Anyone have any good external pen testing tools that you’ve used on your self hosted setup? Mine is pretty secure overall but I would like to be able to scan the WAN for vulnerabilities or misconfigurations just to make sure I haven’t missed anything.
You must log in or # to comment.
You can try to scan your server with vulnerability assessment tools such as Nessus (it is available as a docker container) or sn1per which is open source.
Not sure if there’s a free tier. Lifetime memberships go on sale for cheap at least once a year, though.
Personally I’d run a free VM in the cloud and scan yourself with nessus, nmap, and such. Trying to scan yourself from inside doesn’t really work well for some reason. I assume it’s something to do with routing.
Probably anything within the Kali Linux suite or any security-centric distribution. If possible, boot it up to a laptop hooked to a phone hotspot or any network outside your home network, route through a VPN, determine your WAN IP, and go to town.
I’d like to know the answer here as well
