Zoomeye - Find open servers, webcams, porn sites vulnerabilities

The Internet is full of new features. Nowadays you can see new websites, and new features to enhance the user experience of the internet search. There are many search engines like – Google which is commonly used to search any query over the internet. There are many other search engines like – Shodan which is used to see open webcams, open databases, open IOT devices, and many other devices which are connected over the internet, mention ethical hacking experts.

For searching any open devices, you have normally heard of Shodan. Well, that’s not enough. Ethical hacking research at the International Institute of Cyber Security tells you about another search engine just like Shodan.

ZOOMEYE INTRO:-

Zoomeye is another search engine that is used mostly to see open devices that are vulnerable and is most often used by pentesters to test or exploit these vulnerabilities over the internet, as per ethical hacking courses. Zoomeye lets users find specific connected network devices. Zoomeye is a Chinese-based search engine. Zoomeye uses Xmap and Wmap to search for the network devices connected over the internet. These two engines are used in 24/7 detection. Zoomeye works just like any other search engine works, you have to simply search for the query over the internet. 

Now we will show you how the Zoomeye can be used to search for any query over the internet.

CREATING AN ACCOUNT:-

• Go to https://www.zoomeye.org/

• To use the search engine you must have an account in Telnet404: https://sso.telnet404.com/accounts/register/

• After registering in the above account login to: https://sso.telnet404.com/cas/login/?next=/

Now go back to zoomeye.org and start searching the network components or anything you want to search. 

USING PRE-DEFINED QUERIES:-

• After opening the zoomeye.org, click on the topics tab where you can see some of the most common open network devices. These devices' information can be used in other hacking activities.

• The above webpage opens the network devices which are being continuously pinged by zoomeye.

GETTING BASIC INFORMATION FOR THE TARGET:- 

• Getting basic information about the target then can be used to exploit the target easily. Zoomeye does offer many features like choosing country,
• Selecting the desired ports and the services that can be used in other hacking activities.
• Zoomeye does offer some of its dorks which can be used in searching results using zoomeye.
• Zoomeye does offer some of the different features from shodan.io. Here we can select the countries in which you want to do the research. 
• Zommeye offers offers where you can select the year, countries, web application servers, and many other features.

FUN WITH ZOOMEYE:-

• Type hackthissite.org to see what zoomeye shows as shown below. This is the most popular site used to test vulnerabilities. 
• Type site:hackthissite.org in the zoomeye search box.

• After searching the above query hackthissite.org, zoomeye has shown results that show the search engine capability of zoomeye.
• Click on the first search result and a new page will open which shows the complete details of the target website.

===========================SNIP============================

• In the above screenshot, zoomeye has shown hackthissite.org complete details. Open ports and other IP addresses which are mostly used for testing purposes.
• The links provided marked in black squares show the listed vulnerabilities.

• The above are the vulnerabilities which can be used in other hacking activities. 

FINDING WEBCAMS:-

• Type webcams or you can type any query like /cgi-bin/guestimage.html (For more details, please refer to the SEARCHING LIVE CAMS section in FIND WEBCAMS, DATABASES, BOATS IN THE SEA USING SHODAN ). Zoomeye shows the open list of the webcam as shown below.

• Click on the IP listed as shown above.

• The above IP in the screenshot can be used to open the webcam using the listed ports.
• Now we will open IP with port.

• The above screenshot is from the live webcam. The above open IP of the webcam can be used in other hacking activities.
• Now open another webcam with different ports.

TRYING SOME DIFFERENT WEBCAM:-

• The above screenshot can be used in the initial phase of information gathering as it shows open ports.

• The above screenshot shows an open webcam which can be used in hacking webcams and taking control.

FINDING BOATS CURRENT LOCATION:-

Boats/ships use VSAT (Very-Small-Aperture Terminal) which uses satellites to communicate with the outer world. VSAT uses IPv4 for the communication. As you are aware of zommeye, which pings all the IP addresses on the internet. So in this zoomeye list the IPs that are associated with the VSAT system on the boat, and ship.

• Type VSAT in the zoomeye search engine as shown below.

• Click on the listed links where you can find the exact location of the boats.
• Click on the link as shown above.

• As shown above, we can use the above-listed longitude and latitude and search it on the Google search engine.
• Type 24.8056, -65.3417 in the Google search engine to search for the exact location of the boat.

The below listed is only for educational purposes to tell the working of the zoomeye.

FINDING PORN SITES VULNERABILITIES:-

• Some websites which provide adult content can also be used in hacking activities. These websites' data can be used in spreading viruses over the internet, according to ethical hacking courses.
• Type porn in the query to check the vulnerabilities of the websites.

• Click on the above link to open the selected IP address.

=========================SNIP============================

• The above screenshot is from zoomeye which shows open ports and the IP address and HTTP headers of the website.
• Now open links marked in black which show no. of vulnerabilities that can be used for other hacking activities.

• The above-listed vulnerabilities can be used on the website.

FINDING THE METERPRETERS:-

• Type meterpreter in the search box to search for the running meterpreter shells.

• The above is the list of the meterpreters that can be used in searching for information regarding them.

• Here we have used the above meterpreter to check if it is working.
• For checking the meterpreter open the command prompt in Windows and type telnet 207.180.246.43 1214 and press enter.

• In the above screenshot, a meterpreter code will be printed on the command prompt window. The code can be matched with the code on https://github.com/waynearmorize/drivesploit/blob/master/data/meterpreter/meterpreter.php. As you can see the zoomeye shows the running meterpreter.

FINDING INDUSTRIAL CONTROL DEVICES:-

• There are many devices in industrial control systems but Simatic S7-300 is the most common device that is found on the internet. 
• Simatic S7-300 is the most used device to expand an installation space in a system. It works as a central controller in production lines. They work as central processing units in a system.
• That's why many search engines like zoomeye or Shodan ping on these devices.
• For searching any ICS device type 102:simatic s7. Here 102 is the port number. or you can type simatic s7-300 to see all the devices.

• After searching with the above query, zoomeye shows the industrial control devices.

• The ICS device above shows that open ports can be used in the initial phase of information gathering, say ethical hacking professionals.