#shodan — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #shodan, aggregated by home.social.
-
From this week's Linux Update: Every pen test begins with information gathering. Give yourself a head start with the Shodan search engine and its powerful toolkit.
https://www.linux-magazine.com/Issues/2026/303/Shodan?utm_source=mlm
#PenTesting #Shodan #SearchEngine #sysadmin #vulnerability #database #WebServer #security -
-
----------------
🔹 🛠️ Tool: ThreatSentry AI
ThreatSentry AI is presented as an enterprise-focused threat-hunting platform that automates external asset discovery, enriches findings from multiple sources, and applies ensemble machine learning to prioritize risk. The project lists PyQt5 for UI, scikit-learn for ML, and SQLAlchemy for persistence, and names EclipseManic as project lead.
🔹 Core pipeline and integrations
The platform performs continuous external visibility via Shodan queries (preset and custom), extracts service banners across common products (examples in the project include Apache, Nginx, MySQL, IIS), and correlates banner data with NVD CVE information. CVSS-based severity classification is applied where CVE matches are found; the README notes that CVE metrics are updated only when vulnerabilities are identified to avoid data loss.
🔹 Machine learning and scoring
The risk engine is described as an ensemble combining Random Forest, Gradient Boosting, and Neural Network components. Models evaluate 40+ attributes spanning temporal context (exposure duration, patch lag), network position (service criticality, segmentation), behavioral signals (authentication failures, traffic anomalies), and compliance impact (data sensitivity, regulatory exposure). Each risk prediction includes a confidence score in the 0–1 range. The system is described as having configurable automatic retraining with analyst feedback integration for continuous learning.
🔹 Platform capabilities and outputs
ThreatSentry AI emphasizes proactive alerting and executive-ready dashboards that surface high-risk assets ahead of incidents. Preset Shodan queries are provided for common service classes (SSL, RDP, ICS/Modbus), with support for organization-specific custom queries. The architecture is described as extensible for integrating internal systems (SIEM, CMDB, patch sources) although specifics are implementation-dependent.
🔹 Project context
The README highlights single-developer authorship with assistance from AI development tools for code generation and documentation. The repo frames the project as addressing alert fatigue, fragmented data, and reactive security postures by converting multi-source telemetry into prioritized, confidence-scored intelligence.
🔹 Hashtags
-
----------------
🔹 🛠️ Tool: ThreatSentry AI
ThreatSentry AI is presented as an enterprise-focused threat-hunting platform that automates external asset discovery, enriches findings from multiple sources, and applies ensemble machine learning to prioritize risk. The project lists PyQt5 for UI, scikit-learn for ML, and SQLAlchemy for persistence, and names EclipseManic as project lead.
🔹 Core pipeline and integrations
The platform performs continuous external visibility via Shodan queries (preset and custom), extracts service banners across common products (examples in the project include Apache, Nginx, MySQL, IIS), and correlates banner data with NVD CVE information. CVSS-based severity classification is applied where CVE matches are found; the README notes that CVE metrics are updated only when vulnerabilities are identified to avoid data loss.
🔹 Machine learning and scoring
The risk engine is described as an ensemble combining Random Forest, Gradient Boosting, and Neural Network components. Models evaluate 40+ attributes spanning temporal context (exposure duration, patch lag), network position (service criticality, segmentation), behavioral signals (authentication failures, traffic anomalies), and compliance impact (data sensitivity, regulatory exposure). Each risk prediction includes a confidence score in the 0–1 range. The system is described as having configurable automatic retraining with analyst feedback integration for continuous learning.
🔹 Platform capabilities and outputs
ThreatSentry AI emphasizes proactive alerting and executive-ready dashboards that surface high-risk assets ahead of incidents. Preset Shodan queries are provided for common service classes (SSL, RDP, ICS/Modbus), with support for organization-specific custom queries. The architecture is described as extensible for integrating internal systems (SIEM, CMDB, patch sources) although specifics are implementation-dependent.
🔹 Project context
The README highlights single-developer authorship with assistance from AI development tools for code generation and documentation. The repo frames the project as addressing alert fatigue, fragmented data, and reactive security postures by converting multi-source telemetry into prioritized, confidence-scored intelligence.
