Shodan

Cheat Sheet for Shodan

Provide API key after installation

shodan init

Show remaining credits

shodan info

Convert downloaded json into Excel-file:

shodan convert nginx-sample.json.gz xlsx

On-Demand Scan (https://help.shodan.io/the-basics/on-demand-scanning)

shodan scan submit 8.8.8.8 --verbose --force --filename ~/shodanscan.md

Show Top 100 vulnerabilities on network

shodan stats --facets vuln:100 net:198.20/16

Show Top 10 vulnerabilities in Germany

shodan stats --facets vuln:10 country:"DE"

Show EternalBlue vulnerable hosts by OS

shodan stats port:445 SMB vuln:ms17-010 --facets os

Live stream specific ports (https://blog.shodan.io/shodan-real-time-stream/)

shodan stream --ports 22, 445

Available stream options: (--ports, --countries, --tags, --vulns OR --asn)

Ransomed machines in Germany

shodan search has_screenshot:true encrypted attention country:"DE"

Show self-signed https in Germany

shodan search tag:"self-signed" country:"DE" port:"443"

Download list of DNS servers in Germany

shodan download --limit -1 dns_de.json.gz country:"DE" port:"53"

Download 100000 VPN hosts in Germany

shodan download --limit 100000 ~/vpn_de.json.gz tag:"vpn" country:"DE"

Download Top 20 Linux Vulnerabilities

shodan download --limit -1 ~/Desktop/linux_top20.json.gz vuln:20 os:linux

Last updated 2 years ago