渗透之——利用Metasploit找出SCADA服务器
2024-06-27 05:54:56
转载请注明出处:https://blog.csdn.net/l1028386804/article/details/86531784
1.注册账号
首先,我们在https://www.shodan.io上注册一个账号
2.获取API Key
注册账号成功之后,我们获取一个免费的API Key
3.在Metasploit中找出采用罗克韦尔自动化技术的SCADA系统
msfconsole
use auxiliary/gather/shodan_search
show options
set SHODAN_APIKEY 第2步获取的API Key
set QUERY Rockwell
run具体操作如下:
msf > use auxiliary/gather/shodan_search
msf auxiliary(gather/shodan_search) > show optionsModule options (auxiliary/gather/shodan_search):Name Current Setting Required Description---- --------------- -------- -----------DATABASE false no Add search results to the databaseMAXPAGE 1 yes Max amount of pages to collectOUTFILE no A filename to store the list of IPsProxies no A proxy chain of format type:host:port[,type:host:port][...]QUERY yes Keywords you want to search forREGEX .* yes Regex search for a specific IP/City/Country/HostnameSHODAN_APIKEY yes The SHODAN API keySSL false no Negotiate SSL/TLS for outgoing connectionsmsf auxiliary(gather/shodan_search) > set SHODAN_APIKEY 第2步获取的API Key
SHODAN_APIKEY => dRDBajzYMt9EPV2I5i87f3YWhfykY43p
msf auxiliary(gather/shodan_search) > set QUERY Rockwell
QUERY => Rockwell
msf auxiliary(gather/shodan_search) > run[*] Total: 7351 on 74 pages. Showing: 1 page(s)
[*] Collecting data, please wait...Search Results
==============IP:Port City Country Hostname------- ---- ------- --------104.169.148.106:44818 Lewiston United States 107.85.58.132:44818 N/A United States 107.85.58.184:44818 N/A United States 108.95.125.62:44818 Excelsior Springs United States 108-95-125-62.lightspeed.mssnks.sbcglobal.net124.199.70.151:44818 Tainan Taiwan 124-199-70-151.HINET-IP.hinet.net129.24.204.161:44818 Albuquerque United States ssc-0006.unm.edu142.55.112.203:44818 Oakville Canada br-c147-plc03.ddi.sheridanc.on.ca166.130.151.114:44818 Atlanta United States mobile-166-130-151-114.mycingular.net166.130.155.138:44818 Atlanta United States mobile-166-130-155-138.mycingular.net166.130.174.51:44818 Atlanta United States mobile-166-130-174-51.mycingular.net166.130.71.137:44818 Atlanta United States mobile-166-130-71-137.mycingular.net166.130.72.51:44818 Atlanta United States mobile-166-130-72-51.mycingular.net166.131.38.86:44818 N/A United States mobile-166-131-38-86.mycingular.net166.139.173.118:44818 N/A United States 118.sub-166-139-173.myvzw.com166.139.78.48:44818 N/A United States 48.sub-166-139-78.myvzw.com166.141.166.213:44818 N/A United States 213.sub-166-141-166.myvzw.com166.142.163.179:44818 N/A United States 179.sub-166-142-163.myvzw.com166.142.214.167:44818 N/A United States 167.sub-166-142-214.myvzw.com166.142.223.87:44818 N/A United States 87.sub-166-142-223.myvzw.com166.148.138.164:44818 N/A United States 164.sub-166-148-138.myvzw.com166.150.224.175:44818 N/A United States 175.sub-166-150-224.myvzw.com166.150.235.165:44818 N/A United States 165.sub-166-150-235.myvzw.com166.152.102.3:44818 N/A United States 3.sub-166-152-102.myvzw.com166.152.146.81:44818 N/A United States 81.sub-166-152-146.myvzw.com166.152.7.95:44818 N/A United States 95.sub-166-152-7.myvzw.com166.152.86.244:44818 N/A United States 244.sub-166-152-86.myvzw.com166.152.88.177:44818 N/A United States 177.sub-166-152-88.myvzw.com166.155.192.83:44818 N/A United States 83.sub-166-155-192.myvzw.com166.155.230.179:44818 N/A United States 179.sub-166-155-230.myvzw.com166.155.244.192:44818 N/A United States 192.sub-166-155-244.myvzw.com166.155.68.30:44818 N/A United States 30.sub-166-155-68.myvzw.com166.156.252.231:44818 N/A United States 231.sub-166-156-252.myvzw.com166.157.134.23:44818 N/A United States 23.sub-166-157-134.myvzw.com166.157.180.145:44818 N/A United States 145.sub-166-157-180.myvzw.com166.157.211.136:44818 N/A United States 136.sub-166-157-211.myvzw.com166.165.60.50:44818 N/A United States 50.sub-166-165-60.myvzw.com166.165.81.185:44818 N/A United States 185.sub-166-165-81.myvzw.com166.165.81.188:44818 N/A United States 188.sub-166-165-81.myvzw.com166.168.129.250:44818 N/A United States 250.sub-166-168-129.myvzw.com166.168.68.40:44818 N/A United States 40.sub-166-168-68.myvzw.com166.169.25.205:44818 N/A United States 205.sub-166-169-25.myvzw.com166.211.227.248:44818 N/A United States 248.sub-166-211-227.myvzw.com166.239.236.32:44818 N/A United States 32.sub-166-239-236.myvzw.com166.239.24.87:44818 N/A United States 87.sub-166-239-24.myvzw.com166.241.108.53:44818 N/A United States 53.sub-166-241-108.myvzw.com166.246.171.53:44818 N/A United States 53.sub-166-246-171.myvzw.com166.247.38.132:44818 N/A United States 132.sub-166-247-38.myvzw.com166.247.38.228:44818 N/A United States 228.sub-166-247-38.myvzw.com166.247.72.15:44818 N/A United States 15.sub-166-247-72.myvzw.com166.247.72.26:44818 N/A United States 26.sub-166-247-72.myvzw.com166.250.88.74:44818 N/A United States 74.sub-166-250-88.myvzw.com166.254.18.72:44818 N/A United States 72.sub-166-254-18.myvzw.com166.254.21.20:44818 N/A United States 20.sub-166-254-21.myvzw.com166.255.248.118:44818 Bothell United States 118.sub-166-255-248.myvzw.com173.241.180.88:44818 Dickinson United States mail.frontiertravelcenter.com174.79.107.66:44818 Rogers United States mail.our-klan.com174.90.225.57:44818 Beaumont Canada 184.13.254.67:44818 Bruceton Mills United States static-184-13-254-67.clbg.wv.frontiernet.net184.159.33.72:44818 Osceola United States 184-159-33-72.stat.centurytel.net184.188.189.102:44818 Littleton United States wsip-184-188-189-102.ks.ks.cox.net184.6.175.136:44818 Bassett United States tx-184-6-175-136.sta.embarqhsd.net185.183.222.174:44818 Ceuti Spain 185.183.222.174.dyn.user.borecom.com187.201.128.237:44818 Zapopan Mexico dsl-187-201-128-237-dyn.prod-infinitum.com.mx192.186.64.242:44818 Windsor Canada d192-186-64-242.db.static.comm.cgocable.net192.199.57.83:44818 Red Earth Canada 198.0.121.49:44818 N/A United States MAIL.GFMCORP.COM198.163.95.77:44818 N/A United States 198.35.56.250:44818 N/A United States 199.167.142.76:161 N/A Canada 199.79.231.236:44818 Augusta United States 2.143.95.44:44818 Perdices Spain 44.red-2-143-95.dynamicip.rima-tde.net2.55.70.153:44818 Jerusalem Israel 207.195.130.150:44818 Rexford United States 207.195.130.150-st-tel.net208.98.195.106:44818 Calgary Canada 211.75.65.156:44818 Dongning Taiwan 211-75-65-156.HINET-IP.hinet.net213.3.8.120:44818 N/A Switzerland 120.8.3.213.static.wline.lns.sme.cust.swisscom.ch216.115.198.94:44818 Rocky Gap United States 24.111.213.227:44818 Dickinson United States 24-111-213-227-static.midco.net24.86.129.129:44818 Vancouver Canada S01060030440868d3.vc.shawcable.net50.205.167.178:44818 Elkhart United States 50-205-167-178-static.hfc.comcastbusiness.net50.247.170.211:44818 Melrose Park United States 50-247-170-211-static.hfc.comcastbusiness.net58.246.115.189:161 Shanghai China 59.20.136.91:44818 Busan Korea, Republic of 63.88.122.58:44818 Richmond United States 70.166.134.53:44818 Fayetteville United States wsip-70-166-134-53.fv.ks.cox.net70.186.236.43:44818 Lowell United States wsip-70-186-236-43.ks.ks.cox.net70.28.254.80:44818 Dundalk Canada 70.62.46.230:44818 Columbus United States 70.88.243.93:44818 N/A United States 70-88-243-93-ma-nh-me-ne.hfc.comcastbusiness.net75.228.158.242:44818 N/A United States 242.sub-75-228-158.myvzw.com76.70.223.14:44818 N/A Canada 77.210.193.171:44818 Barcelona Spain 77.211.19.36:44818 Salamanca Spain 78.116.231.225:44818 Lombez France 225.231.116.78.rev.sfr.net85.120.40.73:44818 N/A Romania 91.149.55.49:44818 N/A Norway 96.57.38.114:44818 Saint James United States ool-60392672.static.optonline.net96.70.239.109:44818 Boston United States 96-70-239-109-static.hfc.comcastbusiness.net96.84.106.227:44818 Chicago United States 96-84-106-227-static.hfc.comcastbusiness.net98.164.37.98:44818 Skiatook United States wsip-98-164-37-98.tu.ok.cox.net[*] Auxiliary module execution completed可以看到找到了很多的SCADA系统。
渗透之——利用Metasploit找出SCADA服务器相关推荐
- 快速找出Linux服务器上不该存在恶意或后门文件
转载来源 :如何快速找出Linux服务器上不该存在恶意或后门文件 :https://www.2cto.com/article/201805/748965.html 如何快速找出Linux服务器上不该存 ...
