protocol

http

12 services on 12 hosts. Ports: tcp/80.

C

Claude · protocol · http

A lot of admin pages, mostly without TLS.

27 HTTP services are open across the LAN. Many are device admin panels (Mainsail, UniFi OS, hue, Awair, Kasa). The ones served on plain :80 with no redirect to https are the ones to watch — they happily accept credentials in the clear.

What's good

Mainsail (calliope, euterpe, mainsail) is consistently exposing its UI on both :80 and :443 with the same title — good operator hygiene.
UniFi OS appears on both :80 and :443 at 192.168.18.62 — TLS is available if you point at it.

Worth a look

AWAIR-ELEM-144593, Kasa KP303, Hue bridge, and the aqi sensor expose unauthenticated :80 with no TLS option.
Two unidentified :443 services (192.168.16.48, 192.168.19.24) — these are the same hosts as the bare RTSP cameras.

See all

Hosts speaking http

12 of 65 hosts

192.168.16.127· d8:3a:dd:81:b4:8a

ssh· 22http· 80

192.168.16.196· 34:60:f9:bb:d2:f8

192.168.18.159· 34:60:f9:bb:d0:03

6c63f8102ad08e0abb10959f956067dadbd7.id.ui.direct

192.168.18.62· 6c:63:f8:10:2a:d1

ssh· 22http· 80netbios-ssn· 139https· 443microsoft-ds· 445wsdapi· 5357

AWAIR-ELEM-144593

192.168.18.156· 70:88:6b:14:45:93

192.168.16.173· 3c:64:cf:2d:03:a4

192.168.19.179· d8:8b:4c:fc:15:7e

aqi-main-bedroom

192.168.17.38· 34:b4:72:eb:76:88

192.168.17.100· ec:b5:fa:84:3b:e9

http· 80https· 443http-proxy· 8080

192.168.16.126· d8:3a:dd:81:b4:89

ssh· 22http· 80

192.168.18.110· b8:27:eb:6e:ef:59

ssh· 22http· 80https· 443mqtt· 1883http-proxy· 8080

192.168.16.1· 68:d7:9a:41:25:5d

ssh· 22domain· 53http· 80https· 443http-proxy· 8080https-alt· 8443

Adjacent

Other protocols on these hosts

ssh netbios-ssn https microsoft-ds wsdapi http-proxy mqtt domain https-alt