diff --git a/content/notes/shodan-search-queries/images/c4max.png b/content/notes/shodan-search-queries/images/c4max.png new file mode 100644 index 00000000..c0ea591e Binary files /dev/null and b/content/notes/shodan-search-queries/images/c4max.png differ diff --git a/content/notes/shodan-search-queries/index.md b/content/notes/shodan-search-queries/index.md index a0739d78..97b4674b 100644 --- a/content/notes/shodan-search-queries/index.md +++ b/content/notes/shodan-search-queries/index.md @@ -79,7 +79,7 @@ mikrotik streetlight ``` -### Voting Machines in the US [→](https://www.shodan.io/search?query=%22voter+system+serial%22+country%3AUS) +### Voting Machines in the United States [→](https://www.shodan.io/search?query=%22voter+system+serial%22+country%3AUS) ``` "voter system serial" country:US @@ -93,10 +93,10 @@ mikrotik streetlight ``` -### [Tesla PowerPack](https://www.tesla.com/powerpack) Charging Status [→](https://www.shodan.io/search?query=http.title%3A%22Tesla+PowerPack+System%22+http.component%3A%22bootstrap%22+-org%3A%22Google+Cloud%22) +### [Tesla PowerPack](https://www.tesla.com/powerpack) Charging Status [→](https://www.shodan.io/search?query=http.title%3A%22Tesla+PowerPack+System%22+http.component%3A%22d3%22+-ga3ca4f2) ``` -http.title:"Tesla PowerPack System" http.component:"bootstrap" -org:"Google Cloud" +http.title:"Tesla PowerPack System" http.component:"d3" -ga3ca4f2 ``` ![Example: Tesla PowerPack Charging Status](images/tesla.png) @@ -116,6 +116,15 @@ http.title:"Nordex Control" "Windows 2000 5.0 x86" "Jetty/3.1 (JSP 1.1; Servlet ``` +### [C4 Max](https://www.mobile-devices.com/our-products/c4-max/) Vehicle GPS Trackers [→](https://www.shodan.io/search?query=%22%5B1m%5B35mWelcome+on+console%22) + +``` +"[1m[35mWelcome on console" +``` + +![Example: C4 Max Vehicle GPS](images/c4max.png) + + ### DICOM Medical X-Ray Machines [→](https://www.shodan.io/search?query=%22DICOM+Server+Response%22+port%3A104) Secured by default, thankfully, but these 1,700+ machines still [have no business](https://documents.trendmicro.com/assets/rpt/rpt-securing-connected-hospitals.pdf) being on the internet. @@ -170,7 +179,7 @@ Secured by default, thankfully, but these 1,700+ machines still [have no busines [Shodan Images](https://images.shodan.io/) is a great supplementary tool to browse screenshots, by the way! [→](https://images.shodan.io/?query=%22authentication+disabled%22+%21screenshot.label%3Ablank) ![Example: Unprotected VNC](images/vnc.png) -*The first result right now. :(* +*The first result right now. 😞* ### Windows RDP [→](https://www.shodan.io/search?query=%22%5Cx03%5Cx00%5Cx00%5Cx0b%5Cx06%5Cxd0%5Cx00%5Cx00%5Cx124%5Cx00%22) @@ -224,10 +233,10 @@ Older versions were insecure by default. [Very scary.](https://krebsonsecurity.c ``` -### Already Logged-In as `root` via Telnet [→](https://www.shodan.io/search?query=%22root%40%22+port%3A23+-login+-password) +### Already Logged-In as `root` via Telnet [→](https://www.shodan.io/search?query=%22root%40%22+port%3A23+-login+-password+-name+-Session) ``` -"root@" port:23 -login -password +"root@" port:23 -login -password -name -Session ``` @@ -561,6 +570,13 @@ net:175.45.176.0/22,210.52.109.0/24,77.94.35.0/24 ``` +### Way Too Many Minecraft Servers + +``` +Minecraft "protocol 340" port:25565 +``` + + ### TCP Quote of the Day [→](https://www.shodan.io/search?query=port%3A17+product%3A%22Windows+qotd%22) ```