The idea of a connected home can also raise concerns about the vulnerability of so many internet-connected devices in the same environment. In this case, an alternative is to use Shodan to query the status of the devices.
What is Shodan?
Shodan is a search engine aimed at devices connected to the Internet. While a conventional research tool like Google informs sites and pages indexed on the World Wide Web, Shodan brings information about devices connected to the Internet.
The site was created in 2009 and for many years focused on routers, servers and open cameras. With the evolution of the Internet of Things, Shodan also started to be used for smart devices, such as security cameras, speakers, business systems or any other item linked to an IP address.
Search filters can display the number of devices connected in a region or the number of devices linked to a specific server, for example.
How Shodan works
Shodan concentrates the public information of all devices connected to the internet: this includes IP address, connection ports, protocols and other technical aspects.
For this, the tool collects all data from banners, a component of each web service with metadata about the software used on the device. Each banner can contain the properties mentioned above and Shodan organizes the information for searches on the platform after requesting access to open ports.
It is worth mentioning that all the information that Shodan shows is already public, despite the difficult access. What the platform does is collect all these specs and list them for reference on a single website.
Who usually uses the tool?
Shodan is at the center of many cybersecurity discussions precisely for the reasons it is used: it is a common mechanism among hackers and digital security professionals.
It is not illegal to use Shodan to query about devices as long as you have the consent of the device owners. However, hackers and intruders can check which equipment is vulnerable and plan attacks with ransomware, malware and even control of equipment – as is the case with open webcams.
On the other hand, it is a very useful tool for market research and security work. A company can query Shodan to find out how many devices exist in a specific region or monitor the number of smart appliances.
In the field of security, professionals can consult all system vulnerabilities of a home, company or commercial establishment, in addition to checking devices impacted by ransomware and other possible digital fraud.
How to use Shodan in my favor?
Shodan has a simplified interface and allows anyone to query the platform. To get started, you can create an account and read materials geared toward beginners.
In everyday life, you can use the search tool to see which devices are vulnerable in your home, such as those with open ports or still protected with the default system password. It is worth doing this scan and changing passwords to reduce the action of intruders.
In addition, the searcher can still be used to see which devices were connected to your network without you knowing and control the exposure of your items. The free version of Shodan allows you to do up to 100 searches per month.
How to find connected devices in Shodan
Shodan’s search bar isn’t as intuitive as Google, Bing, and other website-oriented engines. It is necessary to insert a series of filters to refine the search and find the desired result.
Some of the filters are:
- city: search for a city;
- country: find by country;
- os: informs the operating system used;
- port: finds open ports;
- product: the name of the product.
To use Shodan it is necessary to enter the terms in quotes for each filter. For example: to find devices in Campinas, type city:”Campinas”.
It’s important to remember that the search tool only finds public information or networks with open ports — if you use private settings, your device may not appear in the results.
What to do when I find my device?
To interpret Shodan data, it is necessary to have some basic IT knowledge. That way, you’ll be able to understand if there are open ports or any vulnerability in the protocols used by the device.
However, if you just want to protect and preserve the search tool’s devices, you can adopt a few strategies:
- Change default passwords, such as adminfor stronger passwords;
- Update the system frequently;
- Maintain an active firewall;
- Use private IP addresses;
- Limit device access to your network.
To increase your security options, you can also check out some tips for protecting PC files and browsing public computers.
