SHODAN 쇼단 활용 방법

---

---

https://www.shodan.io/

로그인 페이지

https://account.shodan.io/login

CLI shodan 활용

# pip install shodan

root@kali:~# shodan
bash: shodan: command not found
root@kali:~# pip install shodan
Collecting shodan
  Downloading https://files.pythonhosted.org/packages/ff/61/3545b2d9476f4b83536506b6a4ac6ecde8fcb09481d7b23cb334298dc4b2/shodan-1.11.1.tar.gz (45kB)
    100% |████████████████████████████████| 51kB 595kB/s 
Requirement already satisfied: XlsxWriter in /usr/lib/python2.7/dist-packages (from shodan) (1.1.2)
Requirement already satisfied: click in /usr/lib/python2.7/dist-packages (from shodan) (7.0)
Collecting click-plugins (from shodan)
  Downloading https://files.pythonhosted.org/packages/95/dd/fef84cf1678418f241ef542c0288bdf215bdd3e35f1fe03dc5223a2e80ba/click_plugins-1.0.4-py2.py3-none-any.whl
Requirement already satisfied: colorama in /usr/lib/python2.7/dist-packages (from shodan) (0.3.7)
Requirement already satisfied: requests>=2.2.1 in /usr/lib/python2.7/dist-packages (from shodan) (2.20.0)
Building wheels for collected packages: shodan
  Running setup.py bdist_wheel for shodan ... done
  Stored in directory: /root/.cache/pip/wheels/b4/ac/0d/c3fb11503686d4d3a8e2d9799c830aba7bc48ae6af5c30b562
Successfully built shodan
Installing collected packages: click-plugins, shodan
Successfully installed click-plugins-1.0.4 shodan-1.11.1
root@kali:~# 

API 적용하기.

로그인 후 Show API Key 클릭

API Key 복사

# shodan init [API Key]

root@kali:~# shodan init OQ8n1====================
Successfully initialized
root@kali:~# 

# shodan -h

root@kali:~# shodan -h
Usage: shodan [OPTIONS] COMMAND [ARGS]...

Options:
  -h, --help  Show this message and exit.

Commands:
  alert       Manage the network alerts for your account
  convert     Convert the given input data file into a different format.
  count       Returns the number of results for a search
  data        Bulk data access to Shodan
  download    Download search results and save them in a compressed JSON...
  honeyscore  Check whether the IP is a honeypot or not.
  host        View all available information for an IP address
  info        Shows general information about your account
  init        Initialize the Shodan command-line
  myip        Print your external IP address
  org         Manage your organization's access to Shodan
  parse       Extract information out of compressed JSON files.
  radar       Real-Time Map of some results as Shodan finds them.
  scan        Scan an IP/ netblock using Shodan.
  search      Search the Shodan database
  stats       Provide summary information about a search query
  stream      Stream data in real-time.
root@kali:~# 

검색 방법

몽고DB 검색

mongodb

웹캠검색

webcam

국가 검색

country:"KR"

포트로 검색

port:"8080"

IP 검색

125.150.2.125