HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Dorks 🔎 Shodan Dorks Megalist – Part 3: ICS, SCADA & Critical Infrastructure

dEEpEst

dEEpEst

☣☣ In The Depths ☣☣
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Mar 29, 2018
Messages
13,860
Solutions
4
Reputation
27
Reaction score
45,546
Points
1,813
Credits
55,340
‎7 Years of Service‎
 
56%
🔎 Shodan Dorks Megalist – Part 3: ICS, SCADA & Critical Infrastructure

🚀 Created for Hack Tools Dark Community

Disclaimer: This section highlights industrial, medical, and critical infrastructure devices that should never be exposed to the Internet. Use only for ethical research and with authorized lab environments.
Click to expand...

Industrial Control Systems (ICS), IoT medical devices, power grids, refrigeration systems, maritime tech, and surveillance endpoints are frequently indexed by Shodan. This list can be used to raise awareness of these exposed systems.

🏭 General ICS Protocols
  • "port:502" – Modbus
  • "port:47808" – BACnet
  • "port:5094 hart-ip" – HART-IP
  • "port:1911,4911 product:Niagara"
  • "port:2404 asdu address" – IEC 60870-5-104
  • "port:20000 source address" – DNP3
  • "port:44818" – EtherNet/IP
  • "port:18245,18246 product:'general electric'" – GE-SRTP
  • "port:5006,5007 product:mitsubishi" – MELSEC-Q
  • "port:1962 PLC" – PCWorx
  • "port:789 product:'Red Lion Controls'" – Crimson 3.0
  • "port:20547 PLC" – ProConOS

🔌 Industrial Devices & Vendors
  • "Server: Prismview Player" – Samsung billboards
  • "in-tank inventory" port:10001 – Gas station controllers
  • "privileged command" GET – Internet-exposed fuel pumps
  • "Siemens, SIMATIC" port:161
  • "Server: Microsoft-WinCE" "Content-Length: 12581" – Siemens HVAC
  • "HID VertX" port:4070 – Door access controllers
  • "log off" "select the appropriate" – Railroad Management UIs
  • "Server: CarelDataServer" – CAREL refrigeration units
  • http.title:"Nordex Control" – Wind turbine farms
  • title:"xzeres wind"

📡 Maritime, Military & Voting Devices
  • "Cobham SATCOM" OR ("Sailor" "VSAT") – Satellite tracking
  • title:"Slocum Fleet Mission Control" – Submarine dashboards
  • "voter system serial" country:US – Voting machines (USA)
  • "P372" "ANPR enabled" – License plate readers
  • mikrotik streetlight – Traffic light controllers
  • "DICOM Server Response" port:104 – Medical imaging (X-ray)

⚡ Power, Energy & Tesla Systems
  • http.title:"Tesla PowerPack System" http.component:"d3" -ga3ca4f2
  • "Server: gSOAP/2.8" "Content-Length: 583" – EV chargers
  • "GaugeTech Electricity Meters" "Server: EIG Embedded Web Server"

🚛 GPS, Vehicle Tracking, GSM
  • "[1m[35mWelcome on console" – C4 Max GPS trackers
  • "ESP Easy Mega" – GSM/IoT boards

Next: Part 4 will cover Remote Access (VNC/RDP/Telnet), exposed routers & firmware panels, C2 infrastructure, webcams, NAS devices, and more.

Engage:
Let the community know if you’ve seen ICS/SCADA devices open to the internet or share any findings in your controlled lab environments.​
 
Last edited:
You must log in or register to reply here.
Back
Top