Shodan
Shodan is a Cybersecurity company keeping track of devices exposed to the Internet. It collect information on devices, running software and related CVEs.
Configuration
| Name | Type | Description |
|---|---|---|
api_key |
string |
The user API key |
base_url |
string |
Shodan base url, like https://api.shodan.io/. |
Actions
Get DNS domain
Get all the subdomains and other DNS entries for the given domain. Uses 1 query credit per lookup.
Arguments
| Name | Type | Description |
|---|---|---|
domain |
string |
Domain name to lookup; example "cnn.com". |
Outputs
| Name | Type | Description |
|---|---|---|
domain |
string |
|
tags |
array |
|
data |
array |
Lookup IPs
Look up the IP address for the provided list of hostnames.
Arguments
| Name | Type | Description |
|---|---|---|
hostnames |
array |
List of hostnames; example "google.com". |
Lookup DNS
Look up the hostnames that have been defined for the given list of IP addresses.
Arguments
| Name | Type | Description |
|---|---|---|
ips |
array |
List of IP addresses; example "74.125.227.230" |
Get Host
Returns all services that have been found for the given host IP.
Arguments
| Name | Type | Description |
|---|---|---|
ip |
string |
Host IP address |
history |
boolean |
True if all historical banners should be returned (default: False) |
minify |
boolean |
True to only return the list of ports and the general host information, no banners. (default: False) |
Outputs
| Name | Type | Description |
|---|---|---|
region_code |
string |
|
ip |
string |
|
area_code |
string |
|
country_name |
string |
|
hostnames |
array |
|
postal_code |
string |
|
dma_code |
string |
|
country_code |
string |
|
data |
array |
|
city |
string |
|
longitude |
number |
|
country_code3 |
string |
|
latitude |
number |
|
os |
string |
|
ports |
array |
Count Hosts
This method behaves identical to "/shodan/host/search" with the only difference that this method does not return any host results, it only returns the total number of results that matched the query and any facet information that was requested. As a result this method does not consume query credits.
Arguments
| Name | Type | Description |
|---|---|---|
query |
string |
Shodan search query. The provided string is used to search the database of banners in Shodan, with the additional option to provide filters inside the search query using a "filter:value" format. For example, the following search query would find Apache webservers located in Germany: "apache country:DE". |
facets |
string |
A comma-separated list of properties to get summary information on. Property names can also be in the format of "property:count", where "count" is the number of facets that will be returned for a property (i.e. "country:100" to get the top 100 countries for a search query). |
Outputs
| Name | Type | Description |
|---|---|---|
matches |
array |
|
facets |
object |
|
total |
integer |
Search Host
Search Shodan using the same query syntax as the website and use facets to get summary information for different properties.
Arguments
| Name | Type | Description |
|---|---|---|
query |
string |
Shodan search query. The provided string is used to search the database of banners in Shodan, with the additional option to provide filters inside the search query using a "filter:value" format. For example, the following search query would find Apache webservers located in Germany: "apache country:DE". |
facets |
string |
A comma-separated list of properties to get summary information on. Property names can also be in the format of "property:count", where "count" is the number of facets that will be returned for a property (i.e. "country:100" to get the top 100 countries for a search query). |
max_pages |
integer |
Set the maximum number of pages retrieved. |
minify |
boolean |
True or False; whether or not to truncate some of the larger fields (default: True) |
Outputs
| Name | Type | Description |
|---|---|---|
matches |
array |
|
facets |
object |
|
total |
integer |
Extra
Module Shodan v1.25.0