Anyone have any good external pen testing tools that you’ve used on your self hosted setup? Mine is pretty secure overall but I would like to be able to scan the WAN for vulnerabilities or misconfigurations just to make sure I haven’t missed anything.

  • @catloaf@lemm.ee
    link
    fedilink
    English
    58 months ago

    https://monitor.shodan.io/

    Not sure if there’s a free tier. Lifetime memberships go on sale for cheap at least once a year, though.

    Personally I’d run a free VM in the cloud and scan yourself with nessus, nmap, and such. Trying to scan yourself from inside doesn’t really work well for some reason. I assume it’s something to do with routing.