Skip to content

Shinjio/Shodanner

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

48 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

alt text

Shodanner is an API wrapper for the shodan.io API. We decided to write this package because we think that the official shodan API for python is missing many of the API Wrapper methods. We also wanted to add premium methods for free (Exploit methods, for example).

Features

You are free to use the methods that the API Wrapper provides, the python API's methods are used and improved in the methods we developed, most importantly:

  • Automated host enumeration
    • enumerate info, open ports and vulns of a device
  • Exploits finder
    • Given a vulnerability look for a PoC in different exploit databases
    • even with a free API plan!

Installation

Install the python dependencies: pip3 install -r requirements.txt

configure config.json with your api token:

alex@pepe$: vim config.json
{
    "api":"your token here"
}

Usage

#Here's, a quick demo
from src.shodanner import Shodanner
import time

#create Shodanner object
s = Shodanner("config.json")

#let's search 5 ips matching our query
ips = s.quickSearch(query='country:"CN" port:80', results=5)

#Notice how we must wait one second between
#each request, that's because shodan has a 1 request
#per second limit.
hosts = []
for i in ips:
    hosts.append(s.host(i))
    time.sleep(1)

#let's print the vulnerable devices with each CVE
for host in hosts:
    for vuln in host.vulns:
        print(f"[{host.ip}] {vuln.name} {vuln.cvss} - {vuln.references[0]}")

Or you could just run the interactive mode by launching

python3 shodanner

outside the project's directory.

for more details visit the wiki . (that is a work in progress)

Work in progress

The project is still growing, more feature will come and we are open to suggestions:

Discord:

About

Shodan made simple.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages