shodan-reconnaissance-and-pentestinglisted

This skill should be used when the user asks to "search for exposed devices on the internet," "perform Shodan reconnaissance," "find vulnerable services using Shodan," "scan IP ranges with Shodan," or "discover IoT devices and open ports." It provides comprehensive guidance for using Shodan's search engine, CLI, and API for penetration testing reconnaissance.
aiskillstore/marketplace · ★ 350 · Testing & QA · score 83

Install: claude install-skill aiskillstore/marketplace

# Shodan Reconnaissance and Pentesting ## Purpose Provide systematic methodologies for leveraging Shodan as a reconnaissance tool during penetration testing engagements. This skill covers the Shodan web interface, command-line interface (CLI), REST API, search filters, on-demand scanning, and network monitoring capabilities for discovering exposed services, vulnerable systems, and IoT devices. ## Inputs / Prerequisites - **Shodan Account**: Free or paid account at shodan.io - **API Key**: Obtained from Shodan account dashboard - **Target Information**: IP addresses, domains, or network ranges to investigate - **Shodan CLI**: Python-based command-line tool installed - **Authorization**: Written permission for reconnaissance on target networks ## Outputs / Deliverables - **Asset Inventory**: List of discovered hosts, ports, and services - **Vulnerability Report**: Identified CVEs and exposed vulnerable services - **Banner Data**: Service banners revealing software versions - **Network Mapping**: Geographic and organizational distribution of assets - **Screenshot Gallery**: Visual reconnaissance of exposed interfaces - **Exported Data**: JSON/CSV files for further analysis ## Core Workflow ### 1. Setup and Configuration #### Install Shodan CLI ```bash # Using pip pip install shodan # Or easy_install easy_install shodan # On BlackArch/Arch Linux sudo pacman -S python-shodan ``` #### Initialize API Key ```bash # Set your API key shodan init YOUR_API_KEY # Verify setup