इस आर्टिकल को अपनी भाषा में पढने के लिए, दिए आप्शन से अपनी भाषा चुनें !
Hello dear readers, I know you are really excited to learn about real hacking. This article will make you understand information gathering about devices & ports in the wide area networks by the famous network scanner shodan.io.
Shodan is a network search engine built by John Matherly in early 2009. Shodan is used to search the wide area networks (WANs) & their open ports. This scanning helps network engineers or security testers to determine the relevant information such as IP addresses, ports, links to https, IP location, Company Details, Online Devices working in static IP, Server Details, possible vulnerabilities & so on.
The only way to learn about Shodan is just to dive in with following steps:
Visit: Shodan.io, Click on login / register button and simple register or login yourself with available options like gmail, facebook or email.
This way you will be registered with the free account from Shodan. Note that this free account has some limitations like you can filter only up to 2 pages from search & search keywords are limited. So, this is good for you if you are a learner & is much for an expert if you know to build your own Shodan dorks. For premium you can buy it at 49$ But, if you are not in a hurry, simply buy premium on black Friday deals, I bought same for 5$ only. You can even buy a subscription for shodan API which can help you build your own network scanning tool.
Once you are logged in, you are able to search for anything over WAN using Shodan search tool. Shodan has some search filters based on locations, ports, IP ranges, organizations, etc.
This search filters can help you determine information in a specific manner & help you find the goal instantly. So I am listing below the filters & their dork syntax:
- Country (Usage- country:IN, country:US, country:PK)
- City (Usage- city:bengaluru, city:Delhi, city:Karachi)
- Geo (Usage- geo:"56.913055,118.250862")
- Hostname (Usage- hostname:"google")
- IP Address / NET (Usage- net:184.108.40.206/16)
- Operating System (Usage-
- Port (Usage- port:21)
- Date range (Usage- after:22/02/2009 before:14/3/2010)
- Organization (Usage- org:google)
- & many more...
Once you select the IP & click on it, you will get to explore various details of that specific IP like Its location, open ports, Map, Port details & links, Port types, city, technology, hostname & its possible vulnerabilities.
What you can get benefit from Shodan details?
It actually depends in your knowledge about networking & cyber security. If you are a network engineer you can benefit about the ports & its security. If you are a hacker, then you can benefit about the specific network to test it as much as possible. Apart from this you can even monitor your networks occasionally with the details of devices attached to it.
How this searches help a hacker?
As I have previously discussed in posts that hackers need to gather information before hacking to check out the possible methods for testing the servers. Shodan searches reveals relevant information including the available exploits & ports to test. Hackers can simply hack your CCTV Cameras, Servers, Remote Desktops, wiFi networks, Internet of Things devices and many more if they know how to really deal with the represented details.
Do you know Shodan has a Map based interactive section with same statistics as in list?
Well, every hacker likes to work on an interactive dashboard like in movies & series. Shodan has this for you in the map section. Once you click on the map, the dashboard will look next image.
The map section looks like this & its very impressive that it shows all scanned networks on the map with read dots. When you click on any dot you can see the details of that network in the card layout as mentioned in image.
So, Shodan is just another wonderful tool for network security testing & exploring things around the world. If you have right dorks in your searches, it can just does the magic.
If you like the post, simply subscribe the notification by hitting the bell icon.