Shodan.io — TryHackme
2022-2-10 00:53:48 Author: infosecwriteups.com(查看原文) 阅读量:33 收藏

Hello amazing hackers, I came up with another cool blog based on enumeration. So without wasting any time let's get into the blog.

Shodan is used to enumerate the devices which are publicly available on the internet. Then it is used to find vulnerabilities in a range of IP addresses by using the shodan monitor.

We can use Shodan Dorking which would be useful for content discovery.

Hypertext Transfer Protocol

Nay

By Shodan monitor is used to monitor your own devices any vulnerability or open ports and always keep track of the information whether your own information gets leaked or not. But this feature is only available for premium users.

Notable examples include:

The Best Open Ports (most common)

The Most Dangerous Vulnerabilities (stuff we need to deal with right away)

Ports of Interest (unusual ports that are open)

Possibilities for Vulnerabilities

Notable Intellectual Property (things we should investigate in more depth).

The interesting part is that you can use this to monitor other people’s networks. You can save a list of IPs for bug bounties, and Shodan will email you if it finds any problems.

https://monitor.shodan.io/dashboard

Shodan Dorks is used to finding useful information from websites.

has_screenshot: true encrypted attention

Extensions available for shodan for google chrome:


文章来源: https://infosecwriteups.com/shodan-io-tryhackme-42e2ae5b420?source=rss----7b722bfd1b8d--bug_bounty
如有侵权请联系:admin#unsafe.sh