Shodan Hacking
Shodan(撒旦搜索引擎)是由Web工程师John Mather(马瑟利)编写的,被称为”最可怕的搜索引擎“,可扫描一切联网的设备。除了常见的Web服务器,还能扫描防火墙、路由器、交换机、摄像头、打印机等一切联网设备。
撒旦搜索引擎(https://www.shodan.io/)
1. ip
114.114.114.114
2. service/protocol
http
http country:"DE"
http country:"DE" product:"Apache httpd"
http product:"Apache httpd"
ssh
ssh default password
ssh default password country:"JP"
3. keyword
基于关键字搜索的思路是根据banner信息(设备指纹)来搜索
“default password” country:“TH”
FTP anon successful
4. country
country:cn
country:us
country:
5. product
product:"Microsoft IIS httpd"
product:"nginx"
product:"Apache httpd"
product:"MySQL"
6. version
product:MySQL version:"5.1.73"
product:"Microsoft IIS httpd" version:"7.5"
7. hostname
hostname:.org
hostname:.edu
8. os
os:"Windows Server 2008 R2"
os:"Winodws 7 or 8"
os:"Linux 2.6.x"
9. net
net:110.180.13.0/24
200 ok net:110.180.13.0/24
200 ok country:JP net:
10. port
port:3389
port:445
port:22
port:80
port:443
11. 综合示例
搜索日本区开启80端口的设备:
country:jp port:"80"
countrt:jp port:"80" product:"Apache httpd"
country:jp port:"80" product:"Apache httpd" city:"Tokyo"
country:jp port:"80" product:"Apache httpd" city:"Tokyo" os:"Linux 3. x"
搜索日本区使用Linux2.6.x系统的设备:
country:jp os:"Linux 2.6.x"
country:jp os:"Linux 2.6.x" port:"80"
country:jp os:"Linux 2.6.x" port:"80" product:"Apache httpd"
搜索日本区使用Windows Server系统的设备:
country:jp os:"Windows Server 2008 R2"
country:jp os:"Windows Server 2008 R2" port:"445"
country:jp os:"Windows Server 2008 R2" port:"80"
搜索日本区使用Microsoft IIS 的设备:
country:jp product:"Microsoft IIS httpd" version:"7.5"
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
