|
|
Sponsored Content
Special Forums
Cybersecurity
IT Security RSS
Do you know Shodan?
Post 302469362 by Linux Bot on Friday 5th of November 2010 04:15:01 PM
11-05-2010
Do you know Shodan?
Wellcome to Shodan.
If you're thinking "What on Earth is it?", please read the lines below. If you're already familiar with, move to the next Section.
So here's the basic: SHODAN (Sentient Hyper-Optimized Data Access Network) is a search engine, but instead of indexing web page content, it indexes banners information. It indexes data on HTTP, SSH, FTP, TELNET and SNMP services for almost the whole Internet. You can find it at http://www.shodanhq.com.
You can do basic searching for free. An account and credit are required for some features.
What can I do with it?
A lot of things.
For good and for worst.
Per example, you can ask for network devices that shows up banner information (routers, switches, printers, voip phones, etc). Tunning your filter and you can find devices without authentication or with default passwords (a lot of them, on a lot of places).
You can find out vulnerable systems. Where they are, who owns it.
And you can do it easily. Shodan is like "Google" for network scanning.
Of course, you can use Shodan to track vulnerable/exposed system or devices on your network and work to close the breaches.
Is it legal?
A controversial point.
If we look on terms of technical arguments, SHODAN is a massive port scanner and the precedent set is that port scanning is not a violation of the Computer Fraud and Abuse Act because it does not meet the requirement for damage the availability or integrity of the device.
But, of course someone can use it to dig information about a certain network to start an attack.
I believe this is more an "is it moral or not?", than a "is it legal or not?" case.
Conclusion
There's plenty on documents and presentations over the Internet (on this case, Google will help a lot) so it's pointless here to focus on how to use Shodan.
But, I'll gibe you and advice.
Check your network against Shodan just in case.
It can solve a lot of pain in the future
Best Regards
More...
If you're thinking "What on Earth is it?", please read the lines below. If you're already familiar with, move to the next Section.
So here's the basic: SHODAN (Sentient Hyper-Optimized Data Access Network) is a search engine, but instead of indexing web page content, it indexes banners information. It indexes data on HTTP, SSH, FTP, TELNET and SNMP services for almost the whole Internet. You can find it at http://www.shodanhq.com.
You can do basic searching for free. An account and credit are required for some features.
What can I do with it?
A lot of things.
For good and for worst.
Per example, you can ask for network devices that shows up banner information (routers, switches, printers, voip phones, etc). Tunning your filter and you can find devices without authentication or with default passwords (a lot of them, on a lot of places).
You can find out vulnerable systems. Where they are, who owns it.
And you can do it easily. Shodan is like "Google" for network scanning.
Of course, you can use Shodan to track vulnerable/exposed system or devices on your network and work to close the breaches.
Is it legal?
A controversial point.
If we look on terms of technical arguments, SHODAN is a massive port scanner and the precedent set is that port scanning is not a violation of the Computer Fraud and Abuse Act because it does not meet the requirement for damage the availability or integrity of the device.
But, of course someone can use it to dig information about a certain network to start an attack.
I believe this is more an "is it moral or not?", than a "is it legal or not?" case.
Conclusion
There's plenty on documents and presentations over the Internet (on this case, Google will help a lot) so it's pointless here to focus on how to use Shodan.
But, I'll gibe you and advice.
Check your network against Shodan just in case.
It can solve a lot of pain in the future
Best Regards
More...
|
|
LEARN ABOUT DEBIAN
data::section::simple
Data::Section::Simple(3pm) User Contributed Perl Documentation Data::Section::Simple(3pm) NAME
Data::Section::Simple - Read data from __DATA__ SYNOPSIS
use Data::Section::Simple qw(get_data_section); # Functional interface -- reads from caller package __DATA__ my $all = get_data_section; # All data in hash reference my $foo = get_data_section('foo.html'); # OO - allows reading from other packages my $reader = Data::Section::Simple->new($package); my $all = $reader->get_data_section; __DATA__ @@ foo.html <html> <body>Hello</body> </html> @@ bar.tt [% IF true %] Foo [% END %] DESCRIPTION
Data::Section::Simple is a simple module to extract data from "__DATA__" section of the file. LIMITATIONS
As the name suggests, this module is a simpler version of the excellent Data::Section. If you want more functionalities such as merging data sections or changing header patterns, use Data::Section instead. This module does not implement caching (yet) which means in every "get_data_section" or "get_data_section($name)" this module seeks and re- reads the data section. If you want to avoid doing so for the better performance, you should implement caching in your own caller code. BUGS
__DATA__ appearing elsewhere If you data section has literal "__DATA__" in the data section, this module might be tricked by that. Although since its pattern match is greedy, "__DATA__" appearing before the actual data section (i.e. in the code) might be okay. This is by design -- in theory you can "tell" the DATA handle before reading it, but then reloading the data section of the file (handy for developing inline templates with PSGI web applications) would fail because the pos would be changed. If you don't like this design, again, use the superior Data::Section. utf8 pragma If you enable utf8 pragma in the caller's package (or the package you're inspecting with the OO interface), the data retrieved via "get_data_section" is decoded, but otherwise undecoded. There's no reliable way for this module to programmatically know whether utf8 pragma is enabled or not: it's your responsibility to handle them correctly. AUTHOR
Tatsuhiko Miyagawa <miyagawa@bulknews.net> COPYRIGHT
Copyright 2010- Tatsuhiko Miyagawa The code to read DATA section is based on Mojo::Command get_all_data: Copyright 2008-2010 Sebastian Riedel LICENSE
This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself. SEE ALSO
Data::Section Inline::Files perl v5.12.4 2011-09-18 Data::Section::Simple(3pm)