HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Dorks 🔎 Shodan Dorks Megalist – Part 5: NAS, IoT, Smart Devices & Misc Exposures

dEEpEst

dEEpEst

☣☣ In The Depths ☣☣
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Mar 29, 2018
Messages
13,860
Solutions
4
Reputation
27
Reaction score
45,546
Points
1,813
Credits
55,340
‎7 Years of Service‎
 
56%
🔎 Shodan Dorks Megalist – Part 5: NAS, IoT, Smart Devices & Misc Exposures

🚀Created for Hack Tools Dark Community

Disclaimer: These queries are provided for awareness and authorized security research only. Do not interact with services you do not own or explicitly control.
Click to expand...

From open FTP servers to smart TVs and home NAS units — many personal and enterprise devices are exposed to the Internet. These dorks help identify those targets for defensive analysis and threat hunting.

🗂️ Network Attached Storage (NAS)
  • "Authentication: disabled" port:445 – Open SMB shares
  • "Authentication: disabled" NETLOGON SYSVOL -unix port:445
  • "Authentication: disabled" "Shared this folder to access QuickBooks files OverNetwork" -unix port:445
  • "220" "230 Login successful." port:21 – FTP with anonymous login
  • "Set-Cookie: iomega=" -"manage/login.html" -http.title:"Log In" – Iomega/LenovoEMC
  • Redirecting sencha port:9000 – Buffalo TeraStation
  • "Server: Logitech Media Server" "200 OK"
  • "X-Plex-Protocol" "200 OK" port:32400 – Plex Media Servers
  • "CherryPy/5.1.0" "/home" – Tautulli Dashboards
  • "IPC$ all storage devices" – USB on home routers

🖨️ Printers & Copiers
  • "Serial Number:" "Built:" "Server: HP HTTP" – HP Printers
  • ssl:"Xerox Generic Root" – Xerox Devices
  • "SERVER: EPSON_Linux UPnP" "200 OK"
  • "Server: EPSON-HTTP" "200 OK"
  • "Server: KS_HTTP" "200 OK" – Canon Printers
  • "Server: CANON HTTP Server"

📺 Smart TVs, Cast Devices & IoT
  • "Chromecast:" port:8008
  • "\\x08_airplay" port:5353 – Apple AirPlay
  • title:"Welcome to your Strapi app" – Strapi CMS panels
  • "Model: PYNG-HUB" – Crestron Home Controllers
  • "Server: AV_Receiver" "HTTP/1.1 406" – Yamaha Receivers
  • "ESP Easy Mega" – Microcontrollers
  • "Server: calibre" http.status:200 http.title:calibre – Ebook libraries

🎮 Miscellaneous Devices & Services
  • http.title:"OctoPrint" -title:"Login" http.favicon.hash:1307375944 – 3D printers
  • "ETH - Total speed" – Ethereum miners
  • http.title:"Index of /" http.html:".pem" – Directory listings with PEMs
  • http.html:"* The wp-config.php creation script uses this file" – Misconfigured WordPress
  • "Minecraft Server" "protocol 340" port:25565 – Open Minecraft servers
  • net:175.45.176.0/22,210.52.109.0/24,77.94.35.0/24 – Everything in North Korea

Thread Complete!
This concludes the 5-part Shodan Dork Megalist. You can now use this to scan, test, and research internet-exposed systems with proper authorization. Stay ethical. Stay sharp. 🕶️

Discussion prompt:
Which dorks have you found the most useful? Have you built any tools around these? Let’s collaborate and grow the toolkit! 🧰
 
You must log in or register to reply here.
Back
Top