median citrus
Most of my work sits in critical infrastructure, defense, energy, etc. With devices that cannot fail.
The boundary between that world and the home is getting blurry. Solar inverters, EV chargers, smart meters - these are the same device classes, running similar software, exposed to the same classes of vulnerability. Critical infrastructure now reaches all the way into the home.
So we built something for that edge.
Our team worked for 48 hours during our weekend #hacktahon in Q4 last year, to make something useful for everyday users. The result was #EdgeWalker - a free, open source edge security scanner.
This is our way of providing the community with visibility into the extended lifecycle of devices that were often designed for connectivity first, and long-term security maintenance second.
EdgeWalker is a lightweight, high-precision assessment tool designed to give homeowners the same visibility of their network periphery as enterprises enjoy. It performs a deep-dive audit of your network, identifying active services, from standard HTTP to industrial-grade management protocols, flagging devices using vulnerable factory-default passwords (SSH, FTP, Telnet, SMB), and correlating detected firmware versions against the latest vulnerability databases to find unpatched software risks.
We can then take ananomysed data and reach out to the worst offending vendors and work with them to make their devices more secure so you don't have to!
Try it out now: https://GitHub.com/periphery-security/edgewalker
What's the most surprising thing you've found on your network?
tropic solstice