Shodan's very important query
by KillForTheThrill - November 26, 2021 at 01:03 PM
#1
You must be signed up to search with a query!

A very important query is the following:
https://www.shodan.io/search?query=port:5900+RFB+authentication+disabled
It allows to search all systems with VNC misconfigured, allowing remote access without credentials. You'll find especially HMI of ICS/SCADA systems (industrial automation), but even private Windows computers and you'll remotely control them, with Admin privileges and without enter any password.

Remember to use a VPN and hide your real IP address before to access.

Here there's an example:

Reply
#2
This query is more than three years old. LOL

But on the other hand - it's a working method. It will be useful for beginners Wink
Reply
#3
(November 26, 2021 at 01:06 PM)Gustav0x Wrote: This query is more than three years old. LOL

But on the other hand - it's a working method. It will be useful for beginners Wink

I know, and yet there continue to be systems vulnerable to such unauthorized access.
You actually could being the Admin of a very important SCADA systems with that query.
Reply
#4
thanks lol old man thanks
Reply

 Users browsing this thread: 1 Guest(s)