters) },
-        { "/watchdog/create",         (ctx, parameters, username) => Tasks.Watchdog.Create(ctx, parameters, username) },
-        { "/watchdog/delete",         (ctx, parameters, username) => Tasks.Watchdog.Delete(parameters, username) },
+        { "/watchdog/list",           (ctx, parameters, username) => Workers.Watchdog.List() },
+        { "/watchdog/view",           (ctx, parameters, username) => Workers.Watchdog.View(parameters) },
+        { "/watchdog/create",         (ctx, parameters, username) => Workers.Watchdog.Create(ctx, parameters, username) },
+        { "/watchdog/delete",         (ctx, parameters, username) => Workers.Watchdog.Delete(parameters, username) },
 
-        { "/notifications/list",      (ctx, parameters, username) => Tasks.Watchdog.ListNotifications() },
-        { "/notifications/save",      (ctx, parameters, username) => Tasks.Watchdog.SaveNotifications(ctx, username) },
+        { "/notifications/list",      (ctx, parameters, username) => Workers.Watchdog.ListNotifications() },
+        { "/notifications/save",      (ctx, parameters, username) => Workers.Watchdog.SaveNotifications(ctx, username) },
 
-        { "/lifeline/ping/view",       (ctx, parameters, username) => Tasks.Lifeline.ViewPing(parameters) },
-        { "/lifeline/memory/view",     (ctx, parameters, username) => Tasks.Lifeline.ViewFile(parameters, "memory") },
-        { "/lifeline/cpu/view",        (ctx, parameters, username) => Tasks.Lifeline.ViewFile(parameters, "cpu") },
-        { "/lifeline/disk/view",       (ctx, parameters, username) => Tasks.Lifeline.ViewFile(parameters, "disk") },
-        { "/lifeline/diskusage/view",  (ctx, parameters, username) => Tasks.Lifeline.ViewFile(parameters, "diskusage") },
-        { "/lifeline/printcount/view", (ctx, parameters, username) => Tasks.Lifeline.ViewFile(parameters, "printcount") },
+        { "/lifeline/ping/view",       (ctx, parameters, username) => Workers.Lifeline.ViewPing(parameters) },
+        { "/lifeline/memory/view",     (ctx, parameters, username) => Workers.Lifeline.ViewFile(parameters, "memory") },
+        { "/lifeline/cpu/view",        (ctx, parameters, username) => Workers.Lifeline.ViewFile(parameters, "cpu") },
+        { "/lifeline/disk/view",       (ctx, parameters, username) => Workers.Lifeline.ViewFile(parameters, "disk") },
+        { "/lifeline/diskusage/view",  (ctx, parameters, username) => Workers.Lifeline.ViewFile(parameters, "diskusage") },
+        { "/lifeline/printcount/view", (ctx, parameters, username) => Workers.Lifeline.ViewFile(parameters, "printcount") },
 
         { "/tools/bulkping",          (ctx, parameters, username) => Protocols.Icmp.BulkPing(parameters) },
         { "/tools/dnslookup",         (ctx, parameters, username) => Protocols.Dns.Resolve(parameters) },
@@ -118,7 +118,7 @@ private static readonly Dictionary<string, Func<HttpListenerContext, Dictionary<
         { "/rbac/sessions",            (ctx, parameters, username) => Auth.ListSessions() },
         { "/rbac/kickuser",            (ctx, parameters, username) => Auth.KickUser(parameters, username) },
 
-        { "/automation/list",          (ctx, parameters, username) => Tasks.Automation.ListTasks() },
+        { "/tasks/list",               (ctx, parameters, username) => Workers.Tasks.ListTasks() },
 
         { "/config/checkupdate",       (ctx, parameters, username) => Update.CheckLatestRelease() },
 
@@ -195,15 +195,21 @@ private void ListenerCallback(IAsyncResult result) {
         HttpListenerContext ctx = listener.EndGetContext(result);
 
