├── code-of-conduct.md
├── contributing.md
├── license.md
├── readme.md
└── screenshots
├── 7-11.png
├── billboard3.png
├── buffalo.png
├── c4max.png
├── canon.png
├── citrix.png
├── epson.png
├── eth.png
├── hp.png
├── iomega.png
├── jenkins.png
├── logitech.png
├── mongo-express.png
├── mongo.png
├── octoprint.png
├── owa2007.png
├── owa2010.png
├── owa2013.png
├── plate-reader.png
├── plexpy.png
├── polycom.png
├── power-gaugetech.png
├── refrigeration.png
├── sailor-vsat.png
├── shodan.png
├── tesla.png
├── vnc.png
├── weavescope.png
├── windows2003-vnc.png
├── xerox.png
└── yamaha.png
/code-of-conduct.md:
--------------------------------------------------------------------------------
1 | # Contributor Covenant Code of Conduct
2 |
3 | ## Our Pledge
4 |
5 | In the interest of fostering an open and welcoming environment, we as
6 | contributors and maintainers pledge to making participation in our project and
7 | our community a harassment-free experience for everyone, regardless of age, body
8 | size, disability, ethnicity, sex characteristics, gender identity and expression,
9 | level of experience, education, socio-economic status, nationality, personal
10 | appearance, race, religion, or sexual identity and orientation.
11 |
12 | ## Our Standards
13 |
14 | Examples of behavior that contributes to creating a positive environment
15 | include:
16 |
17 | * Using welcoming and inclusive language
18 | * Being respectful of differing viewpoints and experiences
19 | * Gracefully accepting constructive criticism
20 | * Focusing on what is best for the community
21 | * Showing empathy towards other community members
22 |
23 | Examples of unacceptable behavior by participants include:
24 |
25 | * The use of sexualized language or imagery and unwelcome sexual attention or
26 | advances
27 | * Trolling, insulting/derogatory comments, and personal or political attacks
28 | * Public or private harassment
29 | * Publishing others' private information, such as a physical or electronic
30 | address, without explicit permission
31 | * Other conduct which could reasonably be considered inappropriate in a
32 | professional setting
33 |
34 | ## Our Responsibilities
35 |
36 | Project maintainers are responsible for clarifying the standards of acceptable
37 | behavior and are expected to take appropriate and fair corrective action in
38 | response to any instances of unacceptable behavior.
39 |
40 | Project maintainers have the right and responsibility to remove, edit, or
41 | reject comments, commits, code, wiki edits, issues, and other contributions
42 | that are not aligned to this Code of Conduct, or to ban temporarily or
43 | permanently any contributor for other behaviors that they deem inappropriate,
44 | threatening, offensive, or harmful.
45 |
46 | ## Scope
47 |
48 | This Code of Conduct applies within all project spaces, and it also applies when
49 | an individual is representing the project or its community in public spaces.
50 | Examples of representing a project or community include using an official
51 | project e-mail address, posting via an official social media account, or acting
52 | as an appointed representative at an online or offline event. Representation of
53 | a project may be further defined and clarified by project maintainers.
54 |
55 | ## Enforcement
56 |
57 | Instances of abusive, harassing, or otherwise unacceptable behavior may be
58 | reported by contacting the project team at jake@jarv.is. All
59 | complaints will be reviewed and investigated and will result in a response that
60 | is deemed necessary and appropriate to the circumstances. The project team is
61 | obligated to maintain confidentiality with regard to the reporter of an incident.
62 | Further details of specific enforcement policies may be posted separately.
63 |
64 | Project maintainers who do not follow or enforce the Code of Conduct in good
65 | faith may face temporary or permanent repercussions as determined by other
66 | members of the project's leadership.
67 |
68 | ## Attribution
69 |
70 | This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
71 | available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html
72 |
73 | [homepage]: https://www.contributor-covenant.org
74 |
75 | For answers to common questions about this code of conduct, see
76 | https://www.contributor-covenant.org/faq
77 |
78 |
--------------------------------------------------------------------------------
/contributing.md:
--------------------------------------------------------------------------------
1 | # Contribution Guidelines
2 |
3 | ## Code of Conduct
4 |
5 | Please note that this project is released with a [Contributor Code of Conduct](code-of-conduct.md). By participating in this project you agree to abide by its terms.
6 |
7 | ## Adding an awesome search query
8 |
9 | Ensure your Issue or Pull Request includes the following information or follows this format:
10 |
11 | - Narrow down the results as much as possible using [Shodan's filters](https://danielmiessler.com/study/shodan/)...but not too much, be careful not to exclude people trying to hide via [security by obscurity](https://cwe.mitre.org/data/definitions/656.html)! (Geniuses with SSH listening on port 2222 instead of 22, for example. 🙄)
12 | - Include a link to the search results page with the `→` symbol at the end of the H3 heading. **Copy the EXACT query into the Shodan search box and copy and paste the resulting URL** to make sure it's identical and encoded properly.
13 | - Don't include a `country:` filter. It's okay if a certain technology is only used by a certain country, but there's no need to artifically limit the results to that locale alone. Leave that up to the searcher.
14 | - Screenshots are unnecessary, unless they add something interesting, shocking, or out of the ordinary — like a [billboard for burgers](https://github.com/jakejarvis/awesome-shodan-queries#samsung-electronic-billboards-) or a [ransomware-infected desktop](https://github.com/jakejarvis/awesome-shodan-queries#unprotected-vnc-).
15 | - Descriptions are also unnecessary, unless you have a link you'd like to include to a page with more information, like an [important CVE](https://nvd.nist.gov/vuln/detail/CVE-2017-0144).
16 | - If you have a question, just ask! No stupid questions around here.
