Actions6
Overview
This node interacts with the Shodan API to retrieve information about a specific IP address (host). It is useful for cybersecurity professionals, network administrators, and researchers who want to gather detailed data about an IP address, such as open ports, services, and historical banners. For example, it can be used to check the security posture of a server or to investigate suspicious IP addresses.
Use Case Examples
- Lookup information about the IP address 8.8.8.8 to see open ports and services.
- Retrieve historical banners for an IP address to analyze past configurations or vulnerabilities.
Properties
| Name | Meaning |
|---|---|
| IP Address | The IP address to lookup information for. |
| Additional Fields | Optional parameters to customize the response, including whether to return historical banners and whether to return a minified response with only ports and general host information. |
| Request Options | Settings to control request behavior such as batching, SSL certificate validation, proxy usage, and timeout duration. |
Output
JSON
ip_str- The IP address string of the host.ports- List of open ports on the host.hostnames- Hostnames associated with the IP address.os- Operating system detected on the host.data- Detailed information about services and banners found on the host.history- Historical banners if the history option is enabled.
Dependencies
- Requires an API key credential for Shodan API access.
Troubleshooting
- Ensure the IP address is valid and reachable; invalid IPs will cause errors.
- If SSL certificate validation fails and the request is blocked, enable the option to ignore SSL issues.
- Proxy settings must be correct if used; incorrect proxy configuration can cause request failures.
- Timeouts can occur if the server is slow to respond; increase timeout setting if needed.
Links
- Shodan API Documentation - Official documentation for the Shodan API endpoints and parameters.