使用SHODAN在海上查找网络摄像机,数据库,船只

  • A+
所属分类:中英对照

SHODAN:- 撒旦: -

Shodan is a scanner which finds devices connected over the internet. Shodan是一种扫描仪,可以找到通过互联网连接的设备。 Shodan can finds devices like traffic lights, security cameras, home heating devices and baby monitors. Shodan可以找到交通信号灯,安全摄像头,家用加热设备和婴儿监视器等设备。 This web scanner can also finds the SCADA system like -gas stations, nuclear power plants. 这个网络扫描仪还可以找到像加油站,核电站这样的SCADA系统。 Shodan tells the physical location of connected devices over the internet. Shodan通过互联网讲述了连接设备的物理位置。

Ethical hacking researcher says that shodan can creates violation on users privacy because it ping almost on any device connected over the internet without taking users permission. 道德黑客攻击 研究员表示,索丹可能会侵犯用户隐私,因为它几乎可以在任何通过互联网连接的设备上进行ping操作而无需用户许可。

For using shodan go to: https://www.shodan.io/ 使用shodan请访问: https ://www.shodan.io/

  • For creating an account go to https://account.shodan.io/register 要创建帐户,请访问 https://account.shodan.io/register
  • Shodan search engine can also be used without signing up. Shodan搜索引擎也可以在不注册的情况下使用。 Signing up is not compulsory.注册不是强制性的。

  • Enter the necessary details- your username,password and email for signing up in shodan.输入必要的详细信息 - 您的用户名,密码和电子邮件,以便在shodan注册。
  • After creating an account sign in with your credentials.创建帐户后使用您的凭据登录。

  • After singing in, shodan will open.在唱歌后,索丹会打开。 Now you can explore shodan.现在你可以探索索丹了。

  • After creating your account in shodan. 在shodan中创建帐户后。 Sign in to your account and shodan will show your account api key. 登录到您的帐户,shodan将显示您的帐户API密钥。 For security reasons the key has been hided (ZoxxxxxxPFmYHJvSWhKixxxxxxxxxxHmT). 出于安全原因,密钥已被隐藏(ZoxxxxxxPFmYHJvSWhKixxxxxxxxxxHmT)。
  • You can also use the API key in recon-ng for reconnaissance.您还可以使用API​​密钥重新进行侦察。

  • You can also search any website/IP address simply enter the your target name and as you see below it will show the details of the target. 您还可以搜索任何网站/ IP地址,只需输入您的目标名称,如下所示,它将显示目标的详细信息。

Fun with SHODAN:- SHODAN的乐趣: -

  • The below site in the screen shot is most popular for testing your hacking skills.( hackthissite.org )屏幕截图中的以下网站最受欢迎,用于测试您的黑客技能。( hackthissite.org

  • After typing the target website, open ports and the IP address has found which can be used in footprinting and reconnaissance.键入目标网站后,打开端口并找到可用于足迹和侦察的IP地址。

SHODAN FEATURES:- SHODAN特点: -

Shodan offers many great features to search. Shodan提供许多强大的搜索功能。 Normal user can easily explore shodan.普通用户可以轻松探索索丹。 Most of the pentesters use shodan for finding vulnerabilities.大多数测试者使用shodan来查找漏洞。

There are many keywords to search in shodan and here are some of the keywords which have been used to show you how shodan works:-在shodan中搜索的关键字很多,以下是一些用于向您展示索丹如何工作的关键字: -

  • VSAT – Mainly works in boats/ship tracker to detect boats/ship location. VSAT - 主要用于船只/船舶追踪器,以检测船只/船舶位置。
  • Cameras – Shows the open IP's of the web-cameras which are used in surveillance.摄像机 - 显示用于监视的网络摄像机的开放IP。
  • Exploring the other like – databases, video game servers, Industrial Control System.探索其他类似的 - 数据库,视频游戏服务器,工业控制系统。
    • Databases – show the databases with lack of security.数据库 - 显示缺乏安全性的数据库。
    • Video Game Servers – shows the running open servers of the games.视频游戏服务器 - 显示游戏的运行开放服务器。
    • ICS (Industrial Control System) – shows the open ICS systems which are vulnerable. ICS(工业控制系统) - 显示易受攻击的开放式ICS系统。

