I will talk about using shodan and google dorks for ICS Pentest in this article. Before start to pentest, you have to gathering to information about target system or systems.
The most easily road for gathering of information is use google. Because, google is the best information resourch about everything, if you know to use.
So, let’s get started with google 🙂
There are many systems, open to the internet and we can find they with we can use google dorks. For example:
GOOGLE DORK
intitle:"Honeywell XL Web Controller - Login" (inurl:"standard/default.php" | inurl:"standard/header/header.php" | inurl:"standard/mainframe.php" | inurl:"standard/footer/footer.php" | inurl:"standard/update.php")
AND WE CAN FIND THE GUEST PASSWORD WITH GOOGLE SEARCH 🙂
Shodan
Shodan is a search engine used to find and analyze devices on the internet. It is commonly used to discover devices and systems on computer networks. This search engine scans all kinds of connected devices, collecting various information, and presents it to users.
Shodan is typically utilized by security professionals, researchers, and cybersecurity experts. The search engine can be used as a tool to create awareness about security vulnerabilities and weaknesses. Users of Shodan can examine various information among devices on the internet, such as open ports, used protocols, services, device types, and more.
We can search for a manufacturer working in the field of ICS. I will also search modbus for this article.
