This is simple ESP-8266 or ESP-32-based canary application that acts as a server on local network and notifies you if it is being accessed or scanned.
Ideally Nmap scan of services should return same results as real server. Any type of scan or connection attempt should notify you.
My home network had grown exponentially with each added device: laptops, phones, nas, RPi's, smart-home devices. Even with correctly configured firewall - each of them poses a security threat.
I was looking for some simple bash script / application that would notify me when network is breached since first thing after getting in would be scanning the network.
The question was not if but when this would happen.
- Clone project
- Update
src/user_config.hcontents with your settings - Upload file system image using platformio -
PlatformIO: Upload file system imageorpio run -t uploadfs - Upload sketch using
PlatformIO: upload
It does reacts on NMap -A scan.
- Logo was generated using PhotoFunia website. I would gladly accept any other.
- Thanks to @fanuch for pointing out that this is canary, not sandbox