Skip to content

A list of dorks for the Netlas.io search engine, with which you can find millions of objects in the boundless IoE. Contains queries to search for IoT elements, protocols, communication tools, remote access, and more. Over time, the list will grow.

Notifications You must be signed in to change notification settings

netlas-io/netlas-dorks

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

59 Commits
 
 

Repository files navigation

Netlas Featured Queries

In this document, you will find dorks for the Netlas.io search engine. They are divided into several categories, and each dork includes a link to perform the search on Netlas. The dork list from RedTeamGuide was used as a basis and processed according to our syntax.

If you find any inaccuracies, please feel free to send pull requests or write Issues.

Note: In some cases, you will see two dorks. This is typically done to duplicate the request made using a tag. In Netlas, the use of tags is available starting with a Business subscription, so users of the Community, Community II, and Freelancer levels should pay close attention to the duplicate dorks.

Contents

General Searches

IoT, Routers and Security

  • All IoT devices[Search →]

    tag.category:"IoT"
    
  • Barracuda[Search →]

    http.headers.server:"BarracudaHTTP"
    
  • Brightsign Digital Sign[Search →]

    http.title:"BrightSign®"
    
  • Canon[Search →]

    http.headers.server:"Canon HTTP Server"
    
  • Carel PlantVisor[Search →]

    http.title:"CAREL Pl@ntVisor"
    
  • Cisco[Search →] [Alt →]

    tag.name:"Cisco"
    
    http.favicon.hash_sha256:62a8461e328d5bace3780ff738d0b58f6502592c04afa564e0a8a792583a7bfb
    
  • Cisco Small Business Switches[Search →]

    http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
    
  • Cisco XE WebUI[Search →]

    certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"
    
  • Controllers with Windows CE OS[Search →]

    http.headers.server:"Microsoft-WinCE"
    
  • DefectDojo[Search →]

    http.title:"DefectDojo"
    
  • DLink[Search →] [Alt →]

    tag.name:"dlink"
    
    http.favicon.hash_sha256:81adccffbd70a76e9662977e7b55938e7eec597ac8b58e5a564959e6d465deec
    
  • Draytek Routers[Search →]

    http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
    
  • EdgeRouter[Search →]

    http.favicon.hash_sha256:5aad1b2127b8c67d146f6bad69db98d7e3dc328da8940d49f8cdafa6699283ce
    
  • Electric vehicle charges[Search →]

    http.headers.server:"gSOAP" AND http.content_length:583
    
  • Emerson Site Supervisor[Search →]

    http.title:"Emerson Site Supervisor"
    
  • Epson HTTP[Search →]

    http.headers.server:"EPSON-HTTP"
    
  • Epson Linux[Search →]

    http.headers.server:"EPSON_Linux UpnP" http.status_code:200
    
  • Fortinet[Search →] [Alt →]

    tag.name:"fortinet"
    
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
    
  • Home Assistant[Search →]

    http.favicon.hash_sha256:892d336ba0b3ce7f94ebbcbe2fa5c3fcfdc79f25efcdc7a7e17918e85daaf9f0
    
  • HP iLO[Search →] [Alt →]

    tag.name:"hp_ilo"
    
    http.favicon.hash_sha256:0c16db2ccec266761010fa53ad69e2f6aafbf6b3134730e1fa72f19daf93ed04
    
  • HPE Aruba[Search →] [Alt →]

    tag.name:"aruba"
    
    http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753
    
  • HP Printers[Search →]

    http.headers.server:("HP HTTP" "Serial Number" "Built")
    
  • Huawei Routers[Search →] [Alt →]

    tag.name:"huawei_router"
    
    http.favicon.hash_sha256:e64086f94c7013d92ca6d7e05933f4fb90cf8966aeff1efc583a92d1827093db
    
  • Ivanti Connect Secure[Search →]

    http.body:"welcome.cgi?p=logo"
    
  • Lexmark printers[Search →]

    http.headers.server:"Lexmark"
    
  • Media servers[Search →]

    tag.category:"Media servers"
    
  • Mitsubishi Air Conditioning Control System[Search →]

    http.favicon.hash_sha256:055c1bfeac57280906a11333c72430893014329296751f398939987e11d7df5c
    
