Join our FREE personalized newsletter for news, trends, and insights that matter to everyone in America

Newsletter
New

I Built Vedetta, An Open-source, Self-hosted Network Security Monitor (dns Threat Detection + Device Inventory) — Now In Public Beta

Card image cap

Hey all!

I’ve been building Vedetta, an open-source, self-hosted security monitor for home and small-business networks, and just pushed it to public beta.

The goal: real network visibility + threat detection without shipping your data to a cloud SaaS. It’s local-first — a Docker “Core” plus a lightweight native sensor (macOS/Linux/Windows). Runs fine on a Pi 4.

What it does today:

**• DNS-first detection** — flags DGA, beaconing, tunneling, and known-bad/C2 lookups (abuse.ch feeds: URLhaus / Feodo / SSLBL) **• Device discovery & inventory** — finds what’s actually on your LAN (active scan + passive ARP/DHCP/mDNS/SSDP) and classifies vendor/type **• EOL / vulnerable gear detection** — flags end-of-life routers & cameras (e.g. the FBI IC3 AVrecon / SocksEscort list) and scores them higher when they behave suspiciously **•** Optional **Pi-hole / AdGuard Home** integration if you already run one 

Honest about where it is: it’s beta, the install assumes Docker + a bit of networking comfort, and it’s not a plug-and-play appliance yet. Free and open-source. There’s opt-out community threat-sharing that strips IPs/MACs/hostnames at the source — or run it fully local, no cloud at all.

Would genuinely love feedback — especially what detections, integrations, or gear you’d want it to cover.

Site: https://vedettas.com
Code: https://github.com/MahdiHedhli/vedetta

submitted by /u/ItsBlockOps
[link] [comments]