ideaengine007
commented
4 years ago Query: http.favicon.hash:"1485257654" "200"
Link: https://www.shodan.io/search?query=http.favicon.hash%3A%221485257654%22+%22200%22
Description: This Shodan query looks for open SonarQube instances which have returned a status code of 200 OK. SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages. With this query, one can find entire code bases of organizations that use this platform for their code reviews.
Calling all pentesters and/or people like myself who find infosec pretty neat!
Do you have any cool Shodan.io queries that you've come across — cool, funny, interesting, scary, facepalm-inducing, or otherwise? Some examples of IOT gems we've already found are electronic billboards with banks advertising free donuts, gas station pumps around the country, X-ray machines, 3D printers with live webcams, license plate readers...the list goes on and on (unfortunately).
I'd love to add it to this list. Feel free to simply drop the query/search result URL in a comment here or make a pull request (some light guidelines are in
contributing.md) if you're feeling ambitious. I'll keep this issue open for the month.Happy Hacktoberfest and happy hunting! 🎃