         //Cross Site Request Forgery protection
-        if (ctx.Request.UrlReferrer != null) {
-            if (!String.Equals(ctx.Request.UrlReferrer.Host, ctx.Request.UserHostName.Split(':')[0], StringComparison.Ordinal) ||
-                Uri.IsWellFormedUriString(ctx.Request.UrlReferrer.Host, UriKind.Absolute)) {
+        if (ctx.Request.UrlReferrer is not null) {
+            string userHostName = ctx.Request.UserHostName;
+            string referrerHost = ctx.Request.UrlReferrer.Host;
+            int    referrerPort = ctx.Request.UrlReferrer.Port;
+
+            bool isSameHost = String.Equals(referrerHost, userHostName, StringComparison.Ordinal);
+            bool isWellFormedUri = Uri.IsWellFormedUriString(referrerHost, UriKind.Absolute);
+
+            if (!isSameHost && !String.Equals($"{referrerHost}:{referrerPort}", userHostName, StringComparison.Ordinal) || isWellFormedUri) {
                 ctx.Response.StatusCode = 418; //I'm a teapot
                 ctx.Response.Close();
                 return;
             }
 
-            UriHostNameType type = Uri.CheckHostName(ctx.Request.UrlReferrer.Host);
+            UriHostNameType type = Uri.CheckHostName(referrerHost);
             if (type != UriHostNameType.Dns && type != UriHostNameType.IPv4 && type != UriHostNameType.IPv6) {
                 ctx.Response.StatusCode = 418; //I'm a teapot
                 ctx.Response.Close();
@@ -213,16 +219,22 @@ private void ListenerCallback(IAsyncResult result) {
 
