Shodan Hacking
Shodan(撒旦搜索引擎)是由Web工程師John Mather(馬瑟利)編寫的,被稱爲”最可怕的搜索引擎“,可掃描一切聯網的設備。除了常見的Web服務器,還能掃描防火牆、路由器、交換機、攝像頭、打印機等一切聯網設備。
1. ip
114.114.114.114
2. service/protocol
http
http country:"DE"
http country:"DE" product:"Apache httpd"
http product:"Apache httpd"
ssh
ssh default password
ssh default password country:"JP"
3. keyword
基於關鍵字搜索的思路是根據banner信息(設備指紋)來搜索
“default password” country:“TH”
FTP anon successful
4. country
country:cn
country:us
country:
5. product
product:"Microsoft IIS httpd"
product:"nginx"
product:"Apache httpd"
product:"MySQL"
6. version
product:MySQL version:"5.1.73"
product:"Microsoft IIS httpd" version:"7.5"
7. hostname
hostname:.org
hostname:.edu
8. os
os:"Windows Server 2008 R2"
os:"Winodws 7 or 8"
os:"Linux 2.6.x"
9. net
net:110.180.13.0/24
200 ok net:110.180.13.0/24
200 ok country:JP net:
10. port
port:3389
port:445
port:22
port:80
port:443
win+r打開cmd輸入mstsc打開windows遠程桌面連接
11. 綜合示例
搜索日本區開啓80端口的設備:
country:jp port:"80"
countrt:jp port:"80" product:"Apache httpd"
country:jp port:"80" product:"Apache httpd" city:"Tokyo"
country:jp port:"80" product:"Apache httpd" city:"Tokyo" os:"Linux 3. x"
搜索日本區使用Linux2.6.x系統的設備:
country:jp os:"Linux 2.6.x"
country:jp os:"Linux 2.6.x" port:"80"
country:jp os:"Linux 2.6.x" port:"80" product:"Apache httpd"
搜索日本區使用Windows Server系統的設備:
country:jp os:"Windows Server 2008 R2"
country:jp os:"Windows Server 2008 R2" port:"445"
country:jp os:"Windows Server 2008 R2" port:"80"
搜索日本區使用Microsoft IIS 的設備:
country:jp product:"Microsoft IIS httpd" version:"7.5"