With a few dozen end points, VMs, containers, NAS, servers, various OSes etc... what is everyone using for Vuln Scanning or security tools for the home network? I mean I have OPNSense set to pretty restrictive and I block adds but is there something I can use to scan for known vulnerabilities? I would love to run Tenable or Qualys but I can't afford those licenses, is there an open source product that I can self host that is good enough?
Videos
Is there a good vulnerability scanner free for home use? Needs to check Mac, Windows, Windows Server, Proxmox, OpnSense, Linux, IOs, Andeoid and IpadOS for vulnerabilities and suggestions how to fix or make Firewall rules to secure. I have a M365 Fam account and Defender but i‘m not shure if this is possible like it is with Sentinel and Arc.
I run 14+ containers in my homelab and got tired of not knowing what CVEs were lurking in my images. Checking them one by one was never going to be sustainable, so I automated it.
Built a GitHub Actions workflow that runs every Sunday morning. It dynamically discovers all my container repos, pulls every image from docker-compose files, and scans them with Trivy. The scan results then get passed through Claude CLI with context about my environment -- which services are internet-facing, which are LAN-only, which are behind SSO -- so the output is prioritized by actual risk, not just severity scores.
The whole thing generates a GitHub Issue each week with findings bucketed into Needs Attention, Informational, and Clean. When I add a new container project, it gets picked up on the next scan automatically. No config changes needed.
I used Claude as a coding assistant to build it. Wrote up the full process here: https://spaceterran.com/posts/automated-vulnerability-scanning-homelab-containers-ai/
Repo: https://github.com/SpaceTerran/homelab-vulnerability-scanner
Curious how others are tracking vulnerabilities across their homelab containers.
So I am basically looking for a practical guide for a pentest/vulnerability assesment on house with 3rd party domotic systems (such as KNX), own self-hosted server & stuff (QNAP NAS, Plex), and own home automation server (HomeAssistant) with remote access.
At the end, I should be more aware of what the security holes are and what I should try and secure and how. With the results I'll be going to the 3rd party domotic system administrator and be adjusting my own systems as well. I.e., might result in using a VPN for remote access.
Basically, the security test should reveal what can be improved, how, and where it makes sense keeping user comfort (including non-tech users) and security both in mind.
Any practical guides on how to accomplish this?
(Forgot to flair previous)
so, I'm looking to get some insight into my network, and network device security issues, not looking to try and learn pen-testing, not yet, but I'm curious what free security and vulnerability testing software you guys run in your labs, I'm looking to find possible security problems with my network and network devices, anything from issues with my pfsense firewall, to problems on my windows clients on my lan, and anything in between, debian/*nix or otherwise, and figured I'd ask for suggestions.
I need these tools to be free, because I am currently unemployed during these times, I am not against compiling software suites if I can find guides on how to compile them, and I do currently have my esxi server running as well, so I'm more than able to spin up containers or virtual machines as needed for these as well.
heck, if anyone could even suggest some good reads for someone with 0 skills in this who is just trying to look into this and learn from boredom during this pandemic, that's fine with me as well.
it does not nessesarily need to be security testing specific either, I'd be more than happy to read up on ways to boost my internet privacy with pfsense, squid, pfblockerng, and anything else that would be a useful addition or alteration to configs, I'm just going insane from boredom because everything else I'd usually do to satisfy my boredom has been done to death over the time in isolation here at home.
What tools do you use to monitor vulnerabilities in your self-hosted services? I think it would be useful to receive a notification in a messaging app (like Telegram or WhatsApp) whenever a critical vulnerability, such as RCE or something similar is discovered in one of the services. I’ve tried a few tools for scanning containers, but none of them work the way I expect.
For example, there’s Trivy, but it’s a tool geared more toward Docker container developers, and it generates a lot of noise. A single container might show over 1,000 vulnerabilities, some of which are critical, but in reality, none of them can actually be exploited. For instance, I don’t need to know about a vulnerability in libssl, but I do need to know about an RCE in Umami or Jellyfin.
I also tested Grype; in addition to CVSS scores, it provides a risk assessment that’s supposed to help determine how likely it is that a vulnerability will be exploited. But it doesn’t detect the issue in Jellyfin because that vulnerability hasn’t been published yet.