  • Netgear[Search →] [Alt →]

    tag.name:"netgear"
    
    http.favicon.hash_sha256:3bfc11a176b9c8a39870478951fc177a3bc53c9fb689cdf5f80bff6a0c4c3c6b
    
  • Nethix Wireless Controller[Search →]

    http.headers.set_cookie:"NethixSession"
    
  • Nexus[Search →]

    http.favicon.hash_sha256:9337dace49934010c4fdbb5c2c778c16f9e42bdb3da2ac476744dcc8705025c2
    
  • OpenCTI[Search →]

    http.title:"OpenCTI"
    
  • PaperCut MF/NG[Search →]

    http.meta:"PaperCut MF" OR http.meta:"PaperCut NG"
    
  • PRTG[Search →]

    (http.body:"PRTG Network Monitor") AND (http.headers.server:"prtg")
    
  • Ruckus[Search →]

    http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
    
  • Ruijie[Search →]

    http.favicon.hash_sha256:8be4899f8cbc8a9d6283d101ef5b9afa95f83bef8ba676b1e5b8cfb375d2391d
    
  • Samsung old printers[Search →]

    http.title:"syncthru web service"
    
  • Samsung Prismview[Search →]

    http.headers.server:"Prismview"
    
  • SecurePoint[Search →] [Alt →]

    tag.name:"securepoint"
    
    http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
    
  • Siemens[Search →]

    http.favicon.hash_sha256:4f81d8e8df852d2ef27c4b1d9f211a505346ae12840a83db033db329750e7fdb
    
  • SuperMicro BMC[Search →] [Search →]

    tag.name:"supermicro_ipmi"
    
    certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI
    
  • Tenda[Search →]

    http.favicon.hash_sha256:9322e4def463fff36b0e180ddcf67a38853b7b729716aa5ab7a119e3a24841bc
    
  • TPLink[Search →] [Alt →]

    tag.name:"tplink"
    
    http.favicon.hash_sha256:9e803d05d8907cca1f7730f187707c25b0fb60f9e286e2957ab1e21cffdefde2
    
  • Vigor Routers[Search →]

    certificate.issuer.common_name:"Vigor Router"
    
  • Wazuh[Search →]

    http.title:"Wazuh"
    
  • XEROX WorkCentre[Search →]

    certificate.issuer.common_name:"Xerox Generic Root"
    
  • XZERES Wind[Search →]

    http.body:"xzeres wind"
    
  • Zyxel ZyWALL[Search →] [Alt →]

    tag.name:"zyxel_zywall"
    
    http.favicon.hash_sha256:9a02f3cf948f9409c25070f2f057b69dda5d0aaf7fa8d056552e8bda8295ca1f
    

Security Applications

  • Deimos C2[Search →]

    http.title:"Deimos C2" OR certificate.subject.organization:"Acme Co" AND port:8443
    
  • EvilGinx2[Search →]

    jarm:"20d14d20d21d20d20c20d14d20d20daddf8a68a1444c74b6dbe09910a511e6"
    
  • Keycloak[Search →]

    http.favicon.hash_sha256:47dcf1f1a8f1afd68297a294a263849069a7a62b2e86550241416c2cc56c5676
    
  • NanoCore[Search →]

    certificate.subject.common_name:"unk"
    
  • Nessus Scanner Servers[Search →]

    http.headers.server:"NessusWWW"
    
  • NimPlant C2[Search →]

    http.headers.server:"NimPlant C2 Server"
    
  • NTOP Network Analyzers[Search →]

    http.title:"Welcome to ntopng" OR (http.title:"Global Traffic Statistics" AND http.headers.server:"ntop/*")
    
  • Merlin C2[Search →]

    jarm:"29d21b20d29d29d21c41d21b21b41d494e0df9532e75299f15ba73156cee38"
    

Web cameras

  • All Web cameras[Search →] [Alt →]

    tag.category:"Web cameras"
    
    http.title:"camera"
    
  • Android IP Webcam Server[Search →]

    http.headers.server:"IP Webcam Server"
    
  • Avigilion webcams[Search →]

    http.title:"Avigilon"
    
  • Blue Iris[Search →]

    http.favicon.hash_sha256:6e32c76e9c522baacd1362fdfacc8e47eda0f62937bb226ae38a5b8d2157f7cd
    
  • GeoVision webcams[Search →]

    http.headers.server:"GeoHttpServer"
    