         //handle X-Forwarded-For header
         if (Configuration.accept_xff_header) {
-            string xff = ctx.Request.Headers.Get("X-Forwarded-For");
-            if (IPAddress.TryParse(xff, out IPAddress xffIp)) {
-                if (!IPAddress.IsLoopback(xffIp) &&
-                    (Configuration.accept_xff_only_from is null || IPAddress.Equals(ctx.Request.RemoteEndPoint.Address, Configuration.accept_xff_only_from))) {
-                    ctx.Request.RemoteEndPoint.Address = xffIp;
-                }
-                else {
-                    ctx.Response.StatusCode = 418; //I'm a teapot
-                    ctx.Response.Close();
-                    return;
+            string xffHeader = ctx.Request.Headers.Get("X-Forwarded-For");
+
+            if (xffHeader != null) {
+                int delimiterIndex = xffHeader.LastIndexOf(',');
+                if (delimiterIndex > 0) { xffHeader.Substring(delimiterIndex + 1).Trim(); }
+
+                if (IPAddress.TryParse(xffHeader, out IPAddress xffIp)) {
+                    if (!IPAddress.IsLoopback(xffIp) &&
+                        (Configuration.accept_xff_only_from is null || IPAddress.Equals(ctx.Request.RemoteEndPoint.Address, Configuration.accept_xff_only_from))) {
+                        ctx.Response.StatusCode = 418; //I'm a teapot
+                        ctx.Response.Close();
+                        return;
+                    }
+                    else {
+                        ctx.Request.RemoteEndPoint.Address = xffIp;
+                    }
                 }
             }
         }
@@ -243,7 +255,7 @@ private void ListenerCallback(IAsyncResult result) {
             ctx.Response.Close();
             return;
         }
-
+        
         if (String.Equals(path, "/contacts", StringComparison.Ordinal)) {
             byte[] buffer = DatabaseInstances.users.SerializeContacts();
             ctx.Response.StatusCode = (int)HttpStatusCode.OK;
diff --git a/Protest/Http/ReverseProxy.cs b/Protest/Http/ReverseProxy.cs
new file mode 100644
index 00000000..9f4419c4
--- /dev/null
+++ b/Protest/Http/ReverseProxy.cs
@@ -0,0 +1,155 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Net;
+using System.Text;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.AspNetCore.Server.Kestrel.Core;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.Hosting;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+using Yarp.ReverseProxy.Configuration;
+using Yarp.ReverseProxy.Transforms;
+using Protest.Protocols;
+using System.Threading;
+
+namespace Protest.Http;
+
+internal sealed class ReverseProxy : IDisposable {
+    private IHostBuilder hostBuilder;
+    private IHost host;
+
+    public ReverseProxy(IPEndPoint listener, IPEndPoint destination, string certificate = null, string password = null)
+        : this(listener, new IPEndPoint[] { destination }, certificate, password) {
+    }
+
+    public ReverseProxy(IPEndPoint listener, IPEndPoint[] destinations, string certificate = null, string password = null) {
+        int counter = 0;
+        Dictionary<string, DestinationConfig> dictionary = destinations.ToDictionary(
+            key=> $"d{++counter}",
+            value => new DestinationConfig { Address = $"http://{value.Address}:{value.Port}" }
+            );
+
+        ClusterConfig cluster = new ClusterConfig {
+            ClusterId = "c1",
+            //LoadBalancingPolicy = "",
+            Destinations = dictionary
+        };
+
+        Initialize(listener, cluster, certificate, password);
+    }
+
+    public ReverseProxy(IPEndPoint listener, ClusterConfig cluster, string certificate = null, string password = null) {
+        Initialize(listener, cluster, certificate, password);
+    }
+
+    private bool Initialize(IPEndPoint listener, ClusterConfig cluster, string certificate, string password) {
+        hostBuilder = Host.CreateDefaultBuilder();
+
+        hostBuilder.ConfigureLogging(logger => this.ConfigureLogging(logger));
+
+        hostBuilder.ConfigureWebHostDefaults(webHost => {
+            webHost.ConfigureKestrel(options => this.ConfigureKestrel(options, listener, certificate, password));
+            webHost.Configure(application => this.Configure(application));
+
+            RouteConfig[] routes = new RouteConfig[] {
+                new RouteConfig {
+                    RouteId = "r1",
+                    ClusterId = "c1",
+                    Match = new RouteMatch { Path = "/{**all}" }
+                }
+            };
+
+            webHost.ConfigureServices(services => this.ConfigureServices(services, routes, new ClusterConfig[] { cluster }));
+        });
+
+        string destinations = cluster.Destinations.Values
+            .Select(o=>o.Address.ToString())
+            .Aggregate((destination, accumulator)=> String.IsNullOrEmpty(accumulator) ? destination : $"{accumulator}, {destination}");
+        
+        Console.WriteLine($"Start proxying from {listener} to {destinations}");
+
+        this.host = hostBuilder.Build();
+        this.host.Run();
+
+        //Console.WriteLine($"Stop proxying from {listener} to {destinations}");
+
+        return true;
+    }
+
+    public void Stop() {
+        this.host?.StopAsync();
+        this.host = null;
+    }
+
+    private void ConfigureLogging(ILoggingBuilder logger) {
+        logger.ClearProviders();
+        //logger.AddConsole();
+        //logger.SetMinimumLevel(LogLevel.Warning);
+        //logger.AddFilter("Microsoft", LogLevel.Warning);
+        //logger.AddFilter("Microsoft.Hosting.Lifetime", LogLevel.Information);
+        //logger.AddFilter("Yarp.ReverseProxy", LogLevel.Warning);
+    }
+
+    private void ConfigureKestrel(KestrelServerOptions options, IPEndPoint endPoint, string certificate = null, string password = null) {
+        if (String.IsNullOrEmpty(certificate)) {
+            options.Listen(endPoint);
+        }
+        else if (String.IsNullOrEmpty(password)) {
+            options.Listen(endPoint, options => options.UseHttps(certificate));
+        }
+        else {
+            options.Listen(endPoint, options => options.UseHttps(certificate, password));
+        }
+    }
+
+    private void Configure(IApplicationBuilder application) {
+        application.UseRouting();
+        application.UseEndpoints(endpoints => endpoints.MapReverseProxy());
+    }
+
+    private void ConfigureServices(IServiceCollection services, IReadOnlyList<RouteConfig> routes, IReadOnlyList<ClusterConfig> clusters) {
+        services.AddSingleton<IHostLifetime, CustomHostLifetime>();
+
+        IReverseProxyBuilder rpBuilder = services.AddReverseProxy();
+
+        rpBuilder.LoadFromMemory(routes, clusters);
+
+        rpBuilder.AddTransforms(builderContext => {
+            builderContext.AddRequestTransform(transformContext => {
+                string remoteIpAddress = transformContext.HttpContext.Connection.RemoteIpAddress?.ToString();
+                string existingXForwardedFor = transformContext.HttpContext.Request.Headers["X-Forwarded-For"].ToString();
+                string newXForwardedFor = string.IsNullOrEmpty(existingXForwardedFor) ? remoteIpAddress : $"{existingXForwardedFor}, {remoteIpAddress}";
+
+                transformContext.ProxyRequest.Headers.Remove("X-Forwarded-For");
+                transformContext.ProxyRequest.Headers.Add("X-Forwarded-For", newXForwardedFor);
+                //transformContext.ProxyRequest.Headers.Add("X-Forwarded-Host", transformContext.HttpContext.Request.Host.Value);
+                //transformContext.ProxyRequest.Headers.Add("X-Forwarded-Proto", transformContext.HttpContext.Request.Scheme);
+
+                transformContext.HttpContext.Request.Headers.Remove("Host");
+                //transformContext.ProxyRequest.Headers.Host = transformContext.HttpContext.Request.Headers.Host;
+
+                return ValueTask.CompletedTask;
+            });
+        });
+    }
+
+    public void Dispose() {
+        this.Stop();
+    }
+}
+
+file class CustomHostLifetime : IHostLifetime {
+    /* Custom Host Lifetime: overrides the default behavior,
+     * so the reverse proxy will not terminate on Ctrl+C
+     */
+    public Task StopAsync(CancellationToken cancellationToken) =>
+        Task.CompletedTask;
+
+    public Task WaitForStartAsync(CancellationToken cancellationToken) =>
+         Task.CompletedTask;
+}
\ No newline at end of file
diff --git a/Protest/Misc/Configuration.cs b/Protest/Misc/Configuration.cs
index ef4ba97f..c521f7a8 100644
--- a/Protest/Misc/Configuration.cs
+++ b/Protest/Misc/Configuration.cs
@@ -12,9 +12,11 @@ internal static class Configuration {
     internal static byte[] DB_KEY_IV;
 