SEARCHING BOATS/SHIPS ON SHODAN:- 在SHODAN上搜索船只/船只: -

Boats/ships uses VSAT (Very-Small-Aperture Terminal) which uses satellite communication to communicate with the outer world.船/船使用VSAT(极小孔径终端),它使用卫星通信与外部世界通信。 VSAT uses IPv4 for the communication. VSAT使用IPv4进行通信。 As shodan ping all the IP addresses over the internet, so in this pinging process shodan also list's the IP's associated with VSAT communication on the boat.由于shodan ping了互联网上的所有IP地址,所以在这个ping过程中,shodan还列出了与船上的VSAT通信相关的IP。 Now in the below screens you will see how a normal internet user can search the boats in the sea.现在,在下面的屏幕中,您将看到普通互联网用户如何搜索海中的船只。

===================SNIP================= =================== SNIP =================

  • if you type VSAT in the search engine of shodan you will find there are many unprotected IP's of the ship.如果你在shodan的搜索引擎中键入VSAT,你会发现该船有许多未受保护的IP。

  • You can see in the above screen shots, open ports and IP address of the ship which can be used in other hacking activities.您可以在上面的屏幕截图中看到,可以在其他黑客活动中使用的开放端口和船舶IP地址。
  • You can also check the location of the ship by typing the longitude and latitude of the ship in the google search engine.您还可以通过在Google搜索引擎中键入船舶的经度和纬度来检查船舶的位置。

SEARCHING LIVE CAMS:- 搜索现场摄像头: -

You can search the live cameras with open ports.For searching the live webcams.您可以使用开放端口搜索实时摄像头。搜索实时网络摄像头。 go to shodan search engine and type webcams.去索丹搜索引擎并输入网络摄像头。

For example :-例如 :-

  • For searching webcams, you can type webcams or the query of the webcam which mostly URL path used by IP camera对于搜索网络摄像头,您可以键入网络摄像头网络摄像头的查询,主要是IP摄像头使用的URL路径
  • So we will search /cgi-bin/guestimage.html所以我们将搜索/cgi-bin/guestimage.html
  • The above URL path is normally used by Mobotix company which makes IP surveillance camera.上述URL路径通常由Mobotix公司使用,该公司生产IP监控摄像头。

===================SNIP================ =================== SNIP ================

  • After searching through the query, there is an IP – 166.161.197.253 which we will examine further.在搜索查询后,有一个IP-166.161.197.253,我们将进一步研究。

  • After clicking on the IP, You can see open port and the IP address of the myvzw.com from the organisation verizon wireless.单击IP后,您可以从组织verizon wireless 查看myvzw.com的开放端口和IP地址
  • Now to open IP address type the above IP address with the port into your browser 166.161.197.253:5001 as shown below.现在打开IP地址键入上面的IP地址,并将该端口插入浏览器166.161.197.253:5001 ,如下图所示。

  • As you can see the targeted IP camera is working but it is night over there.正如你所看到的那样,有针对性的IP摄像头正在工作,但那里是夜晚。 Now we will try to find some previous recording to check if the camera is working.现在我们将尝试找到一些先前的录音,以检查相机是否正常工作。
  • Click on the menu market red in the above screen shot.点击上面屏幕截图中的菜单市场红色。

  • Go to the event list.转到活动列表。

  • As there are many previous records.One of the record we will show you the day mode.因为有很多以前的记录。我们将向您展示日期模式的记录之一。

  • One of the previous record as you can see that this surveillance camera is open to exploit.之前的记录之一,你可以看到这个监控摄像头是开放的利用。

Another surveillance camera which is found in the list.另一个监控摄像头,在列表中找到。

  • When we open the IP address with the listed ports we found that:-当我们用列出的端口打开IP地址时,我们发现: -

  • Beach surveillance camera.海滩监控摄像头。

  • Above screen shots, are from the Hotel wellness resort (riva degli etruschi). 以上屏幕截图来自酒店疗养胜地(riva degli etruschi)。

Another example:-另一个例子:-

  • Opening the IP address 89.203.117.200 shows live surveillance.打开IP地址89.203.117.200显示实时监控。

  • Above screen shot is from Czec Rpublic. 以上屏幕截图来自Czec Rpublic。 A local street location from live cam. 现场摄像头的当地街道位置。

OTHER FEATURES IN SHODAN:- SHODAN的其他特点: -

Shodan gives many options to explore. Shodan提供了许多探索选择。

  • By clicking on the explore, you can find the most popular searches which has been done in shodan by other users.通过点击浏览,您可以找到其他用户在shodan中完成的最受欢迎的搜索。 And shows the most common and recent searches.并显示最常见和最近的搜索。
  • These common searches can be used easily used to exploit them as they have lack of security.这些常见搜索可以很容易地用于利用它们,因为它们缺乏安全性。