  • Hipcam[Search →]

    http.headers.server:"Hipcam"
    
  • i-Catcher[Search →]

    http.headers.server:"i-Catcher Console"
    
  • IPCam Client[Search →]

    http.title:”ipcam″
    
  • Linksys[Search →]

    http.title:"tm01"
    
  • SQ-WEBCAM[Search →]

    http.headers.server:"SQ-WEBCAM"
    
  • UI3 for Blue Iris[Search →]

    http.title:"ui3"
    
  • VB-M600 cameras[Search →]

    http.title:”VB-M600″
    
  • Vivotek IP cameras[Search →]

    http.headers.server:"VVTK-HTTP-Server"
    
  • Webcam 7[Search →]

    http.headers.server:"webcam 7"
    
  • YawCam[Search →]

    http.headers.server:"yawcam" http.unknown_headers.key:"mime_type" AND http.unknown_headers.value:"text/html"
    

Communication

  • Adobe Connect[Search →]

    http.favicon.hash_sha256:65576e8c7a144d8f4530ee1f87f6157d3fc680a029409d874f529d05e60b9fa1
    
  • Exim[Search →]

    smtp.banner:"Exim"
    
  • Gitter[Search →]

    http.title:"Gitter"
    
  • Mattermost[Search →]

    http.title:"mattermost"
    
  • Microsoft Exchange[Search →]

    tag.name:"microsoft_exchange"
    
  • Microsoft Teams[Search →]

    http.favicon.hash_sha256:397eddf44e1bf7e557b0b4f5173da95d8fd832b6f2f10d6e41c17dc539d5a822
    
  • RabbitMQ[Search →] [Alt →]

    tag.name:"rabbitmq"
    
    http.favicon.hash_sha256:8c08be4e11537f793f06a9e6dd91aba52d43032b66d11f81fa5df7e452e52aa1
    
  • Rocket.Chat[Search →]

    http.title:"Rocket.Chat"
    
  • Roundcube[Search →] [Alt →]

    tag.name:"roundcube"
    
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
    
  • Skype for Business[Search →] [Alt →]

    tag.name:"skype" AND http.title:"Skype for Business"
    
    http.favicon.hash_sha256:7d188ade5d6bc30a4d55e83a08f4e4bafe8f71ae5af2023fc87ed9767b7dda12 AND http.title:"Skype for Business"
    
  • Zimbra[Search →]

    tag.name:"zimbra"
    

Remote Access

VoIP

Storages and Databases

  • Apache Tomcat[Search →] [Alt →]

    tag.name:"apache_tomcat"
    
    http.favicon.hash_sha256:64a3170a912786e9eece7e347b58f36471cb9d0bc790697b216c61050e6b1f08
    
  • Ceph[Search →]

    http.favicon.hash_sha256:3db088b4089dee70dfd305a4e200dc72c9ad7d78ffd28ffe36608eaf46591bcd
    
  • CouchDB[Search →] [Search]

    tag.name:"couchdb"
    
    http.headers.server:"CouchDB"
    
  • InfluxDB[Search →]

    http.title:”InfluxDB Admin”
    
  • Kubernetes[Search →]

    http.favicon.hash_sha256:a8576f89337c561e1128e490c6f9e074fc4069057acb8d164b62d4cb205248bc
    
  • Memcached[Search →]

    prot7:memcached
    
  • MicrosoftSQL[Search →]

    prot7:mssql
    
  • Minio[Search →]

    http.title:"Minio"
    
  • Nextcloud[Search →]

    http.favicon.hash_sha256:bea7d85401905c569359239339770d962854ccda24f134a76f492ab58ecde9f5
    
  • OpenShift[Search →]

    http.favicon.hash_sha256:28409a985f1f3322a58dc5d1af0e3f09efa5b7d193341b55b11a72711a55a3dc
    
  • OpenStack[Search →]

    http.favicon.hash_sha256:27b7287de853e2ea7d05cf5636d6b7c70b9fb65b2f4ce9e9fded1bb27921d839
    
  • phpmyadmin[Search →] [Alt →]

    tag.name:"phpmyadmin"
    
    http.favicon.hash_sha256:e2905705920b2636309d785c2df3f155d6379b0aa9a44dc7831524505fa2defd
    
