Interesting Shodan Searches

Here are a few searches that I tried that produced interesting results. For some ideas on devices, vendors, and models please see the phenolit default password list.

WebServer Detection

1. IIS+2.0

2. IIS+3.0

3. IIS+4.0

4. IIS+5.0

5. IIS+6.0

6. Websphere+4.0

7. Websphere+5.0

8. Websphere+6.0

9. ?Oracle HTTP Server?

10. Jrun

11. RaidenHTTPd

12. ?IBM HTTP?

13. Tru64

14. iCern

15. Lotus-Domino + 1.0

16. Apache (tons of versions with this, too many to list)

17. Windweb

CMS Detection

1. Joomla

2. Drupal

3. WordPress

4. Typo3

Network Device Detection

1. Linksys

1. Linksys+wrt54g

2. Linksys+wap54g

3. Linksys+BEFDSR41w

4. Linksys+BEFSX41

5. Linksys+wap200

6. Linksys+CIT400 (This is a telephony kit…interesting)

7. Linksys+RVS4000

8. Linksys+WET54G

9. Linksys+WAG54GX2

10. Linksys+WAG54GS

2. Netgear

1. Netgear+DG834

2. Netgear+PS121v2

3. Netgear+WGR614v9

4. Netgear+WAG302v2

5. Netgear+DG834PN

3. Cisco

3. Cisco+RVo82

4. Cisco+CSS

5. Cisco+PIX

6. Cisco+VPN

7. Cisco+Server

4. Fuji+Xerox

5. JetDirect

Other

1. Xerver

2. port:23+ list+of+built-in+commands

3. port:80+iisstart.html

4. Server: SQ-WEBCAM

5. ?Anonymous+access+allowed?

6. Golden+FTP+Server

7. ?Server:+iWeb?+HTTP

8. passwd

9. passwd+user+vname

10. deleted

Comments are closed.