17 |
18 | ## Updating your Pull Request
19 |
20 | Sometimes, a maintainer of this list will ask you to edit your Pull Request before it is included. This is normally due to spelling errors or because your PR didn't match the list guidelines above.
21 |
22 | [Here](https://github.com/RichardLitt/knowledge/blob/master/github/amending-a-commit-guide.md) is a write up on how to change a Pull Request, and the different ways you can do that.
--------------------------------------------------------------------------------
/license.md:
--------------------------------------------------------------------------------
1 | CC0 1.0 Universal
2 |
3 | Statement of Purpose
4 |
5 | The laws of most jurisdictions throughout the world automatically confer
6 | exclusive Copyright and Related Rights (defined below) upon the creator and
7 | subsequent owner(s) (each and all, an "owner") of an original work of
8 | authorship and/or a database (each, a "Work").
9 |
10 | Certain owners wish to permanently relinquish those rights to a Work for the
11 | purpose of contributing to a commons of creative, cultural and scientific
12 | works ("Commons") that the public can reliably and without fear of later
13 | claims of infringement build upon, modify, incorporate in other works, reuse
14 | and redistribute as freely as possible in any form whatsoever and for any
15 | purposes, including without limitation commercial purposes. These owners may
16 | contribute to the Commons to promote the ideal of a free culture and the
17 | further production of creative, cultural and scientific works, or to gain
18 | reputation or greater distribution for their Work in part through the use and
19 | efforts of others.
20 |
21 | For these and/or other purposes and motivations, and without any expectation
22 | of additional consideration or compensation, the person associating CC0 with a
23 | Work (the "Affirmer"), to the extent that he or she is an owner of Copyright
24 | and Related Rights in the Work, voluntarily elects to apply CC0 to the Work
25 | and publicly distribute the Work under its terms, with knowledge of his or her
26 | Copyright and Related Rights in the Work and the meaning and intended legal
27 | effect of CC0 on those rights.
28 |
29 | 1. Copyright and Related Rights. A Work made available under CC0 may be
30 | protected by copyright and related or neighboring rights ("Copyright and
31 | Related Rights"). Copyright and Related Rights include, but are not limited
32 | to, the following:
33 |
34 | i. the right to reproduce, adapt, distribute, perform, display, communicate,
35 | and translate a Work;
36 |
37 | ii. moral rights retained by the original author(s) and/or performer(s);
38 |
39 | iii. publicity and privacy rights pertaining to a person's image or likeness
40 | depicted in a Work;
41 |
42 | iv. rights protecting against unfair competition in regards to a Work,
43 | subject to the limitations in paragraph 4(a), below;
44 |
45 | v. rights protecting the extraction, dissemination, use and reuse of data in
46 | a Work;
47 |
48 | vi. database rights (such as those arising under Directive 96/9/EC of the
49 | European Parliament and of the Council of 11 March 1996 on the legal
50 | protection of databases, and under any national implementation thereof,
51 | including any amended or successor version of such directive); and
52 |
53 | vii. other similar, equivalent or corresponding rights throughout the world
54 | based on applicable law or treaty, and any national implementations thereof.
55 |
56 | 2. Waiver. To the greatest extent permitted by, but not in contravention of,
57 | applicable law, Affirmer hereby overtly, fully, permanently, irrevocably and
58 | unconditionally waives, abandons, and surrenders all of Affirmer's Copyright
59 | and Related Rights and associated claims and causes of action, whether now
60 | known or unknown (including existing as well as future claims and causes of
61 | action), in the Work (i) in all territories worldwide, (ii) for the maximum
62 | duration provided by applicable law or treaty (including future time
63 | extensions), (iii) in any current or future medium and for any number of
64 | copies, and (iv) for any purpose whatsoever, including without limitation
65 | commercial, advertising or promotional purposes (the "Waiver"). Affirmer makes
66 | the Waiver for the benefit of each member of the public at large and to the
67 | detriment of Affirmer's heirs and successors, fully intending that such Waiver
68 | shall not be subject to revocation, rescission, cancellation, termination, or
69 | any other legal or equitable action to disrupt the quiet enjoyment of the Work
70 | by the public as contemplated by Affirmer's express Statement of Purpose.
71 |
72 | 3. Public License Fallback. Should any part of the Waiver for any reason be
73 | judged legally invalid or ineffective under applicable law, then the Waiver
74 | shall be preserved to the maximum extent permitted taking into account
75 | Affirmer's express Statement of Purpose. In addition, to the extent the Waiver
76 | is so judged Affirmer hereby grants to each affected person a royalty-free,
77 | non transferable, non sublicensable, non exclusive, irrevocable and
78 | unconditional license to exercise Affirmer's Copyright and Related Rights in
79 | the Work (i) in all territories worldwide, (ii) for the maximum duration
80 | provided by applicable law or treaty (including future time extensions), (iii)
81 | in any current or future medium and for any number of copies, and (iv) for any
82 | purpose whatsoever, including without limitation commercial, advertising or
83 | promotional purposes (the "License"). The License shall be deemed effective as
84 | of the date CC0 was applied by Affirmer to the Work. Should any part of the
85 | License for any reason be judged legally invalid or ineffective under
86 | applicable law, such partial invalidity or ineffectiveness shall not
87 | invalidate the remainder of the License, and in such case Affirmer hereby
88 | affirms that he or she will not (i) exercise any of his or her remaining
89 | Copyright and Related Rights in the Work or (ii) assert any associated claims
90 | and causes of action with respect to the Work, in either case contrary to
91 | Affirmer's express Statement of Purpose.
92 |
93 | 4. Limitations and Disclaimers.
94 |
95 | a. No trademark or patent rights held by Affirmer are waived, abandoned,
96 | surrendered, licensed or otherwise affected by this document.
