Shodan is a search engine for Internet-connected devices. His mission is to pool and to map the entire Internet finding servers, IoT devices, washing machines, freezers, anything has an IP address, to search and report security problems.
A useful tool offered by shodan.io is the command-line interface packaged with Python. You can be able to search open ports on hosts, check if an IP address is compromised, parse, count and download data of the Big Internet to secure your Network!
Let’s see the installation:
# Ubuntu sudo apt-get install python-setuptools sudo apt-get install python-pip sudo apt-get install python-dev sudo apt-get install build-essential sudo pip install shodan # Arch / Manjaro sudo easy_install click-plugins sudo easy_install shodan
After the installation sign up on https://account.shodan.io/register to obtain the API key.
# Shodan API key activation shodan init [APIKEY]
Here the MAN page of shodan command:
shodan Usage: shodan [OPTIONS] COMMAND [ARGS]... Options: -h, --help Show this message and exit. Commands: alert Manage the network alerts for your account convert Convert the given input data file into a different format. count Returns the number of results for a search data Bulk data access to Shodan domain View all available information for a domain download Download search results and save them in a compressed JSON... honeyscore Check whether the IP is a honeypot or not. host View all available information for an IP address info Shows general information about your account init Initialize the Shodan command-line myip Print your external IP address org Manage your organization's access to Shodan parse Extract information out of compressed JSON files. radar Real-Time Map of some results as Shodan finds them. scan Scan an IP/ netblock using Shodan. search Search the Shodan database stats Provide summary information about a search query stream Stream data in real-time. version Print version of this tool.