The article explains the FortiGhost (CVE‑2026‑21643) pre‑authentication SQL injection RCE vulnerability in FortiClient EMS and provides specific Google and Shodan search queries—title, HTML content, and favicon hash—to discover vulnerable instances.
This article explains how the default title of the open‑source ChatGPT‑web project makes deployments vulnerable to discovery by asset‑search engines like FOFA and Shodan, leading to unauthorized API usage, and provides practical steps—changing the title and adding authentication—to protect the site and prevent unexpected costs.
Fav‑up is a Python‑based reconnaissance utility that uses Shodan and website favicons to locate the true IP addresses of target services, offering command‑line options, module integration, and output formats for efficient network asset discovery.
This guide explains what Shodan is, why internet‑connected devices are vulnerable, and provides step‑by‑step instructions—including environment setup, API key registration, basic Python searches, and advanced facet queries—to safely explore and analyze exposed devices.
This article explains how attackers discover vulnerable internet‑connected cameras by using searchable databases like ZoomEye and Shodan, as well as by scanning IP ranges for common camera ports, and highlights the ethical considerations of such techniques.
Fav-up is a Python‑based utility that combines Shodan data and website favicons to help security researchers uncover the true IP addresses of target services, offering flexible command‑line options, module integration, and output formats for comprehensive IP discovery.
This article introduces Fav-up, a Python-based IP discovery tool that leverages Shodan and website favicons, explains how to install it, details its command‑line options and usage examples, and shows how to integrate it as a Python module for network reconnaissance.
During the Mid‑Autumn Festival I received a seemingly harmless mooncake email, suspected it was a phishing test, and then used a virtual machine, network‑capture tools, Shodan, and open‑source intelligence to trace the malicious link back to its source and exposed the underlying infrastructure.
A hacker recounts how a desperate request led to a full‑scale investigation of insecure IoT cameras, using Shodan to discover default credentials, reverse‑engineering a malicious Android app, infiltrating a cloud server, and ultimately dismantling a ransomware operation that harvested nude videos.
Thousands of MongoDB databases were erased and replaced with ransom demands, yet almost no victims recovered their data, highlighting widespread misconfigurations, public exposure on Shodan, and the urgent need for proper security hardening of MongoDB deployments.