97 |
98 | b. Affirmer offers the Work as-is and makes no representations or warranties
99 | of any kind concerning the Work, express, implied, statutory or otherwise,
100 | including without limitation warranties of title, merchantability, fitness
101 | for a particular purpose, non infringement, or the absence of latent or
102 | other defects, accuracy, or the present or absence of errors, whether or not
103 | discoverable, all to the greatest extent permissible under applicable law.
104 |
105 | c. Affirmer disclaims responsibility for clearing rights of other persons
106 | that may apply to the Work or any use thereof, including without limitation
107 | any person's Copyright and Related Rights in the Work. Further, Affirmer
108 | disclaims responsibility for obtaining any necessary consents, permissions
109 | or other rights required for any use of the Work.
110 |
111 | d. Affirmer understands and acknowledges that Creative Commons is not a
112 | party to this document and has no duty or obligation with respect to this
113 | CC0 or use of the Work.
114 |
115 | For more information, please see
116 |
117 |
--------------------------------------------------------------------------------
/readme.md:
--------------------------------------------------------------------------------
1 | # Awesome Shodan Search Queries [](https://awesome.re)
2 |
3 |
4 | Over time, I've collected an assortment of interesting, funny, and depressing search queries to plug into [Shodan](https://www.shodan.io/), the ([literal](https://www.vice.com/en_uk/article/9bvxmd/shodan-exposes-the-dark-side-of-the-net)) internet search engine. Some return facepalm-inducing results, while others return serious and/or ancient vulnerabilities in the wild.
5 |
6 |
7 | 
8 | Most search filters require a Shodan account.
9 |
10 |
11 | You can assume these queries only return unsecured/open instances when possible. For your own legal benefit, do not attempt to login (even with default passwords) if they aren't! Narrow down results by adding filters like `country:US` or `org:"Harvard University"` or `hostname:"nasa.gov"` to the end.
12 |
13 | The world and its devices are quickly becoming more connected through the shiny new [Internet of ~~Things~~ Sh*t](https://motherboard.vice.com/en_us/topic/internet-of-shit) — and exponentially [more dangerous](https://blog.malwarebytes.com/101/2017/12/internet-things-iot-security-never/) as a result. To that end, I hope this list spreads awareness (and, quite frankly, pant-wetting fear) rather than harm.
14 |
15 | **And as always, [discover and disclose responsibly](https://www.bugcrowd.com/resource/what-is-responsible-disclosure/)! 🤓**
16 |
17 |
18 | ---
19 |
20 |
21 | ### **Table of Contents**
22 |
23 | - [Industrial Control Systems](#industrial-control-systems)
24 | - [Remote Desktop](#remote-desktop)
25 | - [Network Infrastructure](#network-infrastructure)
26 | - [Network Attached Storage (NAS)](#network-attached-storage-nas)
27 | - [Webcams](#webcams)
28 | - [Printers & Copiers](#printers--copiers)
29 | - [Home Devices](#home-devices)
30 | - [Random Stuff](#random-stuff)
31 |
32 |
33 | ---
34 |
35 |
36 | ## Industrial Control Systems
37 |
38 |
39 | ### Samsung Electronic Billboards [🔎 →](https://www.shodan.io/search?query=%22Server%3A+Prismview+Player%22)
40 |
41 | ```
42 | "Server: Prismview Player"
43 | ```
44 |
45 |
46 |
47 |
48 | ### Gas Station Pump Controllers [🔎 →](https://www.shodan.io/search?query=%22in-tank+inventory%22+port%3A10001)
49 |
50 | ```
51 | "in-tank inventory" port:10001
52 | ```
53 |
54 |
55 |
56 |
57 | ### Automatic License Plate Readers [🔎 →](https://www.shodan.io/search?query=P372+%22ANPR+enabled%22)
58 |
59 | ```
60 | P372 "ANPR enabled"
61 | ```
62 |
63 |
64 |
65 |
66 | ### Traffic Light Controllers / Red Light Cameras [🔎 →](https://www.shodan.io/search?query=mikrotik+streetlight)
67 |
68 | ```
69 | mikrotik streetlight
70 | ```
71 |
72 |
73 | ### Voting Machines in the United States [🔎 →](https://www.shodan.io/search?query=%22voter+system+serial%22+country%3AUS)
74 |
75 | ```
76 | "voter system serial" country:US
77 | ```
78 |
79 |
80 | ### Telcos Running [Cisco Lawful Intercept](https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/lawful/intercept/book/65LIch1.html) Wiretaps [🔎 →](https://www.shodan.io/search?query=%22Cisco+IOS%22+%22ADVIPSERVICESK9_LI-M%22)
81 |
82 | ```
83 | "Cisco IOS" "ADVIPSERVICESK9_LI-M"
84 | ```
85 |
86 | Wiretapping mechanism outlined by Cisco in [RFC 3924](https://tools.ietf.org/html/rfc3924):
87 |
88 | > Lawful intercept is the lawfully authorized interception and monitoring of communications of an intercept subject. The term "intercept subject" [...] refers to the subscriber of a telecommunications service whose communications and/or intercept related information (IRI) has been lawfully authorized to be intercepted and delivered to some agency.
