/LeakLooker

Find open databases with Shodan

Primary LanguagePython

LeakLooker

Find open databases with Shodan

New version supports:

  • Elasticsearch
  • CouchDB
  • MongoDB
  • SMB
  • Gitlab
  • Rsync
  • Jenkins
  • Sonarqube
  • Kibana

and custom query.

Background:

https://medium.com/@woj_ciech/leaklooker-find-open-databases-in-a-second-9da4249c8472

V2 - https://medium.com/@woj_ciech/leaklooker-v2-find-more-open-servers-and-source-code-leaks-25e671700e41

Requirements:

Python 3 Shodan paid plan, except Kibana search

Put your Shodan API key ina line 82

pip3 install shodan
pip3 install colorama
pip3 install hurry.filesize
pip3 install beautifulsoup4

pip install -r requirements.txt

Usage

(venv) root@kali:~/PycharmProjects/LeakLooker# python leaklooker.py -h

         ,
         )\
        /  \
       '  # '
       ',  ,'
         `'

         ,
         )\
        /  \
       '  ~ '
       ',  ,'
         `'
LeakLooker - Find open databases
https://medium.com/@woj_ciech https://github.com/woj-ciech/
Example: python leaklooker.py --mongodb --couchdb --kibana --elastic --first 21 --last 37
usage: leaklooker.py [-h] [--elastic] [--couchdb] [--mongodb] [--samba]
                     [--gitlab] [--rsync] [--jenkins] [--sonarqube]
                     [--query QUERY] [--kibana] [--first FIRST] [--last LAST]

optional arguments:
  -h, --help     show this help message and exit
  --elastic      Elasti search (default: False)
  --couchdb      CouchDB (default: False)
  --mongodb      MongoDB (default: False)
  --samba        Samba (default: False)
  --gitlab       Gitlab (default: False)
  --rsync        Rsync (default: False)
  --jenkins      Jenkins (default: False)
  --sonarqube    SonarQube (default: False)
  --query QUERY  Additional query or filter for Shodan (default: )
  --kibana       Kibana (default: False)

Pages:
  --first FIRST  First page (default: None)
  --last LAST    Last page (default: None)

You need to specify first and last page

Example

root@kali:~/# python leaklooker.py --mongodb --couchdb --kibana --elastic --first 12 --last 14
[...]
----------------------------------Elastic - Page 12--------------------------------
Found 25069 results
IP: http://xxx.xxx.xxx.xxx:9200/_cat/indices?v
Size: 1G
Country: France
Indices: 
.monitoring-kibana-6-2019.01.08
[...]
----------------------------
IP: http://yyy.yyy.yyy.yyy:9200/_cat/indices?v
Size: 144G
Country: China
Indices: 
zhuanli
hx_person
[...]
----------------------------------CouchDB - Page 12--------------------------------
Found 5932 results
-----------------------------
IP: http://xxx.xxx.xxx:5984/_utils
Country: Austria
new_fron_db
test_db
-----------------------------
IP: http://yyy.yyy.yyy.yyy:5984/_utils
Country: United States
_replicator
_users
backup_20180917
backup_db
eio_local
tfa_pos
----------------------------------MongoDB - Page 12--------------------------------
Found 66680 results
IP: xxx.xxx.xxx.xxx
Size: 6G
Country: France
Database name: Warn
Size: 80M
Collections: 
Warn
system.indexes
Database name: xhprofprod
Size: 5G
Collections: 
results
system.indexes
-----------------------------
IP: yyy.yyy.yyy.yyy
Size: 544M
Country: Ukraine
Database name: local
Size: 32M
Collections: 
startup_log
Database name: ace_stat
Size: 256M
Collections: 
stat_minute
system.indexes
stat_hourly
stat_daily
[...]
Database name: ace
Size: 256M
Collections: 
usergroup
system.indexes
scheduletask
dpigroup
portforward
wlangroup
[...]
----------------------------------Kibana - Page 12--------------------------------
Found 10464 results
IP: http://xxx.xxx.xxx.xxx:5601/app/kibana#/discover?_g=()
Country: Germany
---
IP: http://yyy.yyy.yyy.yyy:5601/app/kibana#/discover?_g=()
Country: United States
---
IP: http://zzz.zzz.zzz.zzz:5601/app/kibana#/discover?_g=()
Country: United Kingdom

Screenshots

Additional

Tool has been made for educational purposes only. I'm not responsible for any damage caused. Don't be evil.