  • PostgreSQL[Search →]

    prot7:postgres
    
  • Redis[Search →]

    redis:*
    
  • Redis wihout authentication[Search →]

    redis.ping_response:"PONG"
    
  • Vault[Search →]

    http.title:"Vault"
    

Web Services

  • Adobe Commerce (Magento)[Search →]

    tag.name:"magento" AND http.headers.server:"Apache"
    
  • Apache[Search →]

    http.headers.server:"apache"
    
  • IIS[Search →] [Alt →]

    tag.name:"iis"
    
    http.headers.server:"Microsoft-IIS"
    
  • Nginx[Search →]

    http.headers.server:"nginx"
    
  • SolarWinds[Search →] [Alt →]

    tag.name:"solarwinds_ftp"
    
    http.favicon.hash_sha256:2dbf88db1be0f1305a415b0455fe258627f56aa4b6b334130707a3b1adc6dba7
    
  • VMware vCenter[Search →]

    http.title:"ID_VC_Welcome" OR certificate.issuer.domain_component:"vsphere"
    
  • WordPress[Search →] [Alt →]

    tag.name:"wordpress"
    
    http.favicon.path:"/wp-content/"
    
  • WordPress (misconfigured)[Search →]

    http.body:"The wp-config.php creation script uses this file"
    
  • Drupal[Search →]

    tag.name:"drupal"
    
  • Joomla[Search →]

    tag.name:"joomla"
    
  • Confluence[Search →] [Alt →]

    tag.name:"atlassian_confluence"
    
    http.favicon.hash_sha256:35998ea6b404f48cdaea65529793d93c19135974f6324bf1aabebce850e469bb
    
  • DokuWiki[Search →] [Alt →]

    tag.name:"dokuwiki"
    
    http.favicon.hash_sha256:3ca2c21f1821782f2b2a29b814b7aa240862014a35fdee54d23a72575fc16ec1
    

Developing and Monitoring

  • Apache Solr[Search →]

    tag.name:"apache_solr"
    
  • Apache Superset[Search →]

    (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
    
  • Bamboo[Search →] [Alt →]

    tag.name:"atlassian_bamboo"
    
    http.favicon.hash_sha256:9fac9dadbd379126f3f81ba14e4e8d911362ec766e09226504121ee2758d0f64
    
  • Bugzilla[Search →] [Alt →]

    tag.name:"bugzilla"
    
    http.favicon.hash_sha256:92307d57240ad6473bf3aa757f185ee549469bb51363be2ea824fb03c7299bf2
    
  • cAdvisor[Search →]

    http.title:"cAdvisor - /"
    
  • Citrix Gateway[Search →]

    http.title:"citrix gateway"
    
  • GitLab[Search →]

    http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef
    
  • Grafana[Search →]

    http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
    
  • Graylog[Search →]

    http.favicon.hash_sha256:6d1c0130478d8645c82d039b270e7ca20e912b87489163bd5d9b1c1af95db7f8
    
  • HashiCorp Consul Dashboards[Search →]

    http.title:"Consul by HashiCorp"
    
  • Jenkins[Search →] [Alt →]

    tag.name:"jenkins"
    
    http.favicon.hash_sha256:4fec1ee82f0dc4a8e4e9bb26954cf54cf9bf1e6a009516cb6c49ff16924e8caa
    
  • Jira[Search →] [Alt →]

    tag.name:"atlassian_jira"
    
    http.favicon.hash_sha256:7bd6886a738297cd7bf2113d2cc3d898b9cad4079f336eb03fcd737549aea8a6 OR http.favicon.hash_sha256:84f150bf0c8858f1eb6c1e7ccc86f3208cc5a59b496059892c3aff5e22992d27 OR http.favicon.hash_sha256:181076e8983bc2c9fdff6d0548000cd78d1379e410f55648f2c40d6d893fa9fa
    
  • Kafka[Search →]

    http.title:”kafka” OR http.title:”Apache Kafka” OR http.body:”kafka” OR http.body:”Apache Kafka”
    
  • Kibana[Search →]

    http.favicon.hash_sha256:30db4185530d8617e9f08858787a24b219ac5102321b48515baf5da7ac43b590
    
  • Laravel[Search →]

    tag.name:"laravel"
    
  • ManageEngine ServiceDesk[Search →]

    tag.name:"manageengine_servicedesk"
    
