Shodan.io
文章目录
Task1 Introduction
Go to Shodan.io
Task2 Filters
How do we find Eternal Blue exploits on Shodan?
vuln:ms17-010
Task3 Google & Filtering
ping google.com
得到谷歌的IP为142.250.200.142,使用谷歌的IP在Autonomous System Lookup (AS / ASN / IP) | HackerTarget.com查找IP对应的ASN,得到ASN为15169
1.What is the top operating system for MYSQL servers in Google’s ASN?
5.6.40-84.0-log
shodan搜索 asn:AS15169 product:MySQL
(作者创建房间时的TOP Version是5.6.40-84.0-log)
2.What is the 2nd most popular country for MYSQL servers in Google’s ASN?
Netherlands
3.Under Google’s ASN, which is more popular for nginx, Hypertext Transfer Protocol or Hypertext Transfer Protocol with SSL?
Hypertext Transfer Protocol
比较搜索 asn:AS15169 product:Nginx port:80 得到23662条结果和 asn :AS15169 product:Nginx port:443 得到223321条结果,Nginx更多使用HTTP协议(Hypertext Transfer Protocol)
4.Under Google’s ASN, what is the most popular city?
Mountain View
谷歌是美国企业,搜索 asn:AS15169 contry:us
5.Under Google’s ASN in Los Angeles, what is the top operating system according to Shodan?
PAN-OS
搜索 asn:AS15169 city:“Los Angeles”
6.Using the top Webcam search from the explore page, does Google’s ASN have any webcams? Yay / nay.
nay
搜索webcam asn:AS15169
Task4 Shodan Monitor
What URL takes you to Shodan Monitor?
https://monitor.shodan.io/dashboard
Task5 Shodan Dorking
What dork lets us find PCs infected by Ransomware?
has_screenshot:true encrypted attention
Task6 Shodan Extension
This will be nice for bug bounties!
Task7 Exploring the API & Conclusion
is will be nice for bug bounties!
Task7 Exploring the API & Conclusion
Read the blog post above!