- 利用Python找出适合你的国考市考公务员岗位
很多小伙伴都在考虑是否要报公务员,但是却不知道适合自己的岗位有什么,今天我们就来利用Python找出适合你的岗位吧! 根据2019年国考全国职位表,可以找到以下的报考限制因素:专业.学历.政治面貌.基 ...
- 利用python找出连续三年业绩上涨30%的A股
利用python找出连续三年业绩上涨30%的A股 利用python找出连续三年业绩上涨30%的A股 生成股票代码 编写请求 分析报表 结果实证 生成股票代码 # 上证代码 shanghaicode = ...
- linux 端口tnpl,利用Python找出9个连续的空闲端口
这篇文章主要介绍了Python找出9个连续的空闲端口的方法,感兴趣的小伙伴们可以参考一下 一.项目需求 安装某软件,配置时候需要填写空闲的端口.查看5个平台的某个端口是否被占用 5个平台为window ...
- 利用HashMap找出数组中出现次数最多的元素及其次数
我在牛客网上刷题时遇到了这道题目,因为初学Java不久,对Java的应用还不熟悉,刚开始用C语言做没做出来(我太菜了...),接着百度发现竟然可以用HashMap做,仔细一想发现这真是一个好办法(为什 ...
- 利用计算机找出函数关系式,汽车理论课后题答案.doc
汽车理论课后题答案.doc 第一章汽车的动力性 1.1试说明轮胎滚动阻力的定义,产生机理和作用形式. 答车轮滚动时,由于车轮的弹性变形.路面变形和车辙摩擦等原因所产生的阻碍汽车行驶的力称为轮胎滚动阻力 ...
- oracle 正则表达式匹配日期格式,利用正则表达式找出不合符的日期
很多时候我们的日期可能存放的是字符串类型,在插入的时候也很有可能插入的日期格式不正确, 因此我们需要找出这些不合符的日期格式,来此来修正.当然可以使用TO_DATE函数一个一个的转换来找出不合法的日期 ...
- find函数常见错误_如何利用FIND找出你要的数据-EXCEL-开篇3-字符串函数系列-2
各位好:以后每周都会按学习顺序给大家教EXCEL知识,欢迎关注和学习! 上期作业: 图9 首先我们把这个编成一个数学问题,假如一段字符有汉字和英文组成,如果中英文都算一个字符的话则字数为a,若 汉字为 ...
- python 找出列表中出现最多的元素_利用Python找出序列中出现最多的元素示例代码...
前言 Python包含6种内置的序列:列表.元组.字符串 .Unicode字符串.buffer对象.xrange对象.在序列中的每个元素都有自己的编号.列表与元组的区别在于,列表是可以修改,而组元不可 ...
最新文章
- arch linux引导不启动_Linux 内核源代码的目录结构
- PL/SQL开发五年工作经验精典实例
- C/C++使用socket实现server和client
- POI实现Excel导出时常用方法说明
- Ipython\Jupyter数据分析工具
- python 数据平滑_数据平滑方法的原理和应用
- div中文字,图片居中对齐,兼容FF、IE
- Eigen 3.3.7 MatrixVector的运算
- Spring学习之路——简单入门HelloWorld
- 自己做量化交易软件(37)小白量化实战10--操作方法与MetaTrader5高频策略的进化
- 深度包检测(DPI)的记录
- 关于 Windows 10 如何扩展分区与合并分区
- win32 007
- Docker最新版19.03 详细教程
- 滚动率、Vintage、WOE、IV、LIFT、PSI、GINI
- watch 和mounted 执行顺序
- 【算法•日更•第十四期】信息奥赛一本通1592:【例 1】国王题解
- gvim编辑器的快捷键
- 将本地仓库推送到远程SSHHTTPS
- 啊哈c语言有函数么,啊哈c-啊哈c为什么不能运行??如图