89 |
90 |
91 | ### Prison Pay Phones [🔎 →](https://www.shodan.io/search?query=%22%5B2J%5BH+Encartele+Confidential%22)
92 |
93 | ```
94 | "[2J[H Encartele Confidential"
95 | ```
96 |
97 |
98 | ### [Tesla PowerPack](https://www.tesla.com/powerpack) Charging Status [🔎 →](https://www.shodan.io/search?query=http.title%3A%22Tesla+PowerPack+System%22+http.component%3A%22d3%22+-ga3ca4f2)
99 |
100 | ```
101 | http.title:"Tesla PowerPack System" http.component:"d3" -ga3ca4f2
102 | ```
103 |
104 |
105 |
106 |
107 | ### Electric Vehicle Chargers [🔎 →](https://www.shodan.io/search?query=%22Server%3A+gSOAP%2F2.8%22+%22Content-Length%3A+583%22)
108 |
109 | ```
110 | "Server: gSOAP/2.8" "Content-Length: 583"
111 | ```
112 |
113 |
114 | ### Maritime Satellites [🔎 →](https://www.shodan.io/search?query=%22Cobham+SATCOM%22+OR+%28%22Sailor%22+%22VSAT%22%29)
115 |
116 | Shodan made a pretty sweet [Ship Tracker](https://shiptracker.shodan.io/) that maps ship locations in real time, too!
117 |
118 | ```
119 | "Cobham SATCOM" OR ("Sailor" "VSAT")
120 | ```
121 |
122 |
123 |
124 |
125 | ### Submarine Mission Control Dashboards [🔎 →](https://www.shodan.io/search?query=title%3A%22Slocum+Fleet+Mission+Control%22)
126 |
127 | ```
128 | title:"Slocum Fleet Mission Control"
129 | ```
130 |
131 |
132 | ### [CAREL PlantVisor](https://www.carel.com/product/plantvisor) Refrigeration Units [🔎 →](https://www.shodan.io/search?query=%22Server%3A+CarelDataServer%22+%22200+Document+follows%22)
133 |
134 | ```
135 | "Server: CarelDataServer" "200 Document follows"
136 | ```
137 |
138 |
139 |
140 |
141 | ### [Nordex Wind Turbine](http://www.nordex-online.com/en/products-services/wind-turbines.html) Farms [🔎 →](https://www.shodan.io/search?query=http.title%3A%22Nordex+Control%22+%22Windows+2000+5.0+x86%22+%22Jetty%2F3.1+%28JSP+1.1%3B+Servlet+2.2%3B+java+1.6.0_14%29%22)
142 |
143 | ```
144 | http.title:"Nordex Control" "Windows 2000 5.0 x86" "Jetty/3.1 (JSP 1.1; Servlet 2.2; java 1.6.0_14)"
145 | ```
146 |
147 |
148 | ### [C4 Max](https://www.mobile-devices.com/our-products/c4-max/) Commercial Vehicle GPS Trackers [🔎 →](https://www.shodan.io/search?query=%22%5B1m%5B35mWelcome+on+console%22)
149 |
150 | ```
151 | "[1m[35mWelcome on console"
152 | ```
153 |
154 |
155 |
156 |
157 | ### [DICOM](https://www.dicomstandard.org/about/) Medical X-Ray Machines [🔎 →](https://www.shodan.io/search?query=%22DICOM+Server+Response%22+port%3A104)
158 |
159 | Secured by default, thankfully, but these 1,700+ machines still [have no business](https://documents.trendmicro.com/assets/rpt/rpt-securing-connected-hospitals.pdf) being on the internet.
160 |
161 | ```
162 | "DICOM Server Response" port:104
163 | ```
164 |
165 |
166 | ### [GaugeTech](https://electroind.com/all-products/) Electricity Meters [🔎 →](https://www.shodan.io/search?query=%22Server%3A+EIG+Embedded+Web+Server%22+%22200+Document+follows%22)
167 |
168 | ```
169 | "Server: EIG Embedded Web Server" "200 Document follows"
170 | ```
171 |
172 |
173 |
174 |
175 | ### Siemens Industrial Automation [🔎 →](https://www.shodan.io/search?query=%22Siemens%2C+SIMATIC%22+port%3A161)
176 |
177 | ```
178 | "Siemens, SIMATIC" port:161
179 | ```
180 |
181 |
182 | ### Siemens HVAC Controllers [🔎 →](https://www.shodan.io/search?query=%22Server%3A+Microsoft-WinCE%22+%22Content-Length%3A+12581%22)
183 |
184 | ```
185 | "Server: Microsoft-WinCE" "Content-Length: 12581"
186 | ```
187 |
188 |
189 | ### Door / Lock Access Controllers [🔎 →](https://www.shodan.io/search?query=%22HID+VertX%22+port%3A4070)
190 |
191 | ```
192 | "HID VertX" port:4070
193 | ```
194 |
195 |
196 | ### Railroad Management [🔎 →](https://www.shodan.io/search?query=%22log+off%22+%22select+the+appropriate%22)
197 |
198 | ```
199 | "log off" "select the appropriate"
200 | ```
201 |
202 |
203 |
204 | ---
205 |
206 |
207 |
208 | ## Remote Desktop
209 |
210 |
211 | ### Unprotected VNC [🔎 →](https://www.shodan.io/search?query=%22authentication+disabled%22+%22RFB+003.008%22)
212 |
213 | ```
214 | "authentication disabled" "RFB 003.008"
215 | ```
216 |
217 | [Shodan Images](https://images.shodan.io/) is a great supplementary tool to browse screenshots, by the way! [🔎 →](https://images.shodan.io/?query=%22authentication+disabled%22+%21screenshot.label%3Ablank)
218 |
219 |
220 | 
221 | The first result right now. 😞
222 |
223 |
224 |
225 | ### Windows RDP [🔎 →](https://www.shodan.io/search?query=%22%5Cx03%5Cx00%5Cx00%5Cx0b%5Cx06%5Cxd0%5Cx00%5Cx00%5Cx124%5Cx00%22)
226 |
227 | 99.99% are secured by a secondary Windows login screen.