  • Nagios[Search →]

    (http.favicon.hash_sha256:8b19d77c4a4ee2d846b1918a8c75c66fa1c3285a12b1d28950e1e6b817b237d4) OR (http.favicon.hash_sha256:57ff1068caf7d83d9c252ae26af5f833290b917945051a90cfc4b42e4e72ac13)
    
  • NetData Dashboards[Search →]

    http.headers.server:"Netdata Embedded HTTP*"
    
  • Node.js Express[Search →]

    http.headers.x_powered_by:"Express" OR http.headres.set_cookie:"connect.sid"
    
  • PandoraFMS[Search →]

    http.favicon.hash_sha256:62d73ef206143e68ac686f08fc770db66aa84b21f320f4953af8bdbb6b9da50e
    
  • Portainer[Search →]

    http.favicon.hash_sha256:8170dab248310e6d887a088e75d72116e74ce99e91782e5dc0e3ff2cc4b63c3d
    
  • Prometheus[Search →]

    http.favicon.hash_sha256:d72fc7b0bd1a4c1c4a016dfa4bfd594b2fb65a409575ec8f857864d4bdc658be
    
  • Rancher Dashboards[Search →]

    http.title:"Loading…"
    
  • Redmine[Search →] [Alt →]

    tag.name:"redmine"
    
    http.favicon.hash_sha256:5210ac65f141394a8540d408a9b56ed64c21c6b212cb28144c874f5715be9ed1
    
  • Sentry[Search →]

    tag.name:"sentry"
    
  • SonarQube[Search →] [Alt →]

    tag.name:"sonarqubes"
    
    http.favicon.hash_sha256:f04d7cdd55fe15c50e78457f366afa723587cf267c28b81cbcfe44248934a82b
    
  • Spring Framework[Search →]

    tag.name:"spring"
    
  • Swagger[Search →]

    http.favicon.hash_sha256:3ed612f41e050ca5e7000cad6f1cbe7e7da39f65fca99c02e99e6591056e5837
    
  • Symfony[Search →]

    tag.name:"symfony"
    
  • Terraform[Search →]

    http.title:"Terraform Enterprise"
    
  • Traefik Dashboards[Search →]

    http.title:"Traefik"
    
  • Weave Scope[Search →]

    http.title:"Weave Scope"
    
  • Zabbix[Search →] [Alt →]

    tag.name:"zabbix"
    
    http.favicon.hash_sha256:22b06a141c425c92951056805f46691c4cd8e7547ed90b8836a282950d4b4be2
    
  • Zendesk[Search →]

    http.unknown_headers.key:"x_zendesk_processed_host_header" OR http.unknown_headers.key:"x_zendesk_origin_server"
    
  • Zend Framework[Search →]

    http.headers.server:"ZendServer" OR http.headers.set_cookie:"ZDEDebuggerPresent"
    

Other

  • GaugeTech Electricity Meters[Search →]

    http.headers.server:"EIG Embedded Web Server"
    
  • GeoServer[Search →]

    http.title:"geoserver"
    
  • Hadoop[Search →]

    http.title:"Hadoop Administration"
    
  • Mein Automowers[Search →]

    http.favicon.hash_sha256:2a4b14d1620a2461ac510266249624df6152f266aea2946feb9b0ec8ac8a960d
    
  • Moodle[Search →]

    http.headers.set_cookie:"MoodleSession"
    
  • Navidrome Music Server[Search →]

    http.description:"Navidrome Music Server"
    
  • Nordex Control[Search →]

    http.favicon.hash_sha256:830a18175634c591efda599c39e280d0a1e98213ffe96e9d637ebff817cbc326
    
  • shell2http[Search →]

    http.title:"shell2http"
    
  • Splunkd[Search →]

    tag.name:"splunkd"
    
  • Unconfigured AdGuard[Search →]

    http.title:"Setup AdGuard Home"
    
  • VictoriaMetrics Agent[Search →]

    http.body:"<h2>vmagent</h2>"
    
  • VSphere[Search →]

    http.favicon.hash_sha256:0e3b83492fe3d83d72a60b6fb194adb9afd04466268241f5ccf700278737f74d
    

2024 Interesting CVEs

  • CVE-2024-1708, -1709 (ConnectWise ScreenConnect)  [Search →]
    http.headers.server:"ScreenConnect"
    
