Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI

[Music] hey guys hack exploit here back again with another video in this video i'm going to be showing you how to use showdown.io or showdown the search engine and how to install it search engine and how to install it on your linux terminal so you can access it from there as well so let's get started now for those of you who have never heard of showdown or showdown is a very very powerful search engine that i'm sure if you've watched mr robot you probably already know it's a search engine that exposes vulnerabilities the problem is that not many people know how it works and how to fully utilize it to its maximum potential now i've been using it for quite a while now and i've actually learned a lot about it i've read a few books on it and it is extremely powerful so let me explain to you what it is really because many other youtubers seem to ignore the fact that uh you know in order for you to utilize it correctly you need to understand how it works all right so showdown is a search engine that will allow users to search the internet of things all right so it searches uh the the network that is created by devices connected to the internet all right and then they'll gather information uh you know like the operating system being used or the service that's running on a port all right so it in in essence what it's performing is it's performing banner grabbing all right so it's performing service banner grabbing that will it'll grab all information it that it can about any devices that is connected to the internet all right so it performs full service banner grabbing uh from servers or any other devices connected to the internet and it'll you it'll scan for different ports now one of the most popular ports that it will scan for is the port 80 all right other ports that it can scan for are the ssh port which is port 22 uh you have your ftp port port 21 your telnet which is port 23 i don't know if anyone has telnet running on their server if they do they should probably be sent to jail for that because that is just unbelievably insecure or unsecure all right so uh it is used for for performing banner grabbing and it goes it searches every device connected to the internet and you know it scans for ports and the services and the operating system that is running on each of these devices all right so it can be used you know to access web servers network devices and webcams you know routers etc etc you know scada systems a lot of systems that are going to be online obviously and you know you can take advantage of them now when i say this i'm going to throw out a bit of caution please do not do this use this information for any illegal purposes i'm not going to be held responsible that is my disclaimer to you guys all right so let's look at how to use showdown all right let's get started so i'm i've just opened up the link uh on my browser i'm using firefox you know the standard stuff uh you guys can use whatever browser you want to use so the website is showdown.io now i'm sure most of you have actually tried this out but again it's really really there's no starter guide on how to use it so hopefully this will help you guys understand how it works a little bit more all right so the mo the first thing you want to do uh the probably the most important thing to get you know the maximum effectiveness from this website or this search engine is to create an account all right so just go ahead and create an account you can do it right over there but i've already created mine so i don't have to do that it's really very simple you can even log in with your google account directly and you don't have to create a separate account all right so it's pretty simple the website uh again tells you the search engine uh for the webcams for web so it'll say shorten is the world's first search engine for the internet connected devices so the internet of things really all right um so uh you know we can search for anything in the search bar right here and you know whatever comes to mind so some of the easiest and the most common searches that most people will do as they saw on mr robot is something like webcams all right now if i search for webcams uh indeed webcams will show up so so let's actually see that right and here we have a webcam in ireland all right so i'm just going to click on one of them and it's going to open up and as you can see we can access get direct access to the webcams right now we have one in italy we have another one in sweden live cameras may be updating every or you know three to five frames i'm not sure about the frame rate we have one in the united states uh blah blah blah we have a whole collection of webcams here so it looks like it's a server setup for looking at different webcams from different places and straight off the bat you can see how useful showdown is now again whatever you want to do to the ip address you know that's up to you we also have one from iran pretty interesting there now going back again that's just one search that we've done for webcams let's look at the second one which is in cologne in germany all right um let's click on it let's see what it does give us i probably should have opened it up on in another tab but i'm just going to give you some i'm just going to open it up in another tab hopefully the search is not is not loaded um so let that try and open up here now meanwhile while that's loading up i think it's very very important to understand uh what information that it's given you right now all right so we have made a search for webcams and it's going to give you here total results 293 not bad at all and then it's going to say the top countries so we can see united states germany canada russian federation japan right now it's going to give you the services all right so we have the https which is port 121 we have the nas http blah blah blah all the services that are running top organizations these are the organizations that who are behind or own these webcams we have cyber walks blue gravity comcast verizon blah blah blah and then we have the operating systems being used which are you know qts linux 3 obviously that's fantastic that is running linux then the products you have apache webcam xp so some people are you know still using x windows xp for what reason i don't know you know god be with them and yeah well as i was saying that that didn't open up so it's probably locked or it's down