ExposedIoT is a project that combines a public exposure awareness dashboard with a privacy-first thick client (local scanner). The project was developed to bridge a common gap for home users and SMEs: many people rely on internet access and smart devices, yet have limited visibility of what is on their network, what services those devices expose, and what “normal” exposure looks like at internet scale. The dashboard provides a global visualisation of internet-exposed services that are commonly associated with IoT and insecure configurations. It presents trends derived from a defined exposure query and focuses on classified categories where possible, helping users interpret the results as risk signals rather than raw data. The thick client complements this by assessing the user’s own local environment, identifying devices and common services on the LAN, and translating findings into practical guidance. Together, the two components support a simple management workflow: improve awareness of exposure patterns, verify local assets, and prioritise mitigation. This approach emphasises user control over assets and encourages better security hygiene without requiring enterprise tooling.

The local scanner is under development. It will discover devices on the user’s LAN, check a limited safe list of ports, generate a user-friendly remediation guide, and export a SOC-friendly JSON report.