     internal static bool force_registry_keys = false;
-    internal static bool accept_xff_header = false;
+    internal static bool accept_xff_header = true;
     internal static IPAddress accept_xff_only_from = null;
 
+    internal static readonly string[] alternativeUriPrefixes = new string[] { "http://127.0.0.1:8080/" };
+
     internal static string front_path = $"{Data.DIR_ROOT}{Data.DELIMITER}front";
     internal static string[] http_prefixes = new string[] { "http://127.0.0.1:8080/" };
 
@@ -138,7 +140,7 @@ internal static void CreateDefault() {
 #endif
 
         builder.AppendLine($"force_registry_keys = {force_registry_keys.ToString().ToLower()}");
-        builder.AppendLine("accept_xff_header = false");
+        builder.AppendLine("accept_xff_header = true");
         builder.AppendLine("#accept_xff_header_only_from = [reverse proxy ip address]");
         builder.AppendLine();
 
diff --git a/Protest/Misc/Data.cs b/Protest/Misc/Data.cs
index 77a8051f..47f5219a 100644
--- a/Protest/Misc/Data.cs
+++ b/Protest/Misc/Data.cs
@@ -35,11 +35,12 @@ public static class Data {
     public static readonly ArraySegment<byte> CODE_OTHER_TASK_IN_PROGRESS = new ArraySegment<byte>("{\"error\":\"another task is already in progress\"}"u8.ToArray());
     public static readonly ArraySegment<byte> CODE_TASK_DONT_EXITSTS      = new ArraySegment<byte>("{\"error\":\"this task no longer exists\"}"u8.ToArray());
 
