LeakLooker – Tool To Find Open Websites Databases With Shodan

LeakLooker Tool To Find Open Websites Databases With Shodan xploitlab

Majority of pentesters know shodan and use it, Shodan is one of most popular search engine that we can use to find vulnerabilities on internet. With shodan you can search and find deepest informations from a website. LeakLooker is tool that use shodan to find open databases from internet. Because if you can get website database you can do anything with that website.

LeakLooker

Find open databases with Shodan

New version supports :

  • Elasticsearch
  • CouchDB
  • MongoDB
  • SMB
  • Gitlab
  • Rsync
  • Jenkins
  • Sonarqube
  • Kibana

and custom query.

Background :

https://medium.com/@woj_ciech/leaklooker-find-open-databases-in-a-second-9da4249c8472

V2 – https://medium.com/@woj_ciech/leaklooker-v2-find-more-open-servers-and-source-code-leaks-25e671700e41

Requirements :

Python 3 Shodan paid plan, except Kibana search

Put your Shodan API key ina line 82, Get Shodan API here

pip3 install shodan
pip3 install colorama
pip3 install hurry.filesize
pip3 install beautifulsoup4
pip install -r requirements.txt 

Usage

(venv) [email protected]:~/PycharmProjects/LeakLooker# python leaklooker.py -h
 
         ,
         )\
        /  \
       '  # '
       ',  ,'
         `'
 
         ,
         )\
        /  \
       '  ~ '
       ',  ,'
         `'
LeakLooker - Find open databases
https://medium.com/@woj_ciech https://github.com/woj-ciech/
Example: python leaklooker.py --mongodb --couchdb --kibana --elastic --first 21 --last 37
usage: leaklooker.py [-h] [--elastic] [--couchdb] [--mongodb] [--samba]
                     [--gitlab] [--rsync] [--jenkins] [--sonarqube]
                     [--query QUERY] [--kibana] [--first FIRST] [--last LAST]
 
optional arguments:
  -h, --help     show this help message and exit
  --elastic      Elasti search (default: False)
  --couchdb      CouchDB (default: False)
  --mongodb      MongoDB (default: False)
  --samba        Samba (default: False)
  --gitlab       Gitlab (default: False)
  --rsync        Rsync (default: False)
  --jenkins      Jenkins (default: False)
  --sonarqube    SonarQube (default: False)
  --query QUERY  Additional query or filter for Shodan (default: )
  --kibana       Kibana (default: False)
 
Pages:
  --first FIRST  First page (default: None)
  --last LAST    Last page (default: None) 

You need to specify first and last page

Example

[email protected]:~/# python leaklooker.py --mongodb --couchdb --kibana --elastic --first 12 --last 14
[...]
----------------------------------Elastic - Page 12--------------------------------
Found 25069 results
IP: http://xxx.xxx.xxx.xxx:9200/_cat/indices?v
Size: 1G
Country: France
Indices: 
.monitoring-kibana-6-2019.01.08
[...]
----------------------------
IP: http://yyy.yyy.yyy.yyy:9200/_cat/indices?v
Size: 144G
Country: China
Indices: 
zhuanli
hx_person
[...]
----------------------------------CouchDB - Page 12--------------------------------
Found 5932 results
-----------------------------
IP: http://xxx.xxx.xxx:5984/_utils
Country: Austria
new_fron_db
test_db
-----------------------------
IP: http://yyy.yyy.yyy.yyy:5984/_utils
Country: United States
_replicator
_users
backup_20180917
backup_db
eio_local
tfa_pos
----------------------------------MongoDB - Page 12--------------------------------
Found 66680 results
IP: xxx.xxx.xxx.xxx
Size: 6G
Country: France
Database name: Warn
Size: 80M
Collections: 
Warn
system.indexes
Database name: xhprofprod
Size: 5G
Collections: 
results
system.indexes
-----------------------------
IP: yyy.yyy.yyy.yyy
Size: 544M
Country: Ukraine
Database name: local
Size: 32M
Collections: 
startup_log
Database name: ace_stat
Size: 256M
Collections: 
stat_minute
system.indexes
stat_hourly
stat_daily
[...]
Database name: ace
Size: 256M
Collections: 
usergroup
system.indexes
scheduletask
dpigroup
portforward
wlangroup
[...]
----------------------------------Kibana - Page 12--------------------------------
Found 10464 results
IP: http://xxx.xxx.xxx.xxx:5601/app/kibana#/discover?_g=()
Country: Germany
---
IP: http://yyy.yyy.yyy.yyy:5601/app/kibana#/discover?_g=()
Country: United States
---
IP: http://zzz.zzz.zzz.zzz:5601/app/kibana#/discover?_g=()
Country: United Kingdom 

Screenshots

LeakLooker Tool To Find Open Websites Databases With Shodan

You May Also Like

Leave a Reply

Your email address will not be published. Required fields are marked *

4 × five =