A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities

Last update: Aug 09, 2022

Overview

Shodan Quick Recon

A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities

Configuration

You must edit the python code, and insert your Shodan API Where it is stated & Save it.

The word apache is already definted, and will extract whatever you change it to, so each time you can setup a word to perform the search, and you can save the output results using > output.txt in order to cat/work and grep things of interest.

More info on tweaking this can be found here:

https://shodan.readthedocs.io/en/latest/tutorial.html

Support

You can Support our Work by Joining our Patreon for Exclusive Video Content:

https://www.patreon.com/blackhatethicalhacking

Owner

Black Hat Ethical Hacking

Offensive Security: Black Box Penetration Testing, Digital Forensics, Offensive Security Courses, Content Production, Bug Bounty & More!

GitHub Repository

A hashtag check python module

3 Aug 10, 2022

A guide to building basic malware in Python by implementing a keylogger application

Keylogger-Malware-Project A guide to building basic malware in Python by implementing a keylogger application. If you want even more detail on the Pro

1 Jan 11, 2022

Receive notifications/alerts on the most recent disclosed CVE's.

Receive notifications on the most recent disclosed CVE's.

7 Nov 24, 2022

Early days of an Asset Discovery tool.

Please star this project! Written in Python Report Bug . Request Feature DISCLAIMER This project is in its early days, everything you see here is almo

3 Dec 20, 2022

Tool to decrypt iOS apps using r2frida

r2flutch Yet another tool to decrypt iOS apps using r2frida. Requirements It requires to install Frida on the Jailbroken iOS device: Jailbroken device

146 Jan 03, 2023

nuclei scanner for proxyshell ( CVE-2021-34473 )

Proxyshell-Scanner nuclei scanner for Proxyshell RCE (CVE-2021-34423,CVE-2021-34473,CVE-2021-31207) discovered by orange tsai in Pwn2Own, which affect

29 Dec 16, 2022

Fast subdomain scanner, Takes arguments from a Json file ("args.json") and outputs the subdomains.

Fast subdomain scanner, Takes arguments from a Json file ("args.json") and outputs the subdomains. File Structure core/ colors.py db/ wordlist.txt REA

4 Jul 02, 2022

This tool help you to check if your Windows machine has hidden miner.

Hidden Miner Detector This tool help you to check if your Windows machine has hidden miner. Miners track when you open antivirus software or task mana

2 Oct 05, 2022

Deobfuscate Log4Shell payloads with ease

Ox4Shell Deobfuscate Log4Shell payloads with ease. Description Since the release

137 Jan 02, 2023

A great and handy python obfuscator for protecting code.

Python Code Obfuscator A handy and necessary tool that can protect your code anytime! Mostly Command Line tool that will obfuscate your code. Features

5 Nov 18, 2022

一款辅助探测Orderby注入漏洞的BurpSuite插件，Python3编写，适用于上xray等扫描器被ban的场景

OrderbyHunter 一款辅助探测Orderby注入漏洞的BurpSuite插件，Python3编写，适用于上xray等扫描器被ban的场景 1. 支持Get/Post型请求参数的探测，被动探测，对于存在Orderby注入的请求将会在HTTP Histroy里标红 2. 自定义排序参数list

21 Aug 12, 2022

Statistical Random Number Generator Attack Against The Kirchhoff-law-johnson-noise (Kljn) Secure Key Exchange Protocol

1 Jan 13, 2022

Obfuscate ip address using different encodings

ipobfuscator How it works? Single ip address can be written in multiple ways. The most popular way is to represent ip as 4 octets separated with dots.

1 Nov 02, 2021

A simple linux keylogger project.

The project This project is a simple linux keylogger. When activated, it registers all the actions made with the keyboard. The log files are registere

1 Oct 24, 2021

List of S3 Hacks

s3-leaks List of AWS S3 Leaks Feel free to send in a PR if you know of other leaks Date Description Notes Aug2020 S3 bucket mess up exposed 182GB of s

291 Dec 28, 2022

大宝剑-信息收集和资产梳理工具（红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配）

835 Jan 05, 2023

command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

CVE-2021-36260 CVE-2021-36260 POC command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validatio

165 Dec 21, 2022

A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities

Related tags

Overview

Shodan Quick Recon

Configuration

Support

Owner

Black Hat Ethical Hacking

A hashtag check python module

A guide to building basic malware in Python by implementing a keylogger application

Receive notifications/alerts on the most recent disclosed CVE's.

Early days of an Asset Discovery tool.

Tool to decrypt iOS apps using r2frida

nuclei scanner for proxyshell ( CVE-2021-34473 )

Fast subdomain scanner, Takes arguments from a Json file ("args.json") and outputs the subdomains.

This tool help you to check if your Windows machine has hidden miner.

Deobfuscate Log4Shell payloads with ease

A great and handy python obfuscator for protecting code.

一款辅助探测Orderby注入漏洞的BurpSuite插件，Python3编写，适用于上xray等扫描器被ban的场景

Statistical Random Number Generator Attack Against The Kirchhoff-law-johnson-noise (Kljn) Secure Key Exchange Protocol

Obfuscate ip address using different encodings

A simple linux keylogger project.

List of S3 Hacks

大宝剑-信息收集和资产梳理工具（红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配）

command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

Scanner for Intranet

A Docker based LDAP RCE exploit demo for CVE-2021-44228 Log4Shell

Python tool for exploiting CVE-2021-35616