Upcoming
— targeted for the next release 5 itemsEncrypted credential storage
Custom credentials saved in Preferences are currently stored as plain text in preferences.json. Before v1.0, passwords will be protected using Windows DPAPI so credentials are encrypted at rest, per-user, with no key management overhead.
Crash reporter
When an unhandled exception crashes the app, a dialog will open the in-app Feedback window with the stack trace pre-filled and automatically redacted. No automatic uploads — always user-triggered. Helps surface hard-to-reproduce bugs quickly.
Configurable history depth
Scan history is currently capped at 6 snapshots. A new Preferences setting will let you choose how many to keep (6 / 12 / 30 / unlimited) so frequently-scanned networks don’t lose their change history too quickly.
F1 in-app help shortcut
Pressing F1 will open the ClumsyNetWatch help page in your default browser. Currently the help page exists at clumsyslab.tech but there’s no keyboard shortcut or button to reach it from inside the app.
Planned
— committed, no ETA yet 5 itemsUDP port scanning
Add UDP-based probes alongside the existing TCP scan — DNS (53), DHCP (67), NTP (123), and mDNS (5353). UDP services are invisible to the current scanner and are common on IoT devices, routers, and embedded hardware.
Multiple subnet / range targets
Scan two or more subnets in a single run — e.g. 192.168.1.0/24 and 10.0.0.0/24. Useful for networks with segmented VLANs or multiple interfaces where a single-range scan misses devices.
Visible scan-in-progress indicator
Add a clear animated scanning indicator during full or large scans so users can tell ClumsyNetWatch is still working instead of locked up. This may be a progress/status strip, activity animation, or a small dancing ClumsyZombie-style mascot while hosts and ports are still being processed.
Authenticode code signing
ClumsyNetWatch currently triggers a Windows SmartScreen warning on first run because the executable is not code-signed. A certificate is planned before the v1.0 stable release so users can launch the app without warning dialogs.
Network share enumeration
Build on the existing SMB OS fingerprinting to also enumerate accessible shares on Windows hosts — surfacing \\server\share paths per device. Pairs with the existing risk flag system to highlight publicly accessible shares.
Under Consideration
— community suggestions being evaluated 7 itemsNetwork topology map
A visual graph of discovered devices and their relationships — routers at the top, connected hosts branching below, grouped by vendor or subnet. A significant UI effort but would be the biggest visual differentiator from competing tools.
Email scan report
Send the branded HTML scan report directly from the app via SMTP — useful for network admins sharing findings with a team or manager without having to export a file first. Requires SMTP configuration in Preferences.
IPv6 scanning
Full IPv6 host discovery alongside IPv4. Home and enterprise networks increasingly assign IPv6 addresses, making an IPv4-only scanner incomplete on modern infrastructure. Scope and user demand will determine when this lands.
SSH & RDP quick launch
Right-click a host and choose “Open in Terminal” to launch Windows Terminal with an SSH command pre-filled, or “Remote Desktop” to launch mstsc.exe with the host’s IP. Small addition with high day-to-day value for IT users.
Saved scan profiles
Save a named scan configuration (target subnet + scan mode + port profile) launchable with a single click. Complements the existing auto-rescan feature for users who regularly run different scans on different network segments.
Device type tagging & grouping
Extend the existing device labels system with structured type tags — Server, Printer, IoT, Workstation, Router. Tags would enable grouping in the host tree and filtering by device class, complementing the automatic icon detection already in place.
CVE matching on service banners
Match captured service banners (e.g. “Apache/2.4.50”, “OpenSSH_8.1”) against a local CVE database to surface known vulnerabilities directly in the risk flag panel. A significant research and maintenance commitment — gauging user interest first.
Shipped
— already in your hands 31 featuresIn-app feedback & bug reporting
💬 Feedback and 🐛 Bug buttons in the title bar open a submission dialog that routes to the ClumsyNetWatch team via ClumsyOps and returns a tracking reference number. Nothing is ever sent silently — every submission requires explicit user action.
Privacy-respecting diagnostics
Optional diagnostics with feedback submissions include app version, OS, and runtime only — no IPs, hostnames, or scan results. Machine identity is SHA-256 hashed client-side before leaving the device. A preview is shown before the checkbox is ticked.
Label-aware update checker
The update checker now detects RC-to-RC upgrades within the same version number (e.g. RC1 → RC2), not just major version bumps. The label is fetched from the server and compared using a ranked ordering (Beta < RC1 < RC2 < Stable).
Installer + portable exe dual download
Available as a traditional Inno Setup installer (Start Menu shortcuts, uninstall entry in Windows Settings) and a portable single .exe that runs without any installation. Both options are on the Downloads page with SHA-256 checksums.
Parallel host discovery
Up to 32 hosts scanned simultaneously using a semaphore-bounded task pool. A full /24 subnet completes in seconds rather than minutes, with a live progress bar and per-host alive counter updating in real time.
Deep hostname resolution
Resolves hostnames via DNS, mDNS, LLMNR, and NetBIOS in parallel, then picks the most specific result. Devices that don’t respond to standard DNS still show human-readable names where possible.
MAC vendor lookup (IEEE OUI)
Offline OUI database with 36,000+ entries embedded in the app. Every MAC address resolves to a manufacturer name instantly with no internet required — useful for identifying routers, IoT devices, and rogue hardware.