🔹 Hashtags
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
#MongoBleed and #Shodan is a dangerous combination. #security
-
#MongoBleed and #Shodan is a dangerous combination. #security
-
#MongoBleed and #Shodan is a dangerous combination. #security
-
#MongoBleed and #Shodan is a dangerous combination. #security
-
#MongoBleed and #Shodan is a dangerous combination. #security
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
Internet of insecure things: daily #random #shodan #screenshot [#iot #shodansafari]-->
-
OSINT и цифровой след
Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?
https://habr.com/ru/companies/rt-dc/articles/986920/
#osint #osint_tools #google_dorks #shodan #maltego #report #рткцод
-
OSINT и цифровой след
Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?
https://habr.com/ru/companies/rt-dc/articles/986920/
#osint #osint_tools #google_dorks #shodan #maltego #report #рткцод
-
OSINT и цифровой след
Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?
https://habr.com/ru/companies/rt-dc/articles/986920/
#osint #osint_tools #google_dorks #shodan #maltego #report #рткцод
-
OSINT и цифровой след
Всем привет! Сегодня поговорим об Open Source Intelligence (далее по тексту — OSINT ), разведке на основе открытых источников. Это систематизированный процесс поиска в интернете — не взлом и не покупка слитых баз — общедоступной информации и ее дальнейшая аналитика. К методам OSINT прибегают как в легальных целях, так и с недобрым умыслом. Как все это выглядит на практике?
https://habr.com/ru/companies/rt-dc/articles/986920/
#osint #osint_tools #google_dorks #shodan #maltego #report #рткцод
-
@briankrebs Hi Sir sorry for the disturb. A swift question is it possible to detect such activity via https://check.labs.greynoise.io/ #greynoise #botnet
Or does one have to use dedicated scans via wireshark and #shodan and the likes?
-
@marlin
Hier ein paar Infos über die zusätzlichen Angriffsvektoren bei #IPv6. Bei richtiger Konfiguration ist IPv6 natürlich nicht unsicherer als #IPv4.#netsec #ITSecurity #networking #netzwerke #Rechnernetze #Shodan #IP #Internet
@bsi -
Уязвимые серверы, или Как много «новогодних ёлок» у вас в инфраструктуре
Привет, это снова Angara Security и наши эксперты по киберразведке Angara MTDR. Сегодня мы расскажем, что можно узнать об инфраструктуре компании, используя легитимные онлайн-сервисы, и дадим советы, как защитить организацию от неприятных сюрпризов.
https://habr.com/ru/companies/angarasecurity/articles/972204/
#киберразведка #итинфраструктура #gitlab #shodan #уязвимости #0day
-
How Adversaries Exploit the Blind Spots in Your EASM Strategy https://hackread.com/how-adversaries-exploit-blind-spots-easm-strategy/ #Misconfiguration #Cloudsecurity #Cybersecurity #Security #Censys #Oracle #Shodan #EASM
-
Home again, back in the Land of the Scungy Tap Water. And I passed my grading 🥋
-
Phiên bản SHODAN Core v1.7 được công bố, cung cấp giao thức trung lập và có thể kiểm tra để mang lại đầu ra AI rõ ràng hơn.
#SHODAN #AI #TríTuệNhânTạo #GiaoThức #PhiênBảnMới #CôngNghệ #TrungLập #KiểmTra #ĐầuRaRõRàng #SHODANCore #v17 #Neutral #Testable #Protocol #ArtificialIntelligence #NewVersion #Technology -
Phiên bản SHODAN Core v1.7 được công bố, cung cấp giao thức trung lập và có thể kiểm tra để mang lại đầu ra AI rõ ràng hơn.
#SHODAN #AI #TríTuệNhânTạo #GiaoThức #PhiênBảnMới #CôngNghệ #TrungLập #KiểmTra #ĐầuRaRõRàng #SHODANCore #v17 #Neutral #Testable #Protocol #ArtificialIntelligence #NewVersion #Technology -
Phiên bản SHODAN Core v1.7 được công bố, cung cấp giao thức trung lập và có thể kiểm tra để mang lại đầu ra AI rõ ràng hơn.
#SHODAN #AI #TríTuệNhânTạo #GiaoThức #PhiênBảnMới #CôngNghệ #TrungLập #KiểmTra #ĐầuRaRõRàng #SHODANCore #v17 #Neutral #Testable #Protocol #ArtificialIntelligence #NewVersion #Technology