SHODAN

Shodan is a powerful search engine designed specifically to explore and index internet-connected devices and systems. Unlike traditional search engines that crawl websites, Shodan scans the internet for devices such as servers, routers, webcams, industrial control systems, and more, gathering information about their IP addresses, open ports, software, and security configurations. This makes it a valuable tool for cybersecurity professionals to identify vulnerabilities, track exposed devices, and monitor network security. However, its capabilities also raise privacy and security concerns, as it can be used by malicious actors to locate poorly secured targets. Overall, Shodan provides a unique window into the landscape of the Internet of Things (IoT) and connected infrastructure.

LogoShodanShodan
//identify live hosts
root@oco:~$ nano subdomainList
 *.cnd.dev
 cnd.dev
 git.cnd.dev
 nuclear.cnd.dev
 payload.cnd.dev
 vpn.cnd.dev
 www.cnd.dev

root@oco:~$ for i in $(cat subdomainlist);do host $i | grep "has address" | grep cnd.dev | cut -d" " -f1,4;done
 cnd.dev 185.199.108.153
 cnd.dev 185.199.109.153
 cnd.dev 185.199.110.153
 cnd.dev 185.199.111.153
 nuclear.cnd.dev 20.185.241.94
 payload.cnd.dev 52.168.6.167
 
root@oco:~$ for i in $(cat subdomainlist);do host $i | grep "has address" | grep cnd.dev | cut -d" " -f4 >> ip-addresses.txt;done
root@oco:~$ for i in $(cat ip-addresses.txt);do shodan host $i;done
 185.199.108.153
 Hostnames:               github.io;github.com;www.github.com;cdn-185-199-108-153.github.com;githubusercontent.com
 City:                    San Francisco
 Country:                 United States
 Organization:            GitHub, Inc.
 Updated:                 2025-08-10T15:00:11.647251
 Number of open ports:    2

 Ports:
     80/tcp  
	|-- HTTP title: Site not found · GitHub Pages
    443/tcp  
	|-- HTTP title: Site not found · GitHub Pages
	|-- Cert Issuer: C=GB, ST=Greater Manchester, CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford
	|-- Cert Subject: CN=*.github.io
	|-- SSL Versions: -SSLv2, -SSLv3, -TLSv1, -TLSv1.1, TLSv1.2, TLSv1.3
 ...
 Error: Unable to parse JSON response
 Error: No information available for that IP.
 Error: No information available for that IP.
PreviousINTERNET FACING ASSETSNextCENSYS

Last updated