-    public static readonly string DIR_ROOT      = $"{Directory.GetCurrentDirectory()}{DELIMITER}protest";
-    public static readonly string DIR_KNOWLADGE = $"{DIR_ROOT}{DELIMITER}knowledge";
-    public static readonly string DIR_RBAC      = $"{DIR_ROOT}{DELIMITER}rbac";
-    public static readonly string DIR_LOG       = $"{DIR_ROOT}{DELIMITER}log";
-    public static readonly string DIR_BACKUP    = $"{DIR_ROOT}{DELIMITER}backup";
+    public static readonly string DIR_ROOT         = $"{Directory.GetCurrentDirectory()}{DELIMITER}protest";
+    public static readonly string DIR_KNOWLADGE    = $"{DIR_ROOT}{DELIMITER}knowledge";
+    public static readonly string DIR_RBAC         = $"{DIR_ROOT}{DELIMITER}rbac";
+    public static readonly string DIR_LOG          = $"{DIR_ROOT}{DELIMITER}log";
+    public static readonly string DIR_BACKUP       = $"{DIR_ROOT}{DELIMITER}backup";
+    public static readonly string DIR_CERTIFICATES = $"{DIR_ROOT}{DELIMITER}certificates";
 
     public static readonly string DIR_DATA    = $"{DIR_ROOT}{DELIMITER}data";
     public static readonly string DIR_DEVICES = $"{DIR_DATA}{DELIMITER}devices";
diff --git a/Protest/Program.cs b/Protest/Program.cs
index edbabcd5..72b6d217 100644
--- a/Protest/Program.cs
+++ b/Protest/Program.cs
@@ -21,9 +21,7 @@ Released into the public domain under the GPL v3
 
 namespace Protest;
 internal class Program {
-    internal static readonly string[] alternativeUriPrefixes = new string[] { "http://127.0.0.1:8080/" };
-
-    static void Main(string[] args) {
+        static void Main(string[] args) {
         Console.Title = "Pro-test";
 
         Console.WriteLine(@"   _____");
@@ -63,25 +61,34 @@ static void Main(string[] args) {
         Console.WriteLine(String.Format("{0, -23} {1, -10}", "Loading RBAC", loadRbac ? "OK  " : "Failed"));
 
         Console.Write("Launching tasks");
-        Tasks.Automation.Initialize();
+        Workers.Automation.Initialize();
         Console.WriteLine("         OK");
 
         Console.WriteLine();
 
+        new System.Threading.Thread(() => {
+            Protest.Http.ReverseProxy rp = new Protest.Http.ReverseProxy(
+            new System.Net.IPEndPoint(System.Net.IPAddress.Parse("127.0.0.1"), 8443),
+            new System.Net.IPEndPoint(System.Net.IPAddress.Parse("127.0.0.1"), 8080),
+            $"{Data.DIR_CERTIFICATES}{Data.DELIMITER}certificate.pfx",
+            "your_password"
+            );
+        }).Start();
+
         try {
-            Http.Listener listener = new Http.Listener(Configuration.http_prefixes, Configuration.front_path);
-            Console.WriteLine(listener.ToString());
-            Console.WriteLine();
-            listener.Start();
+            StartServer(Configuration.http_prefixes);
         }
         catch (System.Net.HttpListenerException ex) {
             if (ex.ErrorCode != 5) return; //access denied
             Console.WriteLine("Switching to alternative prefix");
-
-            Http.Listener listener = new Http.Listener(alternativeUriPrefixes, Configuration.front_path);
-            Console.WriteLine(listener.ToString());
-            Console.WriteLine();
-            listener.Start();
+            StartServer(Configuration.alternativeUriPrefixes);
         }
     }
+
+    private static void StartServer(string[] prefixes) {
+        Http.Listener listener = new Http.Listener(prefixes, Configuration.front_path);
+        Console.WriteLine(listener.ToString());
+        Console.WriteLine();
+        listener.Start();
+    }
 }
\ No newline at end of file
diff --git a/Protest/Protest.csproj b/Protest/Protest.csproj
index 78ea4bb8..4b911a78 100644
--- a/Protest/Protest.csproj
+++ b/Protest/Protest.csproj
@@ -42,7 +42,7 @@
     <RunAnalyzersDuringLiveAnalysis>False</RunAnalyzersDuringLiveAnalysis>
     <RunAnalyzersDuringBuild>True</RunAnalyzersDuringBuild>
 
