Block Shodan scanners - Shodban

Hi, in this post i share with you a small script (Shodban) that will allow you to block Shodan scanners on your personal Linux server.

If you have your public IP address exposed to the world, surely Shodan has already scanned your server for open ports and versions.

As you can see in the following screenshot this is the information associated to this website in the Shodan search engine.

The script is mainly based on collecting the known IP addresses of Shodan that can be found in this IPFire web site: https://wiki.ipfire.org/configuration/firewall/blockshodan

Once the IP addresses have been collected, a block is applied to each of them so that the server blocks incoming requests from Shodan.

The Shodban script is as follows:

Shell

#!/bin/bash

# Shodban : script for block Shodan scanners
# By : Nevuer
# Global variables
IPFIRE="https://wiki.ipfire.org/configuration/firewall/blockshodan"
OLDLIST="oldlist.txt"
NEWLIST="newlist.txt"
NEWIPS="newips.txt"

getShodanIps() {

	/usr/bin/curl -s -X GET $IPFIRE | 
  grep -E '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | 
  sed 's/<[^>]\+>//g' > $1	
}

banShodanIps() {
	
    
	while IFS= read -r ip
	do
		echo "Ban: $ip"
		/usr/sbin/iptables -A INPUT -s $ip  -j DROP
	done < $1
}

if [ -f $OLDLIST ]; 
 then
	echo "Checking new IPs"
	getShodanIps $NEWLIST
	diff $OLDLIST $NEWLIST | grep "<" | sed 's/^<//g' > $NEWIPS
	if [ $? -eq 1 ];
		then
			banShodanIps $NEWIPS
			cp $NEWLIST $OLDLIST
			rm $NEWLIPS			
		fi
 else
	echo "Getting Shodan IP List"
	getShodanIps $OLDLIST
	banShodanIps $OLDLIST 
fi

Once executed you will see after a few hours that the Shodan search engine will not find information about your server, displaying the message: No results found.

I hope it is as useful to you as it is to me
Greetings.

Block Shodan scanners – Shodban

Leave a Reply Cancel reply

SHARE IT IF YOU LIKED IT Share this content

You Might Also Like

AutoStart OpenVPN

Fix ModuleNotFoundError Wsgi + Apache

Leave a Reply Cancel reply

Share this content