Screenshots
Example Usage
#config file for shonydanza searches
#REQUIRED
#maximum number of results that will be returned per search
#default is 100
SEARCH_LIMIT = 100
#REQUIRED
#IPs exceeding the honeyscore limit will not show up in IP results
#scale is 0.0 to 1.0
#adjust to desired probability to restrict results by threshold, or keep at 1.0 to include all results
HONEYSCORE_LIMIT = 1.0
#REQUIRED - at least one key: value pair
#add a shodan dork to the dictionary below to add it to your shonydanza stock searches menu
#see https://github.com/jakejarvis/awesome-shodan-queries for a great source of queries
#check into "vuln:" filter if you have Small Business Plan or higher (e.g., vuln:cve-2019-11510)
STOCK_SEARCHES = {
'ANONYMOUS_FTP':'ftp anonymous ok',
'RDP':'port:3389 has_screenshot:true',
'OPEN_TELNET':'port:23 console gateway -password',
'APACHE_DIR_LIST':'http.title:"Index of /"',
'SPRING_BOOT':'http.favicon.hash:116323821',
'HP_PRINTERS':'"Serial Number:" "Built:" "Server: HP HTTP"',
'DOCKER_API':'"Docker Containers:" port:2375',
'ANDROID_ROOT_BRIDGE':'"Android Debug Bridge" "Device" port:5555',
'MONGO_EXPRESS_GUI':'"Set-Cookie: mongo-express=" "200 OK"',
'CVE-2019-11510_PULSE_VPN':'http.html
See also
dnsx
Open Source
Fast and multi-purpose DNS toolkit from ProjectDiscovery. Resolves domains, performs wildcard filter…
public-skills-builder
Free
Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln c…
365
Free
BlueTeam, RedTeam, Bug bounty, CTI, OSINT, Threat Hunting, Network and Web Recon, Discovery, Enumera…
ffuf
Open Source
Kali
Fast web fuzzer written in Go. Supports directory discovery, parameter fuzzing, virtual host discove…
Responder (NBT-NS Poisoner)
Open Source
Kali
Rogue authentication server and LLMNR/NBT-NS/mDNS poisoner for Windows networks. Captures NTLM chall…
Aquatone
Open Source
Tool for visual inspection of websites across large numbers of hosts. Takes screenshots of web pages…