Tools: I Built a Terminal-Based WiFi & LAN Security Scanner in Go (NOVA)

The Terminal Needs More Security Tools 🛡️ ## What is NOVA? 🌌 ## Core Capabilities: ## The Tech Stack 🛠️ ## A Crucial Note on Ethics ⚖️ ## Try It Out & Break It 🔨 If you spend most of your day in the terminal (shoutout to my fellow Neovim and Zsh users), switching to a heavy GUI just to check your network's security posture feels like a context switch you shouldn't have to make. When you want to know what devices are lurking on your local subnet, or if your nearby WiFi networks are leaking data via outdated encryption, the standard approach usually involves running raw nmap commands and parsing through walls of text. I wanted something faster, more visual, and entirely keyboard-driven. I wanted a tool that didn't just dump data, but actually analyzed it and gave me a risk score. So, I built NOVA (Network Observation & Vulnerability Analyzer). NOVA is a purely defensive security assessment tool written in Go. It wraps powerful underlying system utilities (nmap and nmcli) in a beautiful, interactive Terminal User Interface (TUI). Instead of parsing terminal vomit, NOVA gives you an organized dashboard to understand your environment. Building CLI tools in Go is a fantastic experience, especially when you bring in the right libraries. Because I’m releasing this into the wild, I have to state the obvious: With great power comes great responsibility. NOVA is a defensive tool. It is designed to help you secure your own home lab or company network. Scanning networks without authorization is illegal. To enforce this mindset, NOVA actually boots up with a strict legal consent screen that you must explicitly acknowledge before any packets are sent. Keep it legal, keep it ethical. NOVA is completely open-source, and I'd love for the community to test it, critique the code, and suggest new features. If you are on Linux or macOS (note: WiFi scanning is currently Linux-only, but LAN scanning works on both!), you can grab the pre-built binaries from the repo. 🔗 GitHub Repo: github.com/Zayan-Mohamed/nova 📖 Full Docs: zayan-mohamed.github.io/nova I’m currently looking for feedback on the Risk Scoring algorithm and how to better present the vulnerability data. Drop a ⭐ if you find it useful, and let me know in the comments what your go-to network scanning workflow looks like right now! Templates let you quickly answer FAQs or store snippets for re-use. Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink. Hide child comments as well For further actions, you may consider blocking this person and/or reporting abuse - 📡 WiFi Analysis: Instantly list nearby access points. NOVA detects their encryption types (Open, WEP, WPA, WPA2, WPA3) and flags weak or broken configurations. - 🔍 Fuzzy Filtering: Live search by SSID/BSSID and cycle through security filters with a single keystroke. - 🖥️ LAN Host Discovery: Performs a ping-sweep of your subnet to enumerate active hosts, complete with MAC addresses and vendor lookups. - 🚨 Risk Scoring & Tagging: This is the best part. NOVA scans common ports and assigns a weighted 0–100 security score. If it finds a dangerous open port (like an exposed Telnet, SMB, or MongoDB instance), it color-codes the finding from Info to Critical. - The Engine: Go 1.24+. Fast, statically typed, and perfect for compiling single binaries. - The UI: Bubble Tea & Lip Gloss. If you haven't used Charm's libraries for Go TUIs yet, you are missing out. They make building interactive terminal apps feel like writing a modern frontend component. - The Muscle: NOVA relies on nmap for the heavy lifting in host discovery and port scanning, and nmcli (NetworkManager) for grabbing raw wireless data on Linux.