Can this skill identify specific vulnerabilities?

Yes, it includes specialized filters to search for systems affected by specific CVEs, such as CVE-2019-0708 or Log4j, helping you identify high-risk assets.

Do I need a Shodan API key to use this skill?

Yes, you require a valid Shodan account and an API key (available from the Shodan dashboard) to initialize the CLI and execute queries.

Does this skill work with the Shodan CLI?

Absolutely. It provides full documentation and implementation steps for the Python-based Shodan CLI, including installation, initialization, and data parsing.

Is using Shodan for reconnaissance legal?

Passive reconnaissance using Shodan's existing database is generally legal for security research, but you must obtain explicit written authorization before performing active scans on specific targets.

What is the Shodan Reconnaissance skill?

It is a specialized module for Claude Code that provides methodologies and automated commands to use Shodan for discovering internet-exposed devices, services, and vulnerabilities.

Shodan Reconnaissance & Pentesting

Name: Shodan Reconnaissance & Pentesting
Author: claudiodearaujo

byclaudiodearaujo

0•

セキュリティとテスト

Leverages the Shodan search engine to discover exposed internet-connected devices, open ports, and vulnerable services for security auditing.

This skill provides a comprehensive toolkit for performing passive and active reconnaissance using Shodan's powerful search engine, CLI, and API. It enables security professionals to map attack surfaces, identify misconfigured IoT devices, scan network ranges, and detect systems vulnerable to specific CVEs. By integrating Shodan’s data into the Claude Code environment, users can automate asset inventory, monitor network exposures, and perform deep analysis of service banners and SSL certificates to enhance their cybersecurity posture and threat intelligence capabilities.

主な機能

01On-demand IP scanning and honeypot detection via Honeyscore integration

02Service banner analysis and SSL/TLS certificate auditing to identify misconfigurations

030 GitHub stars

04Advanced search queries using granular filters for products, versions, ports, and geography

05Automated asset inventory and vulnerability reporting for specific CVEs

06Full Shodan CLI and Python REST API implementation for programmatic reconnaissance

ユースケース

01Scanning for systems vulnerable to critical exploits like BlueKeep or Log4j across global IP ranges

02Mapping an organization's external attack surface and identifying accidentally exposed services

03Identifying and securing misconfigured IoT devices, industrial control systems, and open databases

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front shodan-reconnaissance

For use in Claude.ai and ChatGPT

Download Skill

主な機能

01On-demand IP scanning and honeypot detection via Honeyscore integration

02Service banner analysis and SSL/TLS certificate auditing to identify misconfigurations

030 GitHub stars

04Advanced search queries using granular filters for products, versions, ports, and geography

05Automated asset inventory and vulnerability reporting for specific CVEs

06Full Shodan CLI and Python REST API implementation for programmatic reconnaissance

ユースケース

01Scanning for systems vulnerable to critical exploits like BlueKeep or Log4j across global IP ranges

02Mapping an organization's external attack surface and identifying accidentally exposed services

03Identifying and securing misconfigured IoT devices, industrial control systems, and open databases

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front shodan-reconnaissance

For use in Claude.ai and ChatGPT

Download Skill