  • CVE-2024-20356 (Costp IMC)  [Search →]
    http.title:"Cisco Integrated Management Controller"
    
  • CVE-2024-20767 (Adobe ColdFusion)  [Search →]
    tag.name:"adobe_coldfusion"
    
  • CVE-2024-20931 (Oracle WebLogic)  [Search →]
    protocol:t3 OR protocol:t3s
    
  • CVE-2024-21006 (Oracle WebLogic)  [Search →]
    port:7001 AND protocol:t3
    
  • CVE-2024-21410 (MS Exchange)  [Search →]
    tag.name:"microsoft_exchange"
    
  • CVE-2024-21690 (Junos OS)  [Search →]
    http.title:"Juniper"
    
  • CVE-2024-27198, -27199 (JetBrains TeamCity)  [Search →]
    http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.11.3" NOT http.body:"2023.11.4"
    
  • CVE-2024-21677 (Atlassian Confluence)  [Search →]
    http.meta:"confluence-base-url"
    
  • CVE-21722, -21723, -21724, -21725, -21726 (Joomla)  [Search →]
    tag.name:"joomla"
    
  • CVE-2024-22024 (Ivanti Connect Secure)  [Search →]
    http.body:"welcome.cgi?p=logo"
    
  • CVE-2024-23334 (Python aiohttp)  [Search →]
    http.headers.server:"aiohttp"
    
  • CVE-2024-23897 (Jenkins)  [Search →]
    http.headers.x_jenkins:[0 TO 2.441]
    
  • CVE-2024-24919 (Check Point)  [Search →] [Search]
    http.favicon.hash_sha256:9a3a865d8911afcd95389ec701e5e8abcad69d928efd5b52b5d0bcc70a60d11a
    
    tag.name:"checkpoint"
    
  • CVE-2024-26026, -21793 (F5 BigIP)  [Search →]
    http.headers.server:"BigIP"
    
  • CVE-2024-26304, -26305, -33511, -33512 (ArubaOS)  [Search →]
    http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753
    
  • CVE-2024-2879 (LayerSlider)  [Search →]
    http.body:"plugins/layerslider"
    
  • CVE-2024-29895, -25641, -31445, -31459 (Cacti)  [Search →]
    http.title:"Login to Cacti" OR http.headers.set_cookie:"Cacti"
    
  • CVE-2024-31136 (JetBrains TeamCity)  [Search →]
    tag.name:"teamcity"
    
  • CVE-2024-3273 (D-Link NAS)  [Search →]
    http.body:"Text:In order to access the ShareCenter"
    
  • CVE-2024-3400 (Palo Alto Networks PAN-OS)  [Search →]
    tag.name:"palo_alto"
    
  • CVE-2024-43770 (Roundcube)  [Search →]
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
    
  • CVE-2024-4835 (GitLab)  [Search →]
    http.meta:"Gitlab"
    
  • CVE-2024-49606 (Tinyproxy)  [Search →]
    http.headers.server:"tinyproxy/1.11.1" OR http.headers.server:"tinyproxy/1.10.0"
    

2023 Interesting CVEs

  • CVE-2023-2030, -5356, -7028 (GitLab Multiple vulnerability)  [Search →]
    http.meta:"Gitlab"
    
  • CVE-2023-20159, -20160, -20161, -20189 (Cisco Small Business Switches)  [Search →]
    http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
    
  • CVE-2023-20198 (Cisco XE WebUI)  [Search →]
    certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"
    
  • CVE-2023-21887, -46805 (Ivanti Connect Secure)  [Search →]
    http.body:"welcome.cgi?p=logo"
    
  • CVE-2023-22515 (Attlassian Confluence Data and Server)  [Search →] [Alt →]
    tag.name:"atlassian_confluence"
    
    http.meta:"confluence-base-url"
    
  • CVE-2023-22527 (Atlassian Confluence)  [Search →]
    http.meta:"confluence-base-url"
    
  • CVE-2023-22620 (SecurePoiunt)  [Search →]
    http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
    
  • CVE-2023-24411 (WordPress plugin)  [Search →]
    (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/bne-testimonials")
    
  • CVE-2023-25135 (vBulletin)  [Search →]
    tag.vbulletin.version:<=5.6.9
    
  • CVE-2023-25157 (GeoServer)  [Search →]
    http.title:"geoserver"
    
