Add Shodan integration

[colin-stubbs]

Integration release checklist

Shodan provides data about hosts scanned/observed on the public Internet. This is a useful data source to Security Operations Centres, and any teams responsible for monitoring infrastructure, as well as security researchers.

Alerting from Shodan is provided by the Shodan Monitor service, which can be used to obtain push style alerts via webhook, which provides notification of new exposed services on monitored hosts and hosts related to DNS names, as well as vulnerabilities discovered on those hosts.

All changes

• [X] Change follows the contributing guidelines
• [X] Supported versions of the monitoring target are documented (vendor documentation links)
• [X] Supported operating systems are documented (not relevant)
• [X] Integration or System tests exist
• [X] Documentation exists
• [X] Fields follow ECS and naming conventions
• [X] At least a manual test with ES / Kibana / Agent has been performed.
• [X] Required Kibana version set to: 8.6.0

New Package

• [X] Screenshot of the "Add Integration" page on Fleet added

Dashboards changes

• [X] Dashboards exists
• [X] Screenshots added or updated
• [X] Datastream filters added to visualizations

Log dataset changes

• [X] Pipeline tests exist
• [X] Generated output for at least 1 log file exists

[elasticmachine]

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

[colin-stubbs]

PR inbound tomorrow :-)

[colin-stubbs]

@jamiehynds it's a monster, but it had to be to do battle with Shodan's data...