228 |
229 | ```
230 | "\x03\x00\x00\x0b\x06\xd0\x00\x00\x124\x00"
231 | ```
232 |
233 |
234 | ---
235 |
236 |
237 | ## Network Infrastructure
238 |
239 |
240 | ### [Weave Scope](https://www.weave.works/oss/scope/) Dashboards [🔎 →](https://www.shodan.io/search?query=title%3A%22Weave+Scope%22+http.favicon.hash%3A567176827)
241 |
242 | Command-line access inside Kubernetes pods and Docker containers, and real-time visualization/monitoring of the entire infrastructure.
243 |
244 | ```
245 | title:"Weave Scope" http.favicon.hash:567176827
246 | ```
247 |
248 |
249 |
250 |
251 | ### MongoDB [🔎 →](https://www.shodan.io/search?query=product%3AMongoDB+-authentication)
252 |
253 | Older versions were insecure by default. [Very scary.](https://krebsonsecurity.com/tag/mongodb/)
254 |
255 | ```
256 | "MongoDB Server Information" port:27017 -authentication
257 | ```
258 |
259 |
260 |
261 |
262 | ### [Mongo Express](https://github.com/mongo-express/mongo-express) Web GUI [🔎 →](https://www.shodan.io/search?query=%22Set-Cookie%3A+mongo-express%3D%22+%22200+OK%22)
263 |
264 | Like the [infamous phpMyAdmin](https://www.cvedetails.com/vulnerability-list/vendor_id-784/Phpmyadmin.html) but for MongoDB.
265 |
266 | ```
267 | "Set-Cookie: mongo-express=" "200 OK"
268 | ```
269 |
270 |
271 |
272 |
273 | ### Jenkins CI [🔎 →](https://www.shodan.io/search?query=%22X-Jenkins%22+%22Set-Cookie%3A+JSESSIONID%22+http.title%3A%22Dashboard%22)
274 |
275 | ```
276 | "X-Jenkins" "Set-Cookie: JSESSIONID" http.title:"Dashboard"
277 | ```
278 |
279 |
280 |
281 |
282 | ### Docker APIs [🔎 →](https://www.shodan.io/search?query=%22Docker+Containers%3A%22+port%3A2375)
283 |
284 | ```
285 | "Docker Containers:" port:2375
286 | ```
287 |
288 |
289 | ### Docker Private Registries [🔎 →](https://www.shodan.io/search?query=%22Docker-Distribution-Api-Version%3A+registry%22+%22200+OK%22+-gitlab)
290 |
291 | ```
292 | "Docker-Distribution-Api-Version: registry" "200 OK" -gitlab
293 | ```
294 |
295 |
296 | ### [Pi-hole](https://pi-hole.net/) Open DNS Servers [🔎 →](https://www.shodan.io/search?query=%22dnsmasq-pi-hole%22+%22Recursion%3A+enabled%22)
297 |
298 | ```
299 | "dnsmasq-pi-hole" "Recursion: enabled"
300 | ```
301 |
302 |
303 | ### Already Logged-In as `root` via Telnet [🔎 →](https://www.shodan.io/search?query=%22root%40%22+port%3A23+-login+-password+-name+-Session)
304 |
305 | ```
306 | "root@" port:23 -login -password -name -Session
307 | ```
308 |
309 |
310 | ### Android Root Bridges [🔎 →](https://www.shodan.io/search?query=%22Android+Debug+Bridge%22+%22Device%22+port%3A5555)
311 |
312 | A tangential result of Google's sloppy fractured update approach. 🙄 [More information here.](https://medium.com/p/root-bridge-how-thousands-of-internet-connected-android-devices-now-have-no-security-and-are-b46a68cb0f20)
313 |
314 | ```
315 | "Android Debug Bridge" "Device" port:5555
316 | ```
317 |
318 |
319 | ### Lantronix Serial-to-Ethernet Adapter [Leaking Telnet Passwords](https://www.bleepingcomputer.com/news/security/thousands-of-serial-to-ethernet-devices-leak-telnet-passwords/) [🔎 →](https://www.shodan.io/search?query=Lantronix+password+port%3A30718+-secured)
320 |
321 | ```
322 | Lantronix password port:30718 -secured
323 | ```
324 |
325 |
326 | ### Citrix Virtual Apps [🔎 →](https://www.shodan.io/search?query=%22Citrix+Applications%3A%22+port%3A1604)
327 |
328 | ```
329 | "Citrix Applications:" port:1604
330 | ```
331 |
332 |
333 |
334 |
335 | ### Cisco Smart Install [🔎 →](https://www.shodan.io/search?query=%22smart+install+client+active%22)
336 |
337 | [Vulnerable](https://2016.zeronights.ru/wp-content/uploads/2016/12/CiscoSmartInstall.v3.pdf) (kind of "by design," but especially when exposed).
