Shodan InternetDB Recon
Last updated:
Resolves the current site's IP address via Cloudflare DNS-over-HTTPS (no auth), then queries Shodan's free InternetDB API for open ports, known CVEs, associated hostnames, and service tags. Instant infrastructure reconnaissance without a Shodan subscription ($59-299/mo).
Drag to your bookmarks bar:
🛰️ Shodan ReconRuns on any website — all processing in your browser.
Install the bookmarklet, then use it on any website
Shodan InternetDB Recon
The Shodan InternetDB is a free API that provides a quick summary of any IP address: open ports, known vulnerabilities, associated hostnames, and service tags. Combined with DNS-over-HTTPS resolution, this tool provides instant infrastructure intelligence without any API keys or subscriptions.
What It Reveals
Open ports reveal running services (databases, remote access, web servers). CVEs indicate unpatched vulnerabilities. Hostnames show other sites sharing the same IP. Tags identify the type of infrastructure (cloud provider, CDN, ISP).
- InternetDB
- Shodan's free API that returns a summary of port, vulnerability, and hostname data for any IP address. No authentication required.
🛰️ Shodan InternetDB Recon — FAQ
Is this the same as a full Shodan scan?
InternetDB provides a summary view. Full Shodan subscriptions ($59-299/mo) offer historical data, detailed service banners, and search across all indexed IPs.
How fresh is the data?
Shodan continuously scans the internet. InternetDB data is typically days to weeks old.
Why are some ports marked dangerous?
Ports like 3306 (MySQL), 6379 (Redis), and 3389 (RDP) should never be exposed to the internet. Their presence indicates serious misconfiguration.
Does this scan the target?
No — it queries Shodan's existing database. No packets are sent to the target server beyond the normal page visit.
Can it detect cloud providers?
Shodan tags often include cloud provider names (aws, azure, gcp, cloudflare), which appear in the Tags section.