  • CVE-2023-25690 (Apache HTTP Server)  [Search →]
    tag.apache.version:>=2.4.0 AND tag.apache.version:<=2.4.55
    
  • CVE-2023-25717 (Ruckus Wireless Admin)  [Search →]
    http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
    
  • CVE-2023-26359 (Adobe ColdFusion)  [Searc →]
    tag.name:"adobe_coldfusion"
    
  • CVE-2023-2732 (Barracuda Email Security Gateway)  [Search →]
    http.headers.server:"BarracudaHTTP"
    
  • CVE-2023-27350 (PaperCut MF/NG)  [Search →]
    (http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)
    
  • CVE-2023-27524 (Apache Superset)  [Search →]
    (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
    
  • CVE-2023-27997 (Fortigate VPN)  [Search →] [Alt →]
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
    
    tag.name:"fortigate_vpn"
    
  • CVE-2023-28375 (Osprey Pumps)  [Search →]
    http.title:(Osprey Controller)
    
  • CVE-2023-2868 (Wordpress, MStore API)  [Search →]
    (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/mstore")
    
  • CVE-2023-29183 (Fortinet/FortiProxy)  [Search →]
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
    
  • CVE-2023-29357 (Microsoft SharePoint Server)  [Search →]
    http.headers.microsoftsharepointteamservices:*
    
  • CVE-2023-33778 (Vigor Routers)  [Search →]
    http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
    
  • CVE-2023-3128 (Grafana)  [Search →]
    http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
    
  • CVE-2023-34192 (Zimbra Collaboration Suite)  [Search →]
    http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
    
  • CVE-2023-3460 (WordPress plugin, UltimateMember)  [Search →]
    http.body:"wp-content/plugins/ultimate-member"
    
  • CVE-2023-35078, CVE-2023-35082 (Ivanti EPMM)  [Search →]
    http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")
    
  • CVE-2023-3519,-3466,-3467 (Citrix Gateway/ADC)  [Search →]
    http.title:"Citrix ADC" OR http.title:"Citrix Gateway"
    
  • CVE-2023-36434 (Windows IIS Server)  [Search →]
    http.headers.server:"Microsoft-IIS"
    
  • CVE-2023-36630 (CloudPanel)  [Search →]
    http.title:"cloudpanel" NOT http.body:"2.3.1"
    
  • CVE-2023-36764 (Microsoft SharePoint)  [Search →]
    http.headers.microsoftsharepointteamservices:*
    
  • CVE-2023-38035 (Ivanti Sentry)  [Search →]
    http.body:"images/sentry-mi-logo" AND port:8443
    
  • CVE-2023-38204 (Adobe ColdFusion)  [Search →]
    tag.name:"adobe_coldfusion"
    
  • CVE-2023-39143 (PaperCut MF/NG)  [Search →]
    (http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)
    
  • CVE-2023-39336 (Ivanti EPM)  [Search →]
    http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")
    
  • CVE-2023-39361,-31132,-39359 and other (Cacti)  [Search →]
    http.title:"Login to Cacti"
    
  • CVE-2023-40176,-40177,-40572,-40573 (XWiki)  [Search →]
    http.title:"XWiki" OR http.favicon.hash_sha256:6f0fdef9a229150fbc7183a1bbb136d7b44b6df7c34369c14bebb6adae8aaf20
    
  • CVE-2023-40289 and other (SuperMicro BMC)  [Search →] [Alt →]
    tag.name:"supermicro_ipmi"
    
    certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI
    
  • CVE-2023-42115,-116,-117 (Exim)  [Search →]
    smtp.banner:"exim" AND port:25
    
  • CVE-2023-42793 (JetBrains TeamCity)  [Search →]
    http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.05.4"
    
  • CVE-2023-43770[Search →]
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
    
  • CVE-2023-4596 (WordPress, Forminator Plugin)  [Search →]
    http.body:"/wp-content/plugins/forminator"
    
  • CVE-2023-46849,-46850 (OpenVPN Access Server)  [Search →]
    http.headers.server:"OpenVPN-AS"
    

About

A list of dorks for the Netlas.io search engine, with which you can find millions of objects in the boundless IoE. Contains queries to search for IoT elements, protocols, communication tools, remote access, and more. Over time, the list will grow.

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published