338 |
339 | ```
340 | "smart install client active"
341 | ```
342 |
343 |
344 | ### PBX IP Phone Gateways [🔎 →](https://www.shodan.io/search?query=PBX+%22gateway+console%22+-password+port%3A23)
345 |
346 |
347 | ```
348 | PBX "gateway console" -password port:23
349 | ```
350 |
351 |
352 | ### [Polycom](https://www.polycom.com/hd-video-conferencing.html) Video Conferencing [🔎 →](https://www.shodan.io/search?query=http.title%3A%22-+Polycom%22+%22Server%3A+lighttpd%22)
353 |
354 | ```
355 | http.title:"- Polycom" "Server: lighttpd"
356 | ```
357 |
358 | Telnet Configuration: [🔎 →](https://www.shodan.io/search?query=%22Polycom+Command+Shell%22+-failed+port%3A23)
359 |
360 | ```
361 | "Polycom Command Shell" -failed port:23
362 | ```
363 |
364 |
365 |
366 |
367 | ### [Bomgar Help Desk](https://www.beyondtrust.com/remote-support/integrations) Portal [🔎 →](https://www.shodan.io/search?query=%22Server%3A+Bomgar%22+%22200+OK%22)
368 |
369 | ```
370 | "Server: Bomgar" "200 OK"
371 | ```
372 |
373 |
374 | ### Intel Active Management [CVE-2017-5689](https://www.exploit-db.com/exploits/43385) [🔎 →](https://www.shodan.io/search?query=%22Intel%28R%29+Active+Management+Technology%22+port%3A623%2C664%2C16992%2C16993%2C16994%2C16995)
375 |
376 | ```
377 | "Intel(R) Active Management Technology" port:623,664,16992,16993,16994,16995
378 | ```
379 |
380 |
381 | ### HP iLO 4 [CVE-2017-12542](https://nvd.nist.gov/vuln/detail/CVE-2017-12542) [🔎 →](https://www.shodan.io/search?query=HP-ILO-4+%21%22HP-ILO-4%2F2.53%22+%21%22HP-ILO-4%2F2.54%22+%21%22HP-ILO-4%2F2.55%22+%21%22HP-ILO-4%2F2.60%22+%21%22HP-ILO-4%2F2.61%22+%21%22HP-ILO-4%2F2.62%22+%21%22HP-iLO-4%2F2.70%22+port%3A1900)
382 |
383 | ```
384 | HP-ILO-4 !"HP-ILO-4/2.53" !"HP-ILO-4/2.54" !"HP-ILO-4/2.55" !"HP-ILO-4/2.60" !"HP-ILO-4/2.61" !"HP-ILO-4/2.62" !"HP-iLO-4/2.70" port:1900
385 | ```
386 |
387 |
388 | ### Outlook Web Access:
389 |
390 | #### Exchange 2007 [🔎 →](https://www.shodan.io/search?query=%22x-owa-version%22+%22IE%3DEmulateIE7%22+%22Server%3A+Microsoft-IIS%2F7.0%22)
391 |
392 | ```
393 | "x-owa-version" "IE=EmulateIE7" "Server: Microsoft-IIS/7.0"
394 | ```
395 |
396 |
397 |
398 | #### Exchange 2010 [🔎 →](https://www.shodan.io/search?query=%22x-owa-version%22+%22IE%3DEmulateIE7%22+http.favicon.hash%3A442749392)
399 |
400 | ```
401 | "x-owa-version" "IE=EmulateIE7" http.favicon.hash:442749392
402 | ```
403 |
404 |
405 |
406 | #### Exchange 2013 / 2016 [🔎 →](https://www.shodan.io/search?query=%22X-AspNet-Version%22+http.title%3A%22Outlook%22+-%22x-owa-version%22)
407 |
408 | ```
409 | "X-AspNet-Version" http.title:"Outlook" -"x-owa-version"
410 | ```
411 |
412 |
413 |
414 |
415 | ### Lync / Skype for Business [🔎 →](https://www.shodan.io/search?query=%22X-MS-Server-Fqdn%22)
416 |
417 | ```
418 | "X-MS-Server-Fqdn"
419 | ```
420 |
421 |
422 | ---
423 |
424 |
425 | ## Network Attached Storage (NAS)
426 |
427 |
428 | ### SMB (Samba) File Shares [🔎 →](https://www.shodan.io/search?query=%22Authentication%3A+disabled%22+port%3A445)
429 |
430 | Produces ~500,000 results...narrow down by adding "Documents" or "Videos", etc.
431 |
432 | ```
433 | "Authentication: disabled" port:445
434 | ```
435 |
436 | Specifically domain controllers: [🔎 →](https://www.shodan.io/search?query=%22Authentication%3A+disabled%22+NETLOGON+SYSVOL+-unix+port%3A445)
437 |
438 | ```
439 | "Authentication: disabled" NETLOGON SYSVOL -unix port:445
440 | ```
441 |
442 | Concerning [default network shares of QuickBooks](https://quickbooks.intuit.com/learn-support/en-us/help-articles/set-up-folder-and-windows-access-permissions-to-share-company/01/201880) files: [🔎 →](https://www.shodan.io/search?query=%22Authentication%3A+disabled%22+%22Shared+this+folder+to+access+QuickBooks+files+OverNetwork%22+-unix+port%3A445)
443 |
444 | ```
445 | "Authentication: disabled" "Shared this folder to access QuickBooks files OverNetwork" -unix port:445
446 | ```
447 |
448 |
449 | ### FTP Servers with Anonymous Login [🔎 →](https://www.shodan.io/search?query=%22220%22+%22230+Login+successful.%22+port%3A21)
450 |
451 | ```
452 | "220" "230 Login successful." port:21
453 | ```
454 |
455 |
456 | ### Iomega / LenovoEMC NAS Drives [🔎 →](https://www.shodan.io/search?query=%22Set-Cookie%3A+iomega%3D%22+-%22manage%2Flogin.html%22+-http.title%3A%22Log+In%22)
457 |
458 | ```
459 | "Set-Cookie: iomega=" -"manage/login.html" -http.title:"Log In"
460 | ```
461 |
