Shodan is a search engine for Internet-connected devices. His mission is to pool and to map the entire Internet finding servers, IoT devices, washing machines, freezers, anything has an IP address, to search and report security problems.
A useful tool offered by shodan.io is the command-line interface packaged with Python. You can be able to search open ports on hosts, check if an IP address is compromised, parse, count and download data of the Big Internet to secure your Network!
Let’s see the installation:
# Ubuntu
sudo apt-get install python-setuptools
sudo apt-get install python-pip
sudo apt-get install python-dev
sudo apt-get install build-essential
sudo pip install shodan
# Arch / Manjaro
sudo easy_install click-plugins
sudo easy_install shodan
After the installation sign up on https://account.shodan.io/register to obtain the API key.
# Shodan API key activation
shodan init [APIKEY]
Here the MAN page of shodan command:
shodan
Usage: shodan [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit.
Commands:
alert Manage the network alerts for your account
convert Convert the given input data file into a different format.
count Returns the number of results for a search
data Bulk data access to Shodan
domain View all available information for a domain
download Download search results and save them in a compressed JSON...
honeyscore Check whether the IP is a honeypot or not.
host View all available information for an IP address
info Shows general information about your account
init Initialize the Shodan command-line
myip Print your external IP address
org Manage your organization's access to Shodan
parse Extract information out of compressed JSON files.
radar Real-Time Map of some results as Shodan finds them.
scan Scan an IP/ netblock using Shodan.
search Search the Shodan database
stats Provide summary information about a search query
stream Stream data in real-time.
version Print version of this tool.
.glitchlist crew