uh so let me open this other ip right here and we have a webcam xp5 and apparently this is some sort of live stream and yeah we are getting a live stream of someone's window i believe nothing about the um well it looks to be united states so yeah this is a a webcam that's currently running and it looks like it's running about two to three frames per second you have different sources let's try source2 uh javascript you can also oh we have another camera another webcam so we have the we can also use motion which is i think a little bit faster in terms of how the frames are rendered uh but there you go that's how to access webcams using showdown let's look at some other uh search search options uh one of the other popular ones is the traffic signals all right so signals and you can imagine the damage that this can do you know an engine that gives information that you're looking for and oops currently right now we only have one well that's a bit scary but you know what let's just go for it i'm going to try and access it um welcome blah blah blah all right so this has nothing to do with what we're looking for so that such option did not give me anything really so let's look at some other search options that we can use or um other examples so as i said you can search for pots which is awesome now some of the search filters that you can use are like you can search for ports uh you can search for port now the syntax for this is uh let me try and zoom in i'm sure a lot of you guys can see what's going on so port all right and then use a colon so these are the this is the string format so you have to actually make your searches in string format if you're looking for the most results so let's say we're looking for anything that could be running port um let's try port 22 all right so let's try that right now which you we know 422 is ssh all right so port 22 and immediately we get uh we we know we're correct because it's gonna display about 30 million results freaking awesome man all right so most of them are in the united states about four million we have china and the funny thing is sorry for interrupting what i was about to say there uh it'll give you the service so it's running ssh 2 open ssh 7.2 key type the ssh rsa and it gives you the actual key here which is freaking awesome now if you open it up right here hope i i know it's probably not going to open up to the direct connection because we have to use the ssh service i don't know if i should actually try and connect to it i was just looking at the the ssh key and you you can basically have a good idea of what's going on here now there are plenty of these servers that you can look to exploit and as you can see most of them are running open ssh which is awesome uh some are running uh open ssh on debian uh but mostly you've tried you'll try to see that it's running on linux which is awesome nothing running uh xp being the last one but again you know experimentation and whatever you guys decide to do with this you know it's up to you you can also use the port two 1723 or you know post specific ports that the operating system would use so client operating systems like um you know three three eight nine let's try and use that port um [Music] let's see what we get here this should probably return some remote desktop controls set up by computers the port 3389 is used by operating system for remote remote access i believe oh there we are we have one that allows us to connect to someone's computer let's try that out uh we probably have to connect to the uh ip address directly uh there's a screenshot as well someone did take a screenshot there we are so we have windows 10 someone is running windows 10 let's look at what we can get from here so it is indeed running the port um the port 1389 uh so let's actually try and access that uh what i'm going to do is 3389 paste that oops did i copy that copy t389 let's see if we can get access there oops i used a let me go back there service and available probably blocked um all right so let's look at some other services so that's how to use you know scan for operating systems that could be live again you can use whatever you feel uh you want to access but it's pretty pretty awesome you know pretty pretty awesome the amount of stuff that you can do let's look at some other search filters that we can use um we can also search for simple things like routers all right so let's say i was to say net gear and you know this will probably give us access to the uh the admin panels or the control panels for the different routers so you can you can see we have the netgear um let's see what uh what which one of them we can access here let me try and open that one up uh whoops there we are that's the net gear let's try and connect to this one here all right uh l doesn't look like it has any credentials uh such oops what am i doing searching google for that my bad sorry about that guys let's paste that and go uh probably give us an error uh given the fact that this is a router uh but let's see what we get and the reason most of these are giving us access you might be wondering is why the hell are routers giving us uh you know access to to the admin panels and that's because they've been set up for remote access which means you know you can control your uh your router from you know anywhere in the world really as long as you have an internet connection and your route has an internet connection so here we have uh you know some cisco uh devices running cisco which is also awesome as well so there's a lot you can do with showdown and so you can search for a lot of vulnerable devices but the the real beauty of showdown is combining the search filters that we know all right so let's say we wanted to search for different services like uh there are a lot of search filters i'm just going to be showing you some of them let's say we search for an os all right so os and we can say os and we can say windows xp right so os colon windows xp in string format oops i actually did not use the correct syntax there i believe it's os with a capital i'm not sure or we can just search for windows probably the xp is used using a colon there we are all right so we can immediately see that uh there's a lot of services here that are running and they're running different services so you know not a lot of devices which is always a good thing to see not a lot of people uh running uh windows xp but you can see that the different information