462 |
463 |
464 |
465 | ### Buffalo TeraStation NAS Drives [🔎 →](https://www.shodan.io/search?query=Redirecting+sencha+port%3A9000)
466 |
467 | ```
468 | Redirecting sencha port:9000
469 | ```
470 |
471 |
472 |
473 |
474 | ### Logitech Media Servers [🔎 →](https://www.shodan.io/search?query=%22Server%3A+Logitech+Media+Server%22+%22200+OK%22)
475 |
476 | ```
477 | "Server: Logitech Media Server" "200 OK"
478 | ```
479 |
480 |
481 |
482 |
483 | ### [Plex](https://www.plex.tv/) Media Servers [🔎 →](https://www.shodan.io/search?query=%22X-Plex-Protocol%22+%22200+OK%22+port%3A32400)
484 |
485 | ```
486 | "X-Plex-Protocol" "200 OK" port:32400
487 | ```
488 |
489 |
490 | ### [Tautulli / PlexPy](https://github.com/Tautulli/Tautulli) Dashboards [🔎 →](https://www.shodan.io/search?query=%22CherryPy%2F5.1.0%22+%22%2Fhome%22)
491 |
492 | ```
493 | "CherryPy/5.1.0" "/home"
494 | ```
495 |
496 |
497 |
498 |
499 | ---
500 |
501 |
502 | ## Webcams
503 |
504 | Example images not necessary. 🤦
505 |
506 | ### Yawcams [🔎 →](https://www.shodan.io/search?query=%22Server%3A+yawcam%22+%22Mime-Type%3A+text%2Fhtml%22)
507 |
508 | ```
509 | "Server: yawcam" "Mime-Type: text/html"
510 | ```
511 |
512 |
513 | ### webcamXP/webcam7 [🔎 →](https://www.shodan.io/search?query=%28%22webcam+7%22+OR+%22webcamXP%22%29+http.component%3A%22mootools%22+-401)
514 |
515 | ```
516 | ("webcam 7" OR "webcamXP") http.component:"mootools" -401
517 | ```
518 |
519 |
520 | ### Android IP Webcam Server [🔎 →](https://www.shodan.io/search?query=%22Server%3A+IP+Webcam+Server%22+%22200+OK%22)
521 |
522 | ```
523 | "Server: IP Webcam Server" "200 OK"
524 | ```
525 |
526 |
527 | ### Security DVRs [🔎 →](https://www.shodan.io/search?query=html%3A%22DVR_H264+ActiveX%22)
528 |
529 | ```
530 | html:"DVR_H264 ActiveX"
531 | ```
532 |
533 |
534 | ---
535 |
536 |
537 | ## Printers & Copiers:
538 |
539 |
540 | ### HP Printers [🔎 →](https://www.shodan.io/search?query=%22Serial+Number%3A%22+%22Built%3A%22+%22Server%3A+HP+HTTP%22)
541 |
542 | ```
543 | "Serial Number:" "Built:" "Server: HP HTTP"
544 | ```
545 |
546 |
547 |
548 |
549 | ### Xerox Copiers/Printers [🔎 →](https://www.shodan.io/search?query=ssl%3A%22Xerox+Generic+Root%22)
550 |
551 | ```
552 | ssl:"Xerox Generic Root"
553 | ```
554 |
555 |
556 |
557 |
558 | ### Epson Printers [🔎 →](https://www.shodan.io/search?query=%22SERVER%3A+EPSON_Linux+UPnP%22+%22200+OK%22)
559 |
560 | ```
561 | "SERVER: EPSON_Linux UPnP" "200 OK"
562 | ```
563 |
564 | ```
565 | "Server: EPSON-HTTP" "200 OK"
566 | ```
567 |
568 |
569 |
570 |
571 | ### Canon Printers [🔎 →](https://www.shodan.io/search?query=%22Server%3A+KS_HTTP%22+%22200+OK%22)
572 |
573 | ```
574 | "Server: KS_HTTP" "200 OK"
575 | ```
576 |
577 | ```
578 | "Server: CANON HTTP Server"
579 | ```
580 |
581 |
582 |
583 |
584 | ---
585 |
586 |
587 | ## Home Devices
588 |
589 |
590 | ### Yamaha Stereos [🔎 →](https://www.shodan.io/search?query=%22Server%3A+AV_Receiver%22+%22HTTP%2F1.1+406%22)
591 |
592 | ```
593 | "Server: AV_Receiver" "HTTP/1.1 406"
594 | ```
595 |
596 |
597 |
598 |
599 | ### Apple AirPlay Receivers [🔎 →](https://www.shodan.io/search?query=%22%5Cx08_airplay%22+port%3A5353)
600 |
601 | Apple TVs, HomePods, etc.
602 |
603 | ```
604 | "\x08_airplay" port:5353
605 | ```
606 |
607 |
608 | ### Chromecasts / Smart TVs [🔎 →](https://www.shodan.io/search?query=%22Chromecast%3A%22+port%3A8008)
609 |
610 | ```
611 | "Chromecast:" port:8008
612 | ```
613 |
614 |
615 | ### [Crestron Smart Home](https://www.crestron.com/Products/Market-Solutions/Residential-Solutions) Controllers [🔎 →](https://www.shodan.io/search?query=%22Model%3A+PYNG-HUB%22)
616 |
617 | ```
618 | "Model: PYNG-HUB"
619 | ```
620 |
621 | ---
622 |
623 |
624 | ## Random Stuff
625 |
626 |
627 | ### OctoPrint 3D Printer Controllers [🔎 →](https://www.shodan.io/search?query=title%3A%22OctoPrint%22+-title%3A%22Login%22+http.favicon.hash%3A1307375944)
628 |
629 | ```
630 | title:"OctoPrint" -title:"Login" http.favicon.hash:1307375944
631 | ```
632 |
633 |
634 |
635 |
636 | ### Etherium Miners [🔎 →](https://www.shodan.io/search?query=%22ETH+-+Total+speed%22)
637 |
638 | ```
639 | "ETH - Total speed"
640 | ```
641 |
642 |
643 |
644 |
645 | ### Apache Directory Listings [🔎 →](https://www.shodan.io/search?query=http.title%3A%22Index+of+%2F%22+http.html%3A%22.pem%22)
646 |
647 | Substitute `.pem` with any extension or a filename like `phpinfo.php`.
