Introducing
Your new presentation assistant.
Refine, enhance, and tailor your content, source relevant images, and edit visuals quicker than ever before.
Trending searches
1
Gregory Durr II
Nathan Brand
Chase Barricklow
Google for Hackers
?
https://www.shodan.io/explore
Search engine for the Internet of Things
Shodan
A search engine that lets the user find specific types of banners:
- webcams
- routers
- servers
- any other device connected to the internet using a variety of filters.
Shodan Explained
Information
- The device’s name.
- It’s IP address.
- The software running on the device.
- It’s provided service.
- The default password/username combination for the device.
- The location/country the device is in.
- Any other metadata available.
Info
Collected Data
Collects data mostly on web servers:
- HTTP/HTTPS- port: 80, 8080, 443, 8443
- FTP- port: 21
- Telnet- port: 23
- SNMP- port: 161
- SIP- port: 5060
- RTSP- port: 554
Used to access webcams and video streams
DATA
John Matherly
Shodan
(Sentient Hyper-Optimized Data Access Network)
Developed in 2009
The
Creator
Original Purpose
Original Purpose
It was originally conceived as a way for companies to find competitors’ products connected to the Internet:
- the locations of those devices
- their current users
- at any given time
Devices
Such devices could be in almost any type of system including:
- business networks,
- surveillance cameras,
- industrial control systems (ICS)
- smart homes.
Process
A designed program to ID every IP address around the world
- If it belonged to a router or not
- What company it was registered to
- Default user ID and password
If so, it was added to a database and shared with the world.
Evolution
Global Security Threat
It became a crucial tool for security researchers, academics, law enforcement and hackers looking for devices that shouldn’t be on the Internet or devices that are vulnerable to being hacked.
Search Features
- IP CAM Search
- admin/admin Webcam Search
- Netcam Search
- Default Password Search
- Dreambox Search
Top Voted Features
default
admin
ip cam
dreambox
IP Cam Search
IP Cam Search
- Allows the user of Shodan to be able to look at IP addresses of Cameras connected to the IOT
- You may look at webcams, surveillance cams,or just cameras connected to IOT
Admin/Admin Webcam Search
- User is able to find vulnerable webcams through this search across the country
Admin Webcam Search
Netcam Search
- Feature allows users to scan over netcams connected to IOT
- User is able to Find the IP Address, location of netcam, what type of network the netcam is on, and more information.
Netcam Search
Defualt Password Seach
Default Password Search
- Users of Shodan may be able to find Ip addresses that are using Default passwords in which the user then can use dictionary attack or rainbow table that generates all possible passwords for that device.
Dreambox Search
Dreambox Search
Dreambox is a linux powered DVB satellite, cable digital television receivers.
All these boxes that are still running are connected to IOT therefore discoverable by shodan.
Access
Access
Gaining access
Free to Create an Account
Purchasable upgrades are available to receive more features
Upgrades
Maintaining Access
Saving the IP address is all you need to do in order to pick up where you left off the day before
Maintaining Access
Questions
Question or comments?
Connect
Gregory Durr II
mercyhurst
Nathan Brand
nbrand34@lakers.mercyhurst.edu
Chase Barricklow
Cbarri15@lakers.mercyhurst.edu