Find Vulnerable SCADA Systems with Shodan

Posted: November 10th, 2010 | Author: | Filed under: IT Related | Tags: , | 5 Comments »

Here are some useful queries:

  • http://www.shodanhq.com/?q=port:161+country:US+simatic
  • http://www.shodanhq.com/?q=PLC
  • http://www.shodanhq.com/?q=allen+bradley
  • http://www.shodanhq.com/?q=fanuc
  • http://www.shodanhq.com/?q=Rockwell
  • http://www.shodanhq.com/?q=Cimplicity
  • http://www.shodanhq.com/?q=Omron
  • http://www.shodanhq.com/?q=Novatech
  • http://www.shodanhq.com/?q=Citect
  • http://www.shodanhq.com/?q=RTU
  • http://www.shodanhq.com/?q=Modbus+Bridge
  • http://www.shodanhq.com/?q=modicon
  • http://www.shodanhq.com/?q=bacnet
  • http://www.shodanhq.com/?q=telemetry+gateway
  • http://www.shodanhq.com/?q=SIMATIC
  • http://www.shodanhq.com/?q=hmi
  • http://www.shodanhq.com/?q=siemens+-…er+-Subscriber
  • http://www.shodanhq.com/?q=scada+RTS
  • http://www.shodanhq.com/?q=SCHNEIDER
  • http://www.shodanhq.com/?q=port%3A161+simatic
  • http://www.shodanhq.com/?q=telemetry+gateway
  • http://www.shodanhq.com/?q=%22cisco-ios%22%20%22last-modified%22

Erk.. How to exploit?

  1. Default password (uhukk uhukk WinCC)
  2. http://reversemode.com/index.php?option=com_content&task=view&id=65&Itemid=1
  3. http://www.elladodelmal.com/2010/05/shodan-y-sistemas-scada.html
  4. [..]

What else to exploit ?


5 Comments on “Find Vulnerable SCADA Systems with Shodan”

  1. 1 Tweets that mention Find Vulnerable SCADA Systems with Shodan | Xanda's Blog !~! -- Topsy.com said at 9:40 PM on November 10th, 2010:

    […] This post was mentioned on Twitter by Cibo, s3ction7 and passket, JaeRyoungOh. JaeRyoungOh said: Find Vulnerable SCADA Systems with Shodan http://bit.ly/92okRX […]

  2. 2 CODED32 said at 5:46 PM on March 13th, 2012:

    I am currently researching on SCADA Systems, and from what I have got, most SCADA Systems are either obscured from the net (WELL) or they are just vulnerable with a weak password, and it does matter if someone has an access to these systems, one can spread Havoc in the city/town based on those systems.

  3. 3 Vulnerable SCADA Systems -Dorks said at 11:05 PM on April 11th, 2012:

    […] 1. shodanhq.com 2. scadahacker.com 3. SCADA dorks list  4.SCADA security research and […]

  4. 4 Introduction to SCADA and pentesting it said at 3:42 AM on April 12th, 2012:

    […] to exploit some of them are here or here RESOURCES 1. shodanhq.com 2. scadahacker.com 3. SCADA dorks list 4.SCADA security research and tools warning SCADA hacking is a very dangerous it can get people […]

  5. 5 Introduction to SCADA hacking – Information security alerts and news said at 6:23 AM on August 14th, 2013:

    […] 1. shodanhq.com 2. scadahacker.com 3. SCADA dorks list  4.SCADA security research and […]


Leave a Reply