Here are some of the free services that Shodan provides that don’t require any payment, don’t require a Shodan account and don’t require an API key:

1. Vulnerability Information

https://cvedb.shodan.io

The CVEDB website lets you explore known vulnerabilities and provides a free API to quickly get vulnerability information. The API returns all the usual information (CVSS, references, summary) as well as the EPSS score and whether it’s in the CISA KEV (Known Exploited Vulnerabilities) catalog.

Here’s a sample JSON response with some fields truncated:

{
    cve_id: "CVE-2019-1653",
    summary: "A vulnerability in the web-based management interface of...",
    cvss: 7.5,
    cvss_version: 3,
    cvss_v2: 5,
    cvss_v3: 7.5,
    epss: 0.97564,
    ranking_epss: 1,
    kev: true,
    propose_action: "Cisco Small Business RV320 and RV325 Dual Gigabit WAN ...",
    ransomware_campaign: "Unknown",
    references: [
        "http://packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-Export.html",
        "http://packetstormsecurity.com/files/152261/Cisco-RV320-Unauthenticated-Diagnosti..."
    ],
    published_time: "2019-01-24T16:29:00",
    cpes: [
    "cpe:2.3:o:cisco:rv320_firmware:1.4.2.15",
        "cpe:2.3:o:cisco:rv320_firmware:1.4.2.17",
        "cpe:2.3:o:cisco:rv325_firmware:1.4.2.15",
        "cpe:2.3:o:cisco:rv325_firmware:1.4.2.17"
    ]
}

2. IP Enrichment to see Open Ports

https://internetdb.shodan.io

The InternetDB API lets you do basic IP enrichment for free. It returns information about open ports, tags, hostnames, cpes and potential vulnerabilities. We also offer a companion tool called nrich that uses the InternetDB to let you enrich IPs within a file:

Here’s a sample JSON response from the API:

{
    "ip": "51.83.59.99",
    "ports": [
        22,
        80,
        443,
        500
    ],
    "cpes": [
        "cpe:/a:f5:nginx",
        "cpe:/a:openbsd:openssh:7.4"
    ],
    "hostnames": [
        "www.sampleresponse.fr"
    ],
    "tags": [
        "vpn"
    ],
    "vulns": [
        "CVE-2017-15906"
    ]
}

3. Geographic Network Tools

https://geonet.shodan.io

Geonet lets you ping an IP or do DNS lookups from multiple places around the world. It’s helpful to find all IPs for websites that do geographic loadbalancing or check for potential connectivity issues depending on location.

We provide the geoping and geodns tools that make it easy to use Geonet without having to write any code.

Here’s a sample JSON response for a ping request to “twitter.com”:

{
    ip: "104.244.42.1",
    is_alive: true,
    min_rtt: 38.108,
    avg_rtt: 38.514,
    max_rtt: 38.961,
    rtts: [
        38.96141052246094,
        38.47217559814453,
        38.107872009277344
    ],
    packets_sent: 3,
    packets_received: 3,
    packet_loss: 0,
    from_loc: {
        city: "Santa Clara",
        country: "US",
        latlon: "37.3924,-121.9623"
    }
}

4. Information about Public Companies

https://entitydb.shodan.io

The EntityDB website and API lets you browse financial information for public companies based on SEC filings. We also associate them with known domains and hostnames which can be used to tie the company to IP/ DNS data.

5. Browser Plugins

Firefox: https://addons.mozilla.org/en-US/firefox/addon/shodan-addon/

Chrome: https://chromewebstore.google.com/detail/shodan/jjalcfnidlmpjhdfepjhjbhnhkbgleap

The browser plugins for Chrome and Firefox automatically lookup the open ports for the website you’re visiting using the InternetDB API. You can click through to see the full information that Shodan has for the IP or learn more about the known subdomains (ex. mozilla.org).

Bonus: Sh_d_n

https://shdn.io

Sh_d_n is a free, lightweight website for IP and domain enrichment. It’s optimized for performance and size to focus on just doing one thing: fast lookups for specific resources (IPs and domains). The website is powered by Rust, Axum and the SQLite datasets provided by Shodan Enterprise. We’re excited to have reduced the size for most of the pages on this website to less than 10kb, including the CSS stylesheet. If you have the stylesheet cached on the browser then most pages are less than 1 kb!

Waiting for the Membership Sale?

Every year we also run a special lifetime Membership promotion where we offer it for $5. If you’re on a tight budget or are looking to get started with Shodan then you can wait until that sale happens. Follow us on Mastodon to get notified when the Membership sale goes live:

https://mastodon.shodan.io

Leave a Reply

Your email address will not be published. Required fields are marked *