home.social

#shodan — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #shodan, aggregated by home.social.

  1. From this week's Linux Update: Every pen test begins with information gathering. Give yourself a head start with the Shodan search engine and its powerful toolkit.
    linux-magazine.com/Issues/2026

  2. Wann wieder #shodan membership flash sale? Juli, August rum?

  3. ----------------

    🔹 🛠️ Tool: ThreatSentry AI

    ThreatSentry AI is presented as an enterprise-focused threat-hunting platform that automates external asset discovery, enriches findings from multiple sources, and applies ensemble machine learning to prioritize risk. The project lists PyQt5 for UI, scikit-learn for ML, and SQLAlchemy for persistence, and names EclipseManic as project lead.

    🔹 Core pipeline and integrations

    The platform performs continuous external visibility via Shodan queries (preset and custom), extracts service banners across common products (examples in the project include Apache, Nginx, MySQL, IIS), and correlates banner data with NVD CVE information. CVSS-based severity classification is applied where CVE matches are found; the README notes that CVE metrics are updated only when vulnerabilities are identified to avoid data loss.

    🔹 Machine learning and scoring

    The risk engine is described as an ensemble combining Random Forest, Gradient Boosting, and Neural Network components. Models evaluate 40+ attributes spanning temporal context (exposure duration, patch lag), network position (service criticality, segmentation), behavioral signals (authentication failures, traffic anomalies), and compliance impact (data sensitivity, regulatory exposure). Each risk prediction includes a confidence score in the 0–1 range. The system is described as having configurable automatic retraining with analyst feedback integration for continuous learning.

    🔹 Platform capabilities and outputs

    ThreatSentry AI emphasizes proactive alerting and executive-ready dashboards that surface high-risk assets ahead of incidents. Preset Shodan queries are provided for common service classes (SSL, RDP, ICS/Modbus), with support for organization-specific custom queries. The architecture is described as extensible for integrating internal systems (SIEM, CMDB, patch sources) although specifics are implementation-dependent.

    🔹 Project context

    The README highlights single-developer authorship with assistance from AI development tools for code generation and documentation. The repo frames the project as addressing alert fatigue, fragmented data, and reactive security postures by converting multi-source telemetry into prioritized, confidence-scored intelligence.

    🔹 Hashtags

    🔹 ThreatSentryAI #Shodan #NVD #CVE #CVSS

    🔗 Source: github.com/EclipseManic/Threat

  4. ----------------

    🔹 🛠️ Tool: ThreatSentry AI

    ThreatSentry AI is presented as an enterprise-focused threat-hunting platform that automates external asset discovery, enriches findings from multiple sources, and applies ensemble machine learning to prioritize risk. The project lists PyQt5 for UI, scikit-learn for ML, and SQLAlchemy for persistence, and names EclipseManic as project lead.

    🔹 Core pipeline and integrations

    The platform performs continuous external visibility via Shodan queries (preset and custom), extracts service banners across common products (examples in the project include Apache, Nginx, MySQL, IIS), and correlates banner data with NVD CVE information. CVSS-based severity classification is applied where CVE matches are found; the README notes that CVE metrics are updated only when vulnerabilities are identified to avoid data loss.

    🔹 Machine learning and scoring

    The risk engine is described as an ensemble combining Random Forest, Gradient Boosting, and Neural Network components. Models evaluate 40+ attributes spanning temporal context (exposure duration, patch lag), network position (service criticality, segmentation), behavioral signals (authentication failures, traffic anomalies), and compliance impact (data sensitivity, regulatory exposure). Each risk prediction includes a confidence score in the 0–1 range. The system is described as having configurable automatic retraining with analyst feedback integration for continuous learning.

    🔹 Platform capabilities and outputs

    ThreatSentry AI emphasizes proactive alerting and executive-ready dashboards that surface high-risk assets ahead of incidents. Preset Shodan queries are provided for common service classes (SSL, RDP, ICS/Modbus), with support for organization-specific custom queries. The architecture is described as extensible for integrating internal systems (SIEM, CMDB, patch sources) although specifics are implementation-dependent.

    🔹 Project context

    The README highlights single-developer authorship with assistance from AI development tools for code generation and documentation. The repo frames the project as addressing alert fatigue, fragmented data, and reactive security postures by converting multi-source telemetry into prioritized, confidence-scored intelligence.

    🔹 Hashtags

    🔹 ThreatSentryAI #Shodan #NVD #CVE #CVSS

    🔗 Source: github.com/EclipseManic/Threat

  5. OSINT и цифровой след

    Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?

    habr.com/ru/companies/rt-dc/ar

    #osint #osint_tools #google_dorks #shodan #maltego #report #рткцод

  6. OSINT и цифровой след

    Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?

    habr.com/ru/companies/rt-dc/ar

    #osint #osint_tools #google_dorks #shodan #maltego #report #рткцод

  7. OSINT и цифровой след

    Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?

    habr.com/ru/companies/rt-dc/ar

    #osint #osint_tools #google_dorks #shodan #maltego #report #рткцод

  8. OSINT и цифровой след

    Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?

    habr.com/ru/companies/rt-dc/ar

    #osint #osint_tools #google_dorks #shodan #maltego #report #рткцод

  9. @briankrebs Hi Sir sorry for the disturb. A swift question is it possible to detect such activity via check.labs.greynoise.io/ #greynoise #botnet

    Or does one have to use dedicated scans via wireshark and #shodan and the likes?

  10. @marlin
    Hier ein paar Infos über die zusätzlichen Angriffsvektoren bei #IPv6. Bei richtiger Konfiguration ist IPv6 natürlich nicht unsicherer als #IPv4.

    #netsec #ITSecurity #networking #netzwerke #Rechnernetze #Shodan #IP #Internet
    @bsi

  11. Уязвимые серверы, или Как много «новогодних ёлок» у вас в инфраструктуре

    Привет, это снова Angara Security и наши эксперты по киберразведке Angara MTDR. Сегодня мы расскажем, что можно узнать об инфраструктуре компании, используя легитимные онлайн-сервисы, и дадим советы, как защитить организацию от неприятных сюрпризов.

    habr.com/ru/companies/angarase

    #киберразведка #итинфраструктура #gitlab #shodan #уязвимости #0day