技能 shodan-reconnaissance
🔍
shodan-reconnaissance
低風險 ⚙️
外部命令🌐
網路存取🔑
環境變數
使用 Shodan 探索暴露的裝置
使用 Shodan 的全面偵察能力,識別網際網路上易受攻擊的服務和暴露的裝置,用於滲透測試和安全研究。
支援: Claude Codex Code(CC)
1
下載技能 ZIP
2
在 Claude 中上傳
前往 設定 → 功能 → 技能 → 上傳技能
3
開啟並開始使用
測試它
正在使用「shodan-reconnaissance」。 shodan host 1.1.1.1
預期結果:
IP: 1.1.1.1
Hostnames: one.one.one.one
Country: Australia
Organization: Mountain View Communications
Ports: 53/udp, 80/tcp, 443/tcp
正在使用「shodan-reconnaissance」。 shodan search 'product:nginx country:US'
預期結果:
Results found: 125,432
Sample IPs:
- 203.0.113.10: 80/tcp (nginx)
- 198.51.100.25: 443/tcp (nginx)
安全審計
低風險v1 • 2/25/2026
Static analyzer flagged 138 potential issues, but manual evaluation confirms all are false positives. The skill teaches legitimate use of Shodan, a recognized security research tool. Code examples show bash commands (not Ruby execution), placeholder API keys (not real secrets), and public/placeholder IP addresses. Includes explicit authorization requirements. Risk level set to LOW.
1
已掃描檔案
509
分析行數
7
發現項
1
審計總數
中風險問題 (4)
External Commands - Documentation Examples
Static analyzer flagged shell command examples as Ruby backtick execution. These are bash CLI examples in markdown, not actual code execution. Legitimate documentation for Shodan CLI tool usage.
Network - Shodan API Endpoints
Hardcoded URLs detected are legitimate Shodan API endpoints (api.shodan.io). This is expected for a skill teaching official API usage.
Network - Placeholder IP Addresses
IP addresses shown are public DNS (1.1.1.1) and RFC 1918 private ranges (192.168.x.x) used as examples. Not actual targets.
Environment - Placeholder API Keys
API key references use placeholder 'YOUR_API_KEY' that users must replace with their own key. No real credentials present.
風險因素
⚙️ 外部命令 (98)
SKILL.md:39-48 SKILL.md:48-51 SKILL.md:51-59 SKILL.md:59-62 SKILL.md:62-71 SKILL.md:71-76 SKILL.md:76-90 SKILL.md:90-93 SKILL.md:93-99 SKILL.md:99-104 SKILL.md:104-110 SKILL.md:110-113 SKILL.md:113-119 SKILL.md:119-122 SKILL.md:122-129 SKILL.md:129-132 SKILL.md:132-141 SKILL.md:141-144 SKILL.md:144-153 SKILL.md:153-158 SKILL.md:158-164 SKILL.md:164-167 SKILL.md:167-174 SKILL.md:174-177 SKILL.md:177-180 SKILL.md:180-183 SKILL.md:183-192 SKILL.md:192-195 SKILL.md:195-198 SKILL.md:198-201 SKILL.md:201-204 SKILL.md:204-209 SKILL.md:209-218 SKILL.md:218-221 SKILL.md:221-230 SKILL.md:230-233 SKILL.md:233-236 SKILL.md:236-241 SKILL.md:241-250 SKILL.md:250-255 SKILL.md:255-261 SKILL.md:261-266 SKILL.md:266-275 SKILL.md:275-278 SKILL.md:278-295 SKILL.md:295-303 SKILL.md:303-304 SKILL.md:304-305 SKILL.md:305-306 SKILL.md:306-307 SKILL.md:307-308 SKILL.md:308-309 SKILL.md:309-310 SKILL.md:310-311 SKILL.md:311-312 SKILL.md:312-313 SKILL.md:313-321 SKILL.md:321-322 SKILL.md:322-323 SKILL.md:323-324 SKILL.md:324-325 SKILL.md:325-326 SKILL.md:326-327 SKILL.md:327-328 SKILL.md:328-329 SKILL.md:329-330 SKILL.md:330-331 SKILL.md:331-332 SKILL.md:332-333 SKILL.md:333-334 SKILL.md:334-335 SKILL.md:335-341 SKILL.md:341-342 SKILL.md:342-343 SKILL.md:343-344 SKILL.md:344-345 SKILL.md:345-346 SKILL.md:346-347 SKILL.md:347-383 SKILL.md:383-395 SKILL.md:395-398 SKILL.md:398-407 SKILL.md:407-410 SKILL.md:410-422 SKILL.md:422-425 SKILL.md:425-434 SKILL.md:434-437 SKILL.md:437-479 SKILL.md:479-482 SKILL.md:482-494 SKILL.md:494-500 SKILL.md:500 SKILL.md:500-502 SKILL.md:502-503 SKILL.md:503-504 SKILL.md:504-505 SKILL.md:505 SKILL.md:47
🌐 網路存取 (18)
審計者: claude
品質評分
38
架構
100
可維護性
87
內容
50
社群
70
安全
78
規範符合性
你能建構什麼
滲透測試偵察
在授權的安全評估期間,使用 Shodan 發現目標基礎設施中的暴露服務和漏洞。
組織資產發現
對目標組織的面向公眾資產進行映射,以進行攻擊面分析。
IoT 和漏洞監控
在網際網路上尋找暴露的 IoT 裝置和易受已知 CVE 攻擊的服務。
試試這些提示
基本主機查詢
Use the shodan-reconnaissance skill to find information about IP address 1.1.1.1. What services are running and what country is it located in?
易受攻���服務發現
Find all hosts in the US running vulnerable versions of Log4j (CVE-2021-44228) using Shodan search filters.
組織偵察
Perform reconnaissance on an organization. Search for all hosts belonging to Google and get statistics on their infrastructure including ports and products.
SSL 憑證分析
Find hosts with SSL certificates for example.com domain. Show how to search for expired or self-signed certificates.
最佳實務
- 在��描目標網路之前,務必取得書面授權
- 先使用免費計數查詢以有效使用 Shodan 額度
- 結合多個搜尋篩選器以縮小結果範圍並尋找特定漏洞
避免
- 未經授權使用 Shodan 攻擊系統是非法且不道德的
- 不要僅依賴 Shodan 資料進行漏洞評估——請手動驗證發現
- 避免過度掃描,這可能會觸發速率限制或帳戶暫停
常見問題
Is Shodan legal to use?
Shodan 是合法的安全研究工具。然而,未經授權使用它來掃描或攻擊系統可能違反法律。在調查特定目標之前,務必取得書面許可。
Do I need a paid Shodan account?
免費帳戶提供有限的額度。付費方案提供更多查詢和掃描額度。沒有篩選器的基本搜尋是免費的。
Can this skill help me hack systems?
否。此技能提供授權安全測試的偵察方法論。未經授權存取電腦系統是非法的。
How accurate is Shodan data?
Shodan 資料可能是數天或數週前的。按需掃描提供最新資料。請始終透過直接測試驗證關鍵發現。
What are Shodan credits?
額度會消耗於篩選搜尋、下載和按需掃描。沒有篩選器的基本搜尋是免費的。使用 'shodan info' 檢查您的餘額。
Can I scan private IP ranges?
Shodan 爬取公開的網際網路。私有 IP 範圍(RFC 1918),如 192.168.x.x,在範例中是佔位符。只能掃描公開 IP。