Is there a good vulnerability scanner free for home use? Needs to check Mac, Windows, Windows Server, Proxmox, OpnSense, Linux, IOs, Andeoid and IpadOS for vulnerabilities and suggestions how to fix or make Firewall rules to secure. I have a M365 Fam account and Defender but i‘m not shure if this is possible like it is with Sentinel and Arc.

With a few dozen end points, VMs, containers, NAS, servers, various OSes etc... what is everyone using for Vuln Scanning or security tools for the home network? I mean I have OPNSense set to pretty restrictive and I block adds but is there something I can use to scan for known vulnerabilities? I would love to run Tenable or Qualys but I can't afford those licenses, is there an open source product that I can self host that is good enough?

What tools do you use to monitor vulnerabilities in your self-hosted services? I think it would be useful to receive a notification in a messaging app (like Telegram or WhatsApp) whenever a critical vulnerability, such as RCE or something similar is discovered in one of the services. I’ve tried a few tools for scanning containers, but none of them work the way I expect.

For example, there’s Trivy, but it’s a tool geared more toward Docker container developers, and it generates a lot of noise. A single container might show over 1,000 vulnerabilities, some of which are critical, but in reality, none of them can actually be exploited. For instance, I don’t need to know about a vulnerability in libssl, but I do need to know about an RCE in Umami or Jellyfin.

I also tested Grype; in addition to CVSS scores, it provides a risk assessment that’s supposed to help determine how likely it is that a vulnerability will be exploited. But it doesn’t detect the issue in Jellyfin because that vulnerability hasn’t been published yet.

so, I'm looking to get some insight into my network, and network device security issues, not looking to try and learn pen-testing, not yet, but I'm curious what free security and vulnerability testing software you guys run in your labs, I'm looking to find possible security problems with my network and network devices, anything from issues with my pfsense firewall, to problems on my windows clients on my lan, and anything in between, debian/*nix or otherwise, and figured I'd ask for suggestions.

I need these tools to be free, because I am currently unemployed during these times, I am not against compiling software suites if I can find guides on how to compile them, and I do currently have my esxi server running as well, so I'm more than able to spin up containers or virtual machines as needed for these as well.

heck, if anyone could even suggest some good reads for someone with 0 skills in this who is just trying to look into this and learn from boredom during this pandemic, that's fine with me as well.

it does not nessesarily need to be security testing specific either, I'd be more than happy to read up on ways to boost my internet privacy with pfsense, squid, pfblockerng, and anything else that would be a useful addition or alteration to configs, I'm just going insane from boredom because everything else I'd usually do to satisfy my boredom has been done to death over the time in isolation here at home.

What you guys use to scan your lab vulnerability? I know of openvas not sure if that still open-sourced. Diffrent alternatives.

Is there a service, hopefully free, that will try to break into your home network from the Internet? At least detect open ports, for example.

I imagine one way is to get a free account on AWS try to hack your network but that's work I 'd like to avoid

Hey, we are currently looking for a new Vilnerability scanner for our IT team of 2 people.

It only needs to scan internal IPs but if it includes external as well (maybe with an additional upgrade) that‘s even better. We are having around 150 devices and servers that needs to be scanned and we‘d run an internal probe, so not a cloud solutions.

I‘ve read that Tenable is a good solution.

Are their any opinions about which solution is the best for our usecase?

While I read alot about the best practices for securing a network and hardening systems; I’m concerned the implementation maybe off increasing the risk of getting hacked.

Is there an approach that can be taken to test/QA what I have put in place to confirm that it is free of vulnerabilities?

Can Kali Linux be used to help accomplish this outcome?

Info on the infrastructure support lab and prod:

• Ubuntu Server LTS

• Docker Swarm

• UniFi hardware - cameras, routers, doorbell, etc

hi,

what do you use for vulnerability scanning in your homelab?

i'm using nessus essentials because i work i know tenable.sc with nessus scanner but this essential/pro is not what i expect from the product ( the 16 host limit is ok for private use, the scan-results are ok but the whole management in the webapp is not good).

what are your free tools for vuln scanning and why you prefer them?

thank you for input!

So I am basically looking for a practical guide for a pentest/vulnerability assesment on house with 3rd party domotic systems (such as KNX), own self-hosted server & stuff (QNAP NAS, Plex), and own home automation server (HomeAssistant) with remote access.

At the end, I should be more aware of what the security holes are and what I should try and secure and how. With the results I'll be going to the 3rd party domotic system administrator and be adjusting my own systems as well. I.e., might result in using a VPN for remote access.

Basically, the security test should reveal what can be improved, how, and where it makes sense keeping user comfort (including non-tech users) and security both in mind.

Any practical guides on how to accomplish this?

(Forgot to flair previous)