In this project, I fully evaluated my home network’s security and infrastructure setup. I began by using Lansweeper to inventory all connected hardware and software, identifying 21 assets, including servers, mobile devices, Iot devices, and streaming devices. I mapped the network topology using SolarWinds Network Topology Mapper, visualizing device connections, network segments, and identifying areas for performance and security improvements. I also captured network health details, noting a stable setup with no major scanning issues and efficient monitoring of new devices.

I employed Nessus Essentials to assess vulnerabilities, scanning 15 hosts and detecting 394 vulnerabilities, including 2 critical and 1 high severity vulnerability. I analyzed threats such as outdated protocols (TLS 1.0/1.1), SSH v1 exposure, SMB NULL session authentication, and SSL certificate trust issues. I further performed penetration testing using Nmap and Metasploit, successfully simulating attacks that exposed risks like credential theft and privilege escalation. I documented these findings and prioritized mitigation actions to enhance network resilience against cyber threats.

Following the assessment, I made specific recommendations to secure the network, such as upgrading TLS protocols, disabling insecure services like Netbios and SMB NULL sessions, tightening device access controls, and improving password policies. I emphasized regular network scanning, firmware updates, and education on social engineering threats. By combining real-time mapping, vulnerability assessments, and targeted penetration testing, I successfully strengthened Leonard’s Home Network’s security posture and laid a foundation for continuous monitoring and proactive defence