-    <SelfContained>false</SelfContained>
+    <SelfContained>true</SelfContained>
 
     <PublisherName>Pro-test</PublisherName>
     <PublishAot>false</PublishAot>
@@ -52,10 +52,11 @@
   </PropertyGroup>
   
   <ItemGroup>
-    <PackageReference Include="Lextm.SharpSnmpLib" Version="12.5.2" />
-    <PackageReference Include="SSH.NET" Version="2024.0.0" />
     <PackageReference Include="System.DirectoryServices" Version="8.0.0" />
     <PackageReference Include="System.Management" Version="8.0.0" />
+    <PackageReference Include="Yarp.ReverseProxy" Version="2.1.0" />
+    <PackageReference Include="SSH.NET" Version="2024.0.0" />
+    <PackageReference Include="Lextm.SharpSnmpLib" Version="12.5.2" />
   </ItemGroup>
 
   <ItemGroup Condition="'$(Configuration)' == 'RELEASE'">
diff --git a/Protest/Tools/LiveStats.cs b/Protest/Tools/LiveStats.cs
index f632a51a..4c3a881b 100644
--- a/Protest/Tools/LiveStats.cs
+++ b/Protest/Tools/LiveStats.cs
@@ -13,7 +13,7 @@
 using System.Threading.Tasks;
 using System.Timers;
 using Protest.Protocols;
-using Protest.Tasks;
+using Protest.Workers;
 using Lextm.SharpSnmpLib;
 
 namespace Protest.Tools;
diff --git a/Protest/Workers/Automation.cs b/Protest/Workers/Automation.cs
new file mode 100644
index 00000000..c9cb7b15
--- /dev/null
+++ b/Protest/Workers/Automation.cs
@@ -0,0 +1,14 @@
+using System.Collections.Concurrent;
+using System.Text;
+
+namespace Protest.Workers;
+
+internal static class Automation {
+
+    //static readonly ConcurrentDictionary<string, TaskWrapper> tasks = new ConcurrentDictionary<string, TaskWrapper>();
+
+    static public void Initialize() {
+        Watchdog.Initialize();
+        Lifeline.Initialize();
+    }
+}
\ No newline at end of file
diff --git a/Protest/Tasks/Fetch.cs b/Protest/Workers/Fetch.cs
similarity index 99%
rename from Protest/Tasks/Fetch.cs
rename to Protest/Workers/Fetch.cs
index 4195eee2..d4e892bb 100644
--- a/Protest/Tasks/Fetch.cs
+++ b/Protest/Workers/Fetch.cs
@@ -16,7 +16,7 @@
 using Lextm.SharpSnmpLib;
 using Protest.Protocols.Snmp;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal static class Fetch {
 
diff --git a/Protest/Tasks/Import.cs b/Protest/Workers/Import.cs
similarity index 99%
rename from Protest/Tasks/Import.cs
rename to Protest/Workers/Import.cs
index 8f0caa93..8791514a 100644
--- a/Protest/Tasks/Import.cs
+++ b/Protest/Workers/Import.cs
@@ -11,7 +11,7 @@
 using System.Threading.Tasks;
 using Protest.Tools;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal class Import {
     public static byte[] ImportTask(Dictionary<string, string> parameters, string origin) {
diff --git a/Protest/Tasks/Issues.cs b/Protest/Workers/Issues.cs
similarity index 96%
rename from Protest/Tasks/Issues.cs
rename to Protest/Workers/Issues.cs
index 3a9f602e..8a9c57ac 100644
--- a/Protest/Tasks/Issues.cs
+++ b/Protest/Workers/Issues.cs
@@ -5,7 +5,7 @@
 using System.Threading;
 using System.Threading.Tasks;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal static class Issues {
 
