Shodan is one of best things ever happened to internet!
It's search engine that will search a device that is connected to internet!
So ultimately it's a device search engine!
Shodan allows you to find computers on the web by searching for them by keyword. For example, you can search for all the Microsoft IIS 7.0 servers in Canada, or all the systems using Linux in Africa.
It uses keywords to get better results, yes exactly like google keywords!
The trick to using Shodan effectively is to know the right keywords. Usually they are the manufacturer’s name, or a device model number, but sometimes they are the name of a very obscure embedded web server that you would never think to look for.
You can find if your device is publicly connected to Internet!
The Device could be Smart Refrigerator, Smart TV, CCTV Camera , Automated Doors, Aquariums , etc.
You can use Shodan by opening ShodanHQ.com or Shodan.io ...
These both links lead to shodan.io.
You can do common searches without an account, but for using keywords and advanced searches, you need to create a Shodan Account.
This is what SHODAN's homepage looks like!
Then all you need to do is enter your keyword to use and click, search just as you would on any
search engine.
So if we wanted to search Cicso routers we could just type in “Cisco” and click, “search”:
It found over 1.8 Million Cisco Routers!
You can click on any IP address to surf directly to the device found.
On the left side of the screen, Shodan also shows you how many of the total devices are from a certain country or location. You can click on any of them to zero in your search, or you could use keyword filters directly in the search to fine tune the results.
Using Filter commands you can quickly narrow down your searches to very specific things.
The city and country commands allows you to narrow down your searches, in geographic aspect!
country:(2 letter country code)
city:name of city
Example- country:IN
city:Mumbai
Scan an entire domain with the hostname command.
hostname:(hostname)
Example- hostname:google
hostname:microsoft
You can use part of fully qualified domain name , like google or entire site like:
www.microsoft.com or support.microsoft.com
Scan a single IP or a whole net block range using the net command.
Example- net:157.192.1.5
net:157.192.1.0/25
You can also search for items using the Title command:
Example- title:Server Room
title:CCTV
Combined Searches
The most effective Shodan searches are completed by combining search terms. With a few keywords
you could search for all of the Microsoft servers running IIS/7.0 at your Boston location.
IIS/7.0 hostname:YourCompany.com city:Boston
Or you could do a quick security scan of your domain for old systems that need to be updated.
For example any IIS/5.0 systems located anywhere on your domain in Canada
IIS/5.0 hostname:YourCompany.com country:CA
Other search terms you can use include:
● Port: Search by port number.
● OS: Search by Operating System.
● After or Before: Search for servers using dates.
Shodan is called "Internet of things"
And now you might have understood , why it's so!
It might be interesting to see your office's CCTV camera online!
So, go for Shodan! If you find something really interesting on Shodan, share it with us in comments!
If you have any ideas, that I should write about, Please share in comments!
It's search engine that will search a device that is connected to internet!
So ultimately it's a device search engine!
Shodan allows you to find computers on the web by searching for them by keyword. For example, you can search for all the Microsoft IIS 7.0 servers in Canada, or all the systems using Linux in Africa.
It uses keywords to get better results, yes exactly like google keywords!
The trick to using Shodan effectively is to know the right keywords. Usually they are the manufacturer’s name, or a device model number, but sometimes they are the name of a very obscure embedded web server that you would never think to look for.
You can find if your device is publicly connected to Internet!
The Device could be Smart Refrigerator, Smart TV, CCTV Camera , Automated Doors, Aquariums , etc.
You can use Shodan by opening ShodanHQ.com or Shodan.io ...
These both links lead to shodan.io.
You can do common searches without an account, but for using keywords and advanced searches, you need to create a Shodan Account.
This is what SHODAN's homepage looks like!
Then all you need to do is enter your keyword to use and click, search just as you would on any
search engine.
So if we wanted to search Cicso routers we could just type in “Cisco” and click, “search”:
It found over 1.8 Million Cisco Routers!
You can click on any IP address to surf directly to the device found.
On the left side of the screen, Shodan also shows you how many of the total devices are from a certain country or location. You can click on any of them to zero in your search, or you could use keyword filters directly in the search to fine tune the results.
Using Filter commands you can quickly narrow down your searches to very specific things.
Keywords
To use these keywords and get results of more than one page, you need to sign up for a free Shodan Account !
The city and country commands allows you to narrow down your searches, in geographic aspect!
country:(2 letter country code)
city:name of city
Example- country:IN
city:Mumbai
Scan an entire domain with the hostname command.
hostname:(hostname)
Example- hostname:google
hostname:microsoft
You can use part of fully qualified domain name , like google or entire site like:
www.microsoft.com or support.microsoft.com
Scan a single IP or a whole net block range using the net command.
Example- net:157.192.1.5
net:157.192.1.0/25
You can also search for items using the Title command:
Example- title:Server Room
Combined Searches
The most effective Shodan searches are completed by combining search terms. With a few keywords
you could search for all of the Microsoft servers running IIS/7.0 at your Boston location.
IIS/7.0 hostname:YourCompany.com city:Boston
Or you could do a quick security scan of your domain for old systems that need to be updated.
For example any IIS/5.0 systems located anywhere on your domain in Canada
IIS/5.0 hostname:YourCompany.com country:CA
Other search terms you can use include:
● Port: Search by port number.
● OS: Search by Operating System.
● After or Before: Search for servers using dates.
Shodan is called "Internet of things"
And now you might have understood , why it's so!
It might be interesting to see your office's CCTV camera online!
So, go for Shodan! If you find something really interesting on Shodan, share it with us in comments!
If you have any ideas, that I should write about, Please share in comments!
Comments
Post a Comment