You are a network administrator at a local organization and you have been asked to map the organization’s external facing assets. You have been provided with access to a network scanning tool, shodan.io, and you have been asked to use this tool to passively map the organization’s external facing assets.
Tools needed: shodan.io
Step 1: Make sure you have an account on shodan.io. If you do not have an account, you can create one at the following link: https://www.shodan.io/
Step 2: Open a web browser and go to the shodan.io website (https://www.shodan.io/).
Step 3: Log in to your shodan.io account.
Step 4: In the search bar, enter the following query:
org:[organization name]
Replace “[organization name]” with the name of the organization that you want to map. For example, if the organization’s name is “Example Inc.”, you would enter the following query:
org:Example Inc.
Step 5: Press the “Enter” key or click the “Search” button.
Step 6: Wait for the search to complete. Shodan.io will display a list of all the external facing assets it has found for the organization.
Step 7: Review the list of external facing assets and identify any assets that may be of concern or that you want to further investigate.
Step 8: Once you have identified the external facing assets for the organization, you can use this information to secure the organization’s network and ensure that it is properly configured.