diff --git a/Protest/Tasks/LastSeen.cs b/Protest/Workers/LastSeen.cs
similarity index 98%
rename from Protest/Tasks/LastSeen.cs
rename to Protest/Workers/LastSeen.cs
index 98706b7f..3f1c6bbb 100644
--- a/Protest/Tasks/LastSeen.cs
+++ b/Protest/Workers/LastSeen.cs
@@ -3,7 +3,7 @@
 using System.Net.NetworkInformation;
 using System.Threading;
 
-namespace Protest.Tasks {
+namespace Protest.Workers {
     internal static class LastSeen {
 
         private static ConcurrentDictionary<string, object> mutexes = new ConcurrentDictionary<string, object>();
diff --git a/Protest/Tasks/Lifeline.cs b/Protest/Workers/Lifeline.cs
similarity index 99%
rename from Protest/Tasks/Lifeline.cs
rename to Protest/Workers/Lifeline.cs
index 5245383c..8390de28 100644
--- a/Protest/Tasks/Lifeline.cs
+++ b/Protest/Workers/Lifeline.cs
@@ -11,7 +11,7 @@
 using Protest.Tools;
 using Lextm.SharpSnmpLib;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal static partial class Lifeline {
     private const long FOUR_HOURS_IN_TICKS = 144_000_000_000L;
diff --git a/Protest/Tasks/TaskWrapper.cs b/Protest/Workers/TaskWrapper.cs
similarity index 99%
rename from Protest/Tasks/TaskWrapper.cs
rename to Protest/Workers/TaskWrapper.cs
index 807192c7..9e7aff59 100644
--- a/Protest/Tasks/TaskWrapper.cs
+++ b/Protest/Workers/TaskWrapper.cs
@@ -1,7 +1,7 @@
 using System.Threading;
 using System.Threading.Tasks;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal sealed class TaskWrapper : IDisposable {
 
diff --git a/Protest/Tasks/Automation.cs b/Protest/Workers/Tasks.cs
similarity index 80%
rename from Protest/Tasks/Automation.cs
rename to Protest/Workers/Tasks.cs
index 552cae4c..b27b69b6 100644
--- a/Protest/Tasks/Automation.cs
+++ b/Protest/Workers/Tasks.cs
@@ -1,18 +1,12 @@
-using System.Collections.Concurrent;
+using System;
+using System.Collections.Generic;
+using System.Linq;
 using System.Text;
+using System.Threading.Tasks;
 
-namespace Protest.Tasks;
-
-internal static class Automation {
-
-    //static readonly ConcurrentDictionary<string, TaskWrapper> tasks = new ConcurrentDictionary<string, TaskWrapper>();
-
-    static public void Initialize() {
-        Tasks.Watchdog.Initialize();
-        Tasks.Lifeline.Initialize();
-    }
-
-    public static byte[] ListTasks() {
+namespace Protest.Workers; 
+internal class Tasks {
+        public static byte[] ListTasks() {
         StringBuilder builder = new StringBuilder();
 
         builder.Append('{');
@@ -57,4 +51,5 @@ public static byte[] ListTasks() {
 
         return Encoding.UTF8.GetBytes(builder.ToString());
     }
-}
\ No newline at end of file
+
+}
diff --git a/Protest/Tasks/Watchdog.cs b/Protest/Workers/Watchdog.cs
similarity index 99%
rename from Protest/Tasks/Watchdog.cs
rename to Protest/Workers/Watchdog.cs
index d14fa639..32abfe53 100644
--- a/Protest/Tasks/Watchdog.cs
+++ b/Protest/Workers/Watchdog.cs
@@ -13,7 +13,7 @@
 using System.Net.Mail;
 using Protest.Tools;
 
-namespace Protest.Tasks;
+namespace Protest.Workers;
 
 internal static class Watchdog {
     private const long WEEK_IN_TICKS = 6_048_000_000_000L;