shared is the um the amount of devices connected so you have your yeah this one looks pretty vulnerable from my point but we're not going to look at that um you know in depth so that's one of the search filters the other one is you can use something like the city so you can say city and we give the name of the city so in double quotes you can specify something like let's say let's search for a city let's say florida i know that's a state but let's see what service is running in florida let's see sometimes it's obviously going to take a while trying to index it uh you know in into a specific location yeah there we are uh united states florida we do have florida in argentina apparently and uh yeah you can really see how you can sort out information in terms of the devices connected to the internet and these basically allow you or give you access to search as much as you want you know there's we have looked at the search filters like ports countries uh cities operating systems we can also try and search something like for services directly so let's say apache apache service version 2.2.3 a research for that this will probably give us servers uh that are running apache and more specifically that one and then you know you could probably find exploits for that version and try to break through you know whatever you want to do that's that's up to you man do whatever you want to do it's really up to you uh oops er establishing uh it's apparently it's running wordpress so you can see this is probably the hackers or a pen testers well a black attackers you know this is probably their dream come true the amount of devices that you could get access to here really really easily i mean some of these computers are running ancient pieces of software that have multiple exploits and i have to come back to windows xp you know that that is something that is so exploited it's unbelievable that people are still running that they said it should be legal to run about enough of the jokes about windows xp um let's look at how to install uh showdown on your terminal so to do that just go on developers all right and it's going to say leverage the power of showdown it's basically using the showdown api all right so get started all right that should probably give us that really quickly and it's going to give you all these options that you can use uh to get started with the api these are specific to languages all right now if i go back here those are specific for uh for languages so if you want to uh you know include the api in your mobile application or something like that the api is available uh to install it on your your command line just go to the command line friendly and install the cli it's really very very easy to install it uh so it's as it says it's going to say get showdown command line interface just easy install showdown so let's do that right now uh so let's go into my terminal all right uh let it open up i don't know why it's taking so much time uh there we are so let me just zoom in uh so easy install show done all right easy install show done it's gonna search and then soon after install it for us all right there we are searching for showdown downloading showdown um there we are it's done and now we have to get the api key all right so it's gonna ask you for your api key so let's get our api key and it's going to give you api key in your account overview so just copy that or you can use your your qr code scanner but that will probably defeat the purpose so paste in your api key oops you have to use the showdown command pardon me so we can actually use the help options here so show them and i believe it does have have a help menu here so shouldn't help there we are so showdown we need to set the um we need to set the initialize it so show done i think it should initialize so show done oops initialize and we paste in our api key right here and if we hit enter oops oh yeah sorry about that i believe i thought it had a short key sorry about that it's still not giving us that showdown um initialize and we paste in that api key place that back in all right so successfully initialized actually believed i thought it had short key because it was giving us the options right here but that's weird anyway so we can now go ahead and use showdown and if you go back to the website let's go back and as you can see the command overview is pretty pretty simple you can perform example searches like showdown account microsoft blah blah blah that's an example search uh so let's try and perform uh one of the services that it does give us here which is showdown host uh yeah and then it gives us an ap so let's try that out so clear so show then host uh did i actually copy that entire entire command post and uh paste that in there yeah i did sorry about that guys apologies apologies so short and host and if we search for this uh it's going to automatically use the search engine which is awesome there we are let's try and find another ip that we can search or you can search for show done short then port 22 you know this is weird i thought the or they must have changed the command types because the words were shorthand uh all right so showdown host apparently you have to look uh there's uh there's it's limited in what you can search for uh so you can check uh oh so this is for exploits awesome so this is mainly targeted at you know searching the specific target that you've got in terms of the ip which is awesome so if you had got an ip on show done which we had we could just perform here if we went back to showdown sorry up there and we performed a search for something like um we searched for port port 22 you know an ssh port and we searched for it right there there we are it would give us some ssh ports and you would probably get the ip address and then see if you could log in or you know look at whether there's a honey pot which is also also awesome here that it does provide you with that option with the api for the command line interface so that's going to be it for this video guys i hope you found value in this video if you did please leave a like down below if you have any questions or suggestions let me know in the comment section down below or you can hit me up on my social networks if you want any your personal questions you can also hit me up on kik uh for the latest hacking news and resources and to find the documented version of this video you can check out my website or hackersploit.com [Music]