648 |
649 | ```
650 | http.title:"Index of /" http.html:".pem"
651 | ```
652 |
653 |
654 | ### Misconfigured WordPress [🔎 →](https://www.shodan.io/search?query=http.html%3A%22*+The+wp-config.php+creation+script+uses+this+file%22)
655 |
656 | Exposed [`wp-config.php`](https://github.com/WordPress/WordPress/blob/master/wp-config-sample.php) files containing database credentials.
657 |
658 | ```
659 | http.html:"* The wp-config.php creation script uses this file"
660 | ```
661 |
662 |
663 | ### Too Many Minecraft Servers [🔎 →](https://www.shodan.io/search?query=%22Minecraft+Server%22+%22protocol+340%22+port%3A25565)
664 |
665 | ```
666 | "Minecraft Server" "protocol 340" port:25565
667 | ```
668 |
669 |
670 | ### Literally [Everything](https://www.vox.com/2014/12/22/7435625/north-korea-internet) in North Korea 🇰🇵 [🔎 →](https://www.shodan.io/search?query=net%3A175.45.176.0%2F22%2C210.52.109.0%2F24)
671 |
672 | ```
673 | net:175.45.176.0/22,210.52.109.0/24,77.94.35.0/24
674 | ```
675 |
676 |
677 | ### TCP Quote of the Day [🔎 →](https://www.shodan.io/search?query=port%3A17+product%3A%22Windows+qotd%22)
678 |
679 | Port 17 ([RFC 865](https://tools.ietf.org/html/rfc865)) has a [bizarre history](https://en.wikipedia.org/wiki/QOTD)...
680 |
681 | ```
682 | port:17 product:"Windows qotd"
683 | ```
684 |
685 |
686 | ### Find a Job Doing This! 👩💼 [🔎 →](https://www.shodan.io/search?query=%22X-Recruiting%3A%22)
687 |
688 | ```
689 | "X-Recruiting:"
690 | ```
691 |
692 |
693 | ---
694 |
695 |
696 |
697 | If you've found any other juicy Shodan gems, whether it's a search query or a specific example, definitely [drop a comment](https://jarv.is/notes/shodan-search-queries/#commento) on the blog or [open an issue/PR here on GitHub](https://github.com/jakejarvis/awesome-shodan-queries).
698 |
699 | Bon voyage, fellow penetrators! 😉
700 |
701 |
702 |
703 | ## License
704 |
705 | [](https://creativecommons.org/publicdomain/zero/1.0/)
706 |
707 | To the extent possible under law, [Jake Jarvis](https://jarv.is/) has waived all copyright and related or neighboring rights to this work.
708 |
709 | Mirrored from a blog post at https://jarv.is/notes/shodan-search-queries/.
710 |
--------------------------------------------------------------------------------
/screenshots/7-11.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/7-11.png
--------------------------------------------------------------------------------
/screenshots/billboard3.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/billboard3.png
--------------------------------------------------------------------------------
/screenshots/buffalo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/buffalo.png
--------------------------------------------------------------------------------
/screenshots/c4max.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/c4max.png
--------------------------------------------------------------------------------
/screenshots/canon.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/canon.png
--------------------------------------------------------------------------------
/screenshots/citrix.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/citrix.png
--------------------------------------------------------------------------------
/screenshots/epson.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/epson.png
--------------------------------------------------------------------------------
/screenshots/eth.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/eth.png
--------------------------------------------------------------------------------
/screenshots/hp.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/hp.png
--------------------------------------------------------------------------------
/screenshots/iomega.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/iomega.png
--------------------------------------------------------------------------------
/screenshots/jenkins.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/jenkins.png
--------------------------------------------------------------------------------
/screenshots/logitech.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/logitech.png
--------------------------------------------------------------------------------
/screenshots/mongo-express.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/mongo-express.png
--------------------------------------------------------------------------------
/screenshots/mongo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/mongo.png
--------------------------------------------------------------------------------
/screenshots/octoprint.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/octoprint.png
--------------------------------------------------------------------------------
/screenshots/owa2007.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/owa2007.png
--------------------------------------------------------------------------------
/screenshots/owa2010.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/owa2010.png
--------------------------------------------------------------------------------
/screenshots/owa2013.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/owa2013.png
--------------------------------------------------------------------------------
/screenshots/plate-reader.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/plate-reader.png
--------------------------------------------------------------------------------
/screenshots/plexpy.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/plexpy.png
--------------------------------------------------------------------------------
/screenshots/polycom.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/polycom.png
--------------------------------------------------------------------------------
/screenshots/power-gaugetech.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/power-gaugetech.png
--------------------------------------------------------------------------------
/screenshots/refrigeration.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/refrigeration.png
--------------------------------------------------------------------------------
/screenshots/sailor-vsat.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/sailor-vsat.png
--------------------------------------------------------------------------------
/screenshots/shodan.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/shodan.png
--------------------------------------------------------------------------------
/screenshots/tesla.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/tesla.png
--------------------------------------------------------------------------------
/screenshots/vnc.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/vnc.png
--------------------------------------------------------------------------------
/screenshots/weavescope.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/weavescope.png
--------------------------------------------------------------------------------
/screenshots/windows2003-vnc.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/windows2003-vnc.png
--------------------------------------------------------------------------------
/screenshots/xerox.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/xerox.png
--------------------------------------------------------------------------------
/screenshots/yamaha.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jakejarvis/awesome-shodan-queries/b3439d187b037211b98ac6c12b94a7bdf43af729/screenshots/yamaha.png
--------------------------------------------------------------------------------
