Access WebCams , Traffic Lights and IOT Devices with ease
What? Really?
It may sound unbelievable but it is truth.
Internet is now compulsory these days. Every device has been connecting constantly to internet [as a metter of fact internet is also much more available] .
IOT also known as Internet Of Things such as Air conditioner to Garage lights also can be controlled from a web interface even from 100 KM far from those switches .
And Here is the security whole - Most of these Devices [including digital traffic lights and billboards] offers a Web Interface Often Unsecured . Most of the remote Golf course and barnyard as well as Storages has Unsecured CCTV Web Interface. 🙂
How to find those ?
Just like any other search engines Shodan is also a search engine but the advantage is it's a Database of Devices .
Shodan Crawls and stores every devices connected to internet and organizes them accordingly. 🍻
Get Started
SHODAN can be used right from their served search engine also they provide a API which can be used to build applications too [Has a fetch limit of 100 as of writing]
So let's get started :
- Go to Shodan's engine
- Either you can create an account [For extended features] or you can Directly search on the top of page .
![SearchBar]()
- Write the device you want to search for for example webcam
- Now you will be presented with search results associated with the tag .
- Click one of those Ips . Now you will be redirected to That Webcam's Dashboard.
![WebcamDash]()
- In my case , The dashboard I got was secured . In most of the time the dashboard has Default login Credentials . Which can looked up By a simple search with provider's name
- In another lookup I was lucky to get an unsecured CCTV dashboard of a golf course 😮
![Unsecured]()
Narrowing Down Searches
In above we searched in global . But that isn't much efficient when it comes to our needs 😉
So we can specify the places specifically
For Example : We can write webcam country:US To specify the country. Or a city name like webcam city:zurich .
Also we can search with Longitude & Latitude .
For example webcam geo: -37.81,144.96. will get us to somewhere with that point or near that.
Filters
after: Search by a timeframe delimiter for things after a certain date.
asn: Search by the autonomous system number.
before: Search by a timeframe delimiter for things before a certain date.
city: Search by the city where the device is located.
country: Search by the country where the device is located (two-letter code).
device: Search by the device or network's name.
devicetype: Search by the type of device (webcam, router, etc.).
domain: Search an array of strings containing the top-level domains for the hostnames of the device.
geo: Search by the coordinates where the device is located.
hash: Search by the banner hash.
has_screenshot:true Search for devices where a screenshot is present.
hostname: Search by the hostname that has been assigned to the IP address for the device.
ip: Search by the IP address of the host as an integer.
ip_str: Search by the IP address of the host as a string.
ipv6: Search by the IPv6 address of the host as a string.
isp: Search by the ISP that is providing the organization with the IP space for the device.
link: Search by the network link type. Possible values are: "Ethernet or modem", "generic tunnel or VPN", "DSL", "IPIP or SIT", "SLIP", "IPSec or GRE", "VLAN", "jumbo Ethernet", "Google", "GIF", "PPTP", "loopback", "AX.25 radio modem".
net: Filter by network range or IP in CIDR notation.
port: Find devices based on the open ports/ software.
org: Search for devices that are on a specific organization’s network.
os: Search by the operating system that powers the device.
state: Search by the state where the device is located (two-letter code).
title: Search by text within the title of the website as extracted from the HTML source.
Morality
Meh.. Enjoy 😜