Service banner grabbing
Reads the first response from open ports to identify running services — SSH version strings, FTP banners, HTTP Server headers, SMTP greetings. Turns “Port 22 open” into “OpenSSH_8.9p1 Ubuntu”.
TLS certificate inspection
Connects to HTTPS and other TLS ports to read the certificate — subject, issuer, expiry date, and SANs. Shows an expiry countdown and flags expired certs (Critical) and certs expiring within 30 days (Warning) in the risk panel.
Deprecated TLS protocol detection
Flags TLS 1.0 as Critical (POODLE / BEAST attack surface) and TLS 1.1 as Warning (deprecated per RFC 8996). Results surface in the per-host risk panel alongside certificate expiry findings.
SMB2 OS fingerprinting
Probes TCP 445 using SMB2 dialect negotiation to determine the Windows version running on each host — no credentials required. Results populate the OS field and feed the automatic device type icon.
SNMP sysDescr probe
Queries UDP 161 using the public community string to read the SNMP sysDescr — often contains OS, firmware version, and device role on network equipment and IoT devices.
Default credential testing
Tests a configurable list of username/password pairs against HTTP Basic auth on open web ports. A Critical risk flag is raised if any default credentials are accepted — catches misconfigured routers, cameras, and NAS devices.
Automated security risk flags
Every host is automatically assessed: Telnet open (Critical), FTP open (Critical), expired/expiring TLS cert, HTTP without HTTPS (Warning), SNMP responding on default community string (Warning), and default credentials accepted (Critical).
Persistent scan history & diff
Every completed scan is saved to disk and automatically compared against the previous one. Hosts that appeared, disappeared, or changed ports or MAC address are highlighted with NEW / GONE / CHANGED badges in the host list.
Snapshot diff viewer
Compare any two saved snapshots side by side — a table shows every host that appeared, disappeared, or had port or MAC changes between the two scans. Accessible directly from the history panel.
Device labels & notes
Right-click any host and choose “Edit Label / Note…” to give it a custom name (e.g. “NAS”, “Dad’s PC”) and free-text notes. Labels persist to disk keyed by IP and survive app restarts and re-scans.
CSV, HTML, JSON & PDF export
Export scan results in four formats: CSV for spreadsheet import, branded HTML for emailing to managers, JSON for scripting and re-import, and PDF for printable reports. JSON exports can also be re-imported back into history.
Custom port profiles
Define and save named port lists beyond the built-in Fast / Normal / Full presets. A profile might cover only the ports relevant to your environment — SCADA, VoIP, media streaming. Profiles are stored to disk and available in the scan dropdown.
Wake-on-LAN
Right-click any offline host with a known MAC address to send a magic packet via UDP broadcast. The machine powers on without physical presence — useful for waking servers and workstations remotely on your LAN.
Ping monitor
Right-click any host to open a live ping monitor — continuous ICMP pings with a latency graph, packet loss counter, and min/avg/max statistics. Useful for tracking intermittent connectivity issues on a specific host.
Traceroute
Right-click any host to run a traceroute — displays each hop to the destination with round-trip time per hop in a table. Useful for diagnosing routing issues and confirming the path to internet-facing hosts from your network.
System tray + auto-rescan
ClumsyNetWatch lives in the system tray when minimized. A configurable timer (5 / 15 / 30 min) automatically re-runs the last scan in the background and fires a balloon notification when new devices appear or known ones go offline.
Statistics panel
Post-scan summary showing vendor distribution, OS breakdown, top open ports, and risk counts. A quick executive overview of the network without scrolling through the full host list.
Dark & light theme (auto-detected)
Reads the Windows AppsUseLightTheme registry setting on startup to match the system theme automatically. Can also be toggled manually. Both themes are fully styled — no half-dark menus or dialogs.
Live search & filter
A filter bar above the host list narrows results in real time as you type — matches against IP address, hostname, vendor name, and open port numbers simultaneously. No scan needed to filter.
Column sort & keyboard shortcuts
Click any column header (IP, Name, Vendor, Status, Ports) to sort ascending or descending with a ↑/↓ indicator. Keyboard shortcuts: F5 scan, Esc cancel, Ctrl+F filter, Ctrl+E export.
Right-click context menu
Right-click any host for quick actions: Copy IP, Copy MAC, Open in Browser (ports 80/443), Launch Remote Desktop (port 3389), Wake-on-LAN, Edit Label, and Copy full host details to clipboard.
Auto-detect local subnet
On startup, ClumsyNetWatch reads your network interfaces and pre-fills the target field with your machine’s local subnet — so a first scan is a single click with no manual IP entry required.
Anonymous opt-in telemetry
Opt-in anonymous usage statistics help improve the tool during the release candidate phase. Records startup and scan events, OS version, and scan mode — no IPs, hostnames, or scan results. Controlled in Preferences → Privacy and disabled by default on new installs.
EULA, first-run consent & update checker
A first-run wizard covers EULA acceptance and telemetry consent before the app does anything. An update checker polls the server on launch and shows a banner when a newer version is available — including RC-to-RC increments within the same version number.
Have a feature idea?
ClumsyNetWatch is actively being shaped by early users during the release candidate phase. If there’s something missing that would make your network work better, send it over — good suggestions land on this page and eventually in the app.
You can also use the 💬 Feedback button inside ClumsyNetWatch to submit suggestions directly from the app. · Bug reports: bugs@clumsyslab.tech