John Matherly achillean
achillean
/ industrial-recon.ipynb
Last active
September 21, 2022 13:55
Analyzing Industrial Control Systems via Shodan
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require "shodan" | |
| module Subs | |
| VERSION = "0.1.0" | |
| # Basic input validation | |
| if ARGV.size != 2 | |
| puts "Usage: subs <api key> <domain>" | |
| exit | |
| end |
achillean
/ gifcreator.py
Created
November 25, 2017 06:18
Timelapse GIF Creator using the Shodan API
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # gifcreator.py | |
| # | |
| # Dependencies: | |
| # - arrow | |
| # - shodan | |
| # | |
| # Installation: | |
| # sudo easy_install arrow shodan | |
| # sudo apt-get install imagemagick |
achillean
/ dlink-products.csv
Created
June 30, 2016 20:35
Ranking of D-Link Products Sold (source: https://www.shodan.io)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Query | product:d-link | |
|---|---|---|
| product | ||
| D-Link DCS-932L webcam http interface | 53585 | |
| D-Link DCS-930L webcam http interface | 49788 | |
| D-Link DLS-2750U ftp firmward update | 38563 | |
| D-Link DCS-932LB1 webcam http interface | 31227 | |
| D-Link DCS-930LB1 webcam http interface | 30413 | |
| D-Link DCS-5020L webcam http interface | 14109 | |
| D-Link DCS-934L webcam http interface | 10951 |
achillean
/ http-components.csv
Last active
June 29, 2021 08:31
Sample output from the Shodan CLI running: shodan stats --facets http.component:100,port:20 http-components http
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Query | http | |||
|---|---|---|---|---|
| http.component | port | |||
| jQuery | 1250676 | 80 | 56553138 | |
| Zepto | 483672 | 7547 | 50655465 | |
| PHP | 266668 | 443 | 26476433 | |
| Twitter Bootstrap | 255045 | 4567 | 11633390 | |
| Google Font API | 211921 | 8080 | 8631875 | |
| WordPress | 139645 | 1900 | 4540344 | |
| Font Awesome | 133483 | 49152 | 3028740 |
achillean
/ hacking-team-c2.json
Created
March 1, 2016 02:10
Hacking Team C2 History: 212.71.254.212
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "region_code": null, | |
| "ip": 3561488084, | |
| "area_code": null, | |
| "latitude": 51.5, | |
| "hostnames": ["li635-212.members.linode.com"], | |
| "postal_code": null, | |
| "dma_code": null, | |
| "country_code": "GB", | |
| "org": "Linode", |
achillean
/ roku-apps.csv
Last active
April 26, 2021 21:00
Ranking of Most Popular Roku Apps based on Shodan (https://www.shodan.io)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Netflix | 863 | |
|---|---|---|
| Roku Home News | 767 | |
| Amazon Video | 733 | |
| Movie Store and TV Store | 717 | |
| Hulu | 694 | |
| HBO Now | 683 | |
| Showtime | 678 | |
| VUDU | 633 | |
| Pandora | 569 | |
| YouTube | 550 |
achillean
/ dump-images.py
Created
January 17, 2016 21:56
Shodan script to parse out screenshot data from banners and store it in a separate directory.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # dump-images.py | |
| # | |
| # Extract all the image data from the banners and store them as separate images | |
| # in a provided output directory. | |
| # | |
| # Example: | |
| # shodan download --limit -1 screenshots.json.gz has_screenshot:true | |
| # ./dump-images.py screenshots.json.gz images/ |
achillean
/ gifcreator.py
Last active
December 15, 2021 21:17
Create GIFs from a Shodan json.gz file using the API
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # Dependencies: | |
| # - arrow | |
| # - shodan | |
| # - ImageMagick | |
| # | |
| # Installation: | |
| # sudo easy_install arrow shodan | |
| # sudo apt-get install imagemagick | |
| # |
achillean
/ export-hosts.py
Created
December 9, 2015 02:26
Read a Shodan JSON file and print out the full host information.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # | |
| # export_hosts.py <export.json.gz> | |
| # | |
| import gzip | |
| import shodan | |
| import simplejson | |
| import sys |
NewerOlder