SEARCHING VIDEO GAMES:- 搜索视频游戏: -

  • You can open listed game servers to check IP addresses.您可以打开列出的游戏服务器来检查IP地址。

  • Here we have chosen the target.在这里,我们选择了目标。

==================SNIP==================== ================== SNIP ====================

  • Minecraft server can be used in port scanning and in other hacking activities. Minecraft服务器可用于端口扫描和其他黑客活动。
  • The above listed vulnerabilities can be used can be used by remote attackers to cause denial-of-service attack.可以使用上面列出的漏洞,远程攻击者可以使用这些漏洞导致拒绝服务攻击。 And the vulnerability could allow to get into the directories.并且漏洞可能允许进入目录。

SEARCHING DATABASES:- 搜索数据库: -

  • Choose the database.选择数据库。

  • Selecting the target.选择目标。

  • In the above screen shot, you can use the IP address with listed ports to open the db page.在上面的屏幕截图中,您可以使用列出端口的IP地址打开数据库页面。

  • It shows the graph of the memory process which can be used in initial phase of penetration testing.它显示了可用于渗透测试初始阶段的存储过程图。

  • As you can see the above screen shots, the above admin details can be used in other hacking activities.正如您可以看到上面的屏幕截图,上面的管理细节可以用于其他黑客活动。

SEARCHING ICS (INDUSTRIAL CONTROL SYSTEM):- 搜索ICS(工业控制系统): -

  • Select the target.选择目标。

===================SNIP================== =================== SNIP ==================

  • The above IP address and open ports can be used in port scanning.上述IP地址和开放端口可用于端口扫描。
  • In the above screen shots, the listed vulnerabilities can cause a massive attacks to the target.在上面的屏幕截图中,列出的漏洞可能会对目标造成大规模攻击。 Denial-of-service attack can be used by attackers.攻击者可以使用拒绝服务攻击。 Remote execution can also be done on this vulnerable website.远程执行也可以在这个易受攻击的网站上完成。

USING THE GOOGLE CHROME EXTENSION:- 使用GOOGLE CHROME EXTENSION: -

  • For quick and fast information, you can also use the google chrome addon which is available in the google chrome appstore. 要获得快速和快速的信息,您还可以使用Google Chrome应用商店中提供的Google Chrome插件。 For installing shodan addon in google chrome go to: https://chrome.google.com/webstore/detail/shodan/jjalcfnidlmpjhdfepjhjbhnhkbgleap?utm_source=chrome-ntp-icon 要在Google Chrome中安装shodan插件,请访问: https ://chrome.google.com/webstore/detail/shodan/jjalcfnidlmpjhdfepjhjbhnhkbgleap?utm_source = chrom -ntp -icon
  • After installing the addon, whenever you open the target site. 安装插件后,无论何时打开目标站点。 Shodan addon will start its query and will show the target website open ports/IP address. Shodan插件将启动其查询并将显示目标网站的开放端口/ IP地址。

MOST POPULAR SEARCHES:- 最受欢迎的搜索: -

Shodan offers many features like searching any open cams, searching for routers with default security methods. Shodan提供许多功能,例如搜索任何打开的凸轮,使用默认安全方法搜索路由器。

============SNIP============ ============ ============ SNIP

  • In the above screen shot, here are some of the listed open devices which can be used in hacking activities. 在上面的屏幕截图中,这里列出了一些可用于黑客活动的开放设备。 The most popular searches are easy to find and can be exploited by script kiddie also. 最受欢迎的搜索很容易找到,也可以被脚本小子利用。

PAID PLANS:- 付费计划: -

  • You can also use the paid plans if you working as professional pentester because shodan provides detailed information for the target. 如果您作为专业测试人员工作,您也可以使用付费计划,因为shodan提供目标的详细信息。

OTHER RESOURCES:- 其他资源: -

You can also use the some other resources to check ship latitude and longitude.您还可以使用其他一些资源来检查船舶的纬度和经度。

  • https://shiptracker.shodan.io https://shiptracker.shodan.io
  • https://www.vesselfinder.com https://www.vesselfinder.com
  • https://www.marinetraffic.com https://www.marinetraffic.com

These websites provide AIS (Automatic Identification System) that uses transponder device to receive the signal to satellite and then transmit those signals to receiver to tell their location, but shodan ship tracker is more than that.这些网站提供AIS(自动识别系统),它使用转发器设备接收信号到卫星,然后将这些信号传输到接收器告诉他们的位置,但是shodan船舶跟踪器不止于此。

  • As you can see in the above screen shots, there are two websites who shows the ship location by using AIS system.正如您在上面的屏幕截图中看到的,有两个网站使用AIS系统显示船舶位置。 Normal user can check to know the location of the website.普通用户可以检查以了解网站的位置。 These two websites shows the longitude and latitude of the ship.这两个网站显示了船舶的经度和纬度。

Tags: 标签:

发表评论

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: