Sunday, May 19, 2024

Shodan and Censys: Finding Hidden Parts On the Internet With Special Search Engines

Shodan and Censys can scan Internet-facing systems, finding open ports and services that listen on a port. It’s useful to audit any vulnerable versions.

Our digital lives connect massive things with the Internet. Starting with Smartphones, Wi-Fi routers, Surveillance cameras, Smart TVs, SCADA networks, and leading to traffic light management systems are exposed to the internet.

In 2016 impact of the Mirai botnet attack, which was orchestrated as a distributed denial-of-service attack affects 300,000 vulnerable Internet of Things devices.

IoT device data privacy and integrity is another rising pain, voice assistive devices such as Amazon Echo and Google Home.

Shodan and Censys

The benefits of Google Docks help you find the data you are looking for on the Internet. There are also special search engines for information security professionals that help to discover devices that are accessible from the Internet.

IPv4 Hosts

  • Shodan and Censys can scan Internet-facing systems, finding open ports and services that listen on a port.
  • Discovered open ports have accurate banner versions, WHOIS information, and the geographic location of the server.

Operating Systems:

  • Detecting old versions of Windows operating systems ( Windows XP ) on the Internet.
  • An appropriate filter ( windows XP hostname:.in ) could find any operating systems on the internet.

Web Server:

  • Check the web server versions with query Server: <web server versions>
  • It’s very useful to audit any vulnerable versions of web servers on the internet.

Web application Firewalls:

  • Discovering web application firewalls on target.

Router:

  • Discover Cisco, Netgear, and more vulnerable routers in your country.
  • Over 65,000 Vulnerable Routers are already Abused by Multi-purpose Proxy Botnet.

Media & Entertainment:

  • Discover satellite television servers in various countries.

Database servers:

  • Discovering the Database servers of any organization is also possible with these search engines.

Home Automation

  • Searching HA bridge ( Home automation gateways such as an Amazon Echo/ Philips Hue).
  • Finding Amazon Echo/ Google Home IoT devices using Shodan.
  • Discovered remote access to Bedroom, and living room lights.
  • Remote commands such as “On”, and “Off” commands to turn off or turn on the lights.

Industrial Control System

  • Search for ICS/SCADA ( Industrial control systems/Supervisory Control and Data Acquisition) Devices in your country.
Shodan and Censys
  • The above figure illustrates that anyone on the internet can access Industrial devices and manipulate misconfigured SCADA devices.

Shodan’s search is powerful to find any vulnerable devices on the internet. It can be part of your penetration test to easier to discover new things on the internet.

You can follow us on LinkedinTwitter, and Facebook for daily Cybersecurity updates.

Also, Read

TOP 10 Best Torrent Search Engines 2023

Top 10 Deep Web Search Engine Alternatives for Google and Bing – 2023

An easy and beginner guide to SEARCH ENGINE OPTIMIZATION

Website

Latest articles

Hackers Exploiting Docusign With Phishing Attack To Steal Credentials

Hackers prefer phishing as it exploits human vulnerabilities rather than technical flaws which make...

Norway Recommends Replacing SSLVPN/WebVPN to Stop Cyber Attacks

A very important message from the Norwegian National Cyber Security Centre (NCSC) says that...

New Linux Backdoor Attacking Linux Users Via Installation Packages

Linux is widely used in numerous servers, cloud infrastructure, and Internet of Things devices,...

ViperSoftX Malware Uses Deep Learning Model To Execute Commands

ViperSoftX malware, known for stealing cryptocurrency information, now leverages Tesseract, an open-source OCR engine,...

Santander Data Breach: Hackers Accessed Company Database

Santander has confirmed that there was a major data breach that affected its workers...

U.S. Govt Announces Rewards up to $5 Million for North Korean IT Workers

The U.S. government has offered a prize of up to $5 million for information...

Russian APT Hackers Attacking Critical Infrastructure

Russia leverages a mix of state-backed Advanced Persistent Threat (APT) groups and financially motivated...

Free Webinar

Live API Attack Simulation

94% of organizations experience security problems in production APIs, and one in five suffers a data breach. As a result, cyber-attacks on APIs increased from 35% in 2022 to 46% in 2023, and this trend continues to rise.
Key takeaways include:

  • An exploit of OWASP API Top 10 vulnerability
  • A brute force ATO (Account Takeover) attack on API
  • A DDoS attack on an API
  • Positive security model automation to prevent API attacks

Related Articles