Do I need a Shodan API key to use this skill?

Yes, most features require a Shodan API key (free or paid) obtained from your Shodan dashboard to authenticate CLI and API requests.

Is this skill intended for automated attacks?

No, this skill is strictly for reconnaissance and authorized security testing. Always ensure you have written permission before scanning or investigating targets.

Can this skill perform active scanning?

Yes, it includes instructions for submitting on-demand scans, though these typically consume Shodan scan credits and require authorization.

How does this skill help with CVE discovery?

It provides specific search filters to identify hosts running software versions known to be susceptible to specific vulnerabilities (CVEs).

Can I export Shodan results to other formats?

Yes, the skill provides commands to parse Shodan data and export findings into CSV or JSON formats for further analysis.

Shodan Reconnaissance & Security Auditing

Name: Shodan Reconnaissance & Security Auditing
Author: claudiodearaujo

byclaudiodearaujo

•

セキュリティとテスト

Conducts comprehensive reconnaissance on internet-connected devices and services using the Shodan search engine, CLI, and API.

This skill empowers security professionals and developers to identify exposed assets, vulnerable services, and IoT devices by leveraging Shodan’s powerful scanning capabilities. It provides a structured framework for using the Shodan CLI and REST API to perform host lookups, filtered searches, and on-demand scans. Whether you are conducting an authorized penetration test, mapping an organization's external attack surface, or monitoring for data leaks, this skill offers the specific queries and automation patterns needed to transform raw internet data into actionable security intelligence.

主な機能

01Methodologies for detecting honeypots and analyzing SSL/TLS certificate exposures

02Step-by-step guidance for Shodan CLI installation, initialization, and data parsing

03Integration patterns for the Shodan Python library to automate security monitoring

04Advanced Shodan search query construction using network, geographic, and service filters

051 GitHub stars

06Automated reconnaissance workflows for identifying CVEs and vulnerable software versions

ユースケース

01Automating the discovery of services vulnerable to specific CVEs during authorized security audits

02Identifying unauthorized exposed databases and administrative panels across an organization's IP ranges

03Performing passive reconnaissance on IoT devices and industrial control systems to assess regional security risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro shodan-reconnaissance

For use in Claude.ai and ChatGPT

Download Skill