Category: Shodan


Black Window 10 v2

  Black Window Enterprise 10 Codename : Polemos Black Window 10 Enterprise is the first windows based penetration testing distribution with Linux integrated ! The system comes activated with a digital license for Windows enterprise! It supports windows apps and Linux apps, GUI and terminal apps! It comes with a tone off hacking tools plus all the tools that are included with the latest release of Cerberus Linux! It has managed to implement Cerberus os within windows. Offers the stability of a windows system…

AztarnaCryptographyFingerprintingFootprintingIndustrial RobotsNEW TOOLSRoboticsROSROS2ShodanShodan APISROS

Aztarna – A Footprinting Tool For Robots

This repository contains Alias Robotics' aztarna, a footprinting tool for robots.Alias Robotics supports original robot manufacturers assessing their security and improving their quality of software. By no means we encourage or promote the unauthorized tampering with running robotic systems. This can cause serious human harm and material damages.For ROSA list of the ROS nodes present in the system (Publishers and Subscribers)For each node, the published and subscribed topis including the topic typeFor each node, the ROS services each of the nodes offerA list of…

ChromecastCrashcast-ExploitNEW TOOLSShodan

Crashcast-Exploit – This Tool Allows You Mass Play Any YouTube Video With Chromecasts Obtained From

This tool allows you to mass play any YouTube video with Chromecasts obtained from Shodan.ioAuthor: @037PrerequisitesThe only thing you need installed is Python 3.xsudo apt-get install python3You also require to have cURL installedsudo apt-get install curlYou also require Shodan python modulepip install shodanUsing Shodan APIThis tool requires you to own an upgraded Shodan APIYou may obtain one for free in Shodan if you sign up using a .edu emailDownload Crashcast-Exploit

MacNEW TOOLSSecurity AutomationSecurity ResearchSecurity ScannerShodanShodan APIShodan CLIShodan ScriptsShodan ToolShodanploitShodansploitSSH

Shodanploit – Shodan Command Line Interface Written In Python

Shodan is a search engine on the internet where you can find interesting things all over the world. For example, we can find cameras, bitcoin streams, zombie computers, ports with weakness in service, SCADA systems, and more. Moreover, more specific searches are possible. As a result of the search, Shodan shows us the number of vulnerable hosts on Earth.So what does shodansploit do ?With Shodan Exploit, you will have all your calls on your terminal. It also allows you to make detailed searches. All…

EmailhunterEmailsInformation ExtractionInformation GatheringNEW TOOLSOSINT PythonPenetration TestShodanVisibility

Infoga – Email OSINT

Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source (search engines, pgp key servers and shodan) and check if emails was leaked using API. Is a really simple tool, but very effective for the early stages of a penetration test or just to know the visibility of your company in the Internet. Installation$ git clone infoga$ cd infoga$ python install$ python infoga.pyUsage$ python --domain --source all --breach -v 2 --report ../nsa_gov.txt$ python --info --breach…

KamerkaMacNEW TOOLSShodan

Kamerka – Build Interactive Map Of Cameras From Shodan

Build an interactive map of cameras from Shodan.The script creates a map of Shodan cameras based on your address or coordinates. install -r requirements.txtChange API_KEY in line 14RestrictionsIt can be used only with a paid Shodan plan. Build with Python 2.Usageroot@kali: python --address "White House"White House, 1600, Pennsylvania Avenue Northwest, Golden Triangle, Washington, D.C., 20500, USAFound 81 resultsIP:,,,, map as White --coordinates "x.y,x.y" --dark --radius 4 OtherDo not test on devices you don't…

CensysCloudBunnyNEW TOOLSPentestPentest ToolsSearch EnginesShodanToolWAFZoomeye

CloudBunny – A Tool To Capture The Real IP Of The Server That Uses A WAF As A Proxy Or Protection

CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection.How worksIn this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye. To use the tools you need the API Keys, you can pick up the following links:Shodan - - - : In Zoomeye you need to enter the login and password, it generates a dynamic api key and I already do this work for you. Just…

BeautifulsoupDjangoDjangoHunterNEW TOOLSPython3Shodan

DjangoHunter – Tool Designed To Help Identify Incorrectly Configured Django Applications That Are Exposing Sensitive Information

Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information. : python3 --key {shodan}Dorks: 'DisallowedHost', 'KeyError', 'OperationalError', 'Page not found at /'RequirementsShodanPyfigletRequestsBeautifulSouppip -r install requirementsDemoDisclaimerCode samples are provided for educational purposes. Adequate defenses can only be built by researching attack techniques available to malicious actors. Using this code against target systems without prior permission is illegal in most jurisdictions. The authors are not liable for any damages from misuse of this information or code.Download Djangohunter

BillCipherCloudFlareHatCloudHTTrackInformation GatheringIP InformationKaliNEW TOOLSPython3RubyShodanShodan API

BillCipher – Information Gathering Tool For A Website Or IP Address

Information Gathering tool for a Website or IP address, use some ideas from Devploit. BillCipher can work in any operating system if they have and support Python 2, Python 3, and Ruby.FeaturesDNS LookupWhois LookupGeoIP LookupSubnet LookupPort ScannerPage LinksZone TransferHTTP HeaderHost FinderIP-LocatorFind Shared DNS ServersGet Robots.txtHost DNS FinderReserve IP LookupEmail Gathering (use Infoga)Subdomain listing (use Sublist3r)Find Admin login site (use Breacher)Check and Bypass CloudFlare (use HatCloud)Website Copier (use httrack) NEW!Host Info Scanner (use WhatWeb) NEW!Install and Run in Linuxsudo apt update && sudo apt install…

DATAFirebaseFireShodanMapGoogle MapsJavaScriptMacNEW TOOLSShodan

FireShodanMap – A Realtime Map That Integrates Firebase, Google Maps And Shodan

FireShodanMap is a Realtime map that integrates Firebase and Shodan. A search is carried out using Shodan searching vulnerable devices and they are showed on the map for analysis. All data updated in Firebase are Realtime.ChangesWe have a file named "" responsible for fill Firebase database, we need to change:[+] FILE_WITH_KEY.json (Open the Credentials tab and click Create credentials. You want the API key option. Create a server key. It will automatically download as a *.json file)[+] KEY_FIREBASE_HERE (Open the Firebase Project and click…