All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Does the Hurricane Labs App for Shodan support CIDR notation when populating the CSV file it references?

hazaklioglu
New Member
‎06-11-2015 10:42 AM
 
0 Karma
Reply

rdaul
New Member
‎09-29-2015 03:35 PM

I also faced the same problem. Hurricane labs app is querying Shodan and providing the results. I figured out in my case, the API is broken. Shodan REST API documentation (link below) specifies that net filter to be used for the CIDR notation. However, I know the API key works as I tested with the 4.2.2.2, but it wont work for CIDR, for ex: query=net:4.2.2.0/30 (which ideally should return the results)
https://developer.shodan.io/api

You can try this on your browser with your API key and query as per the document.
https://api.shodan.io/shodan/host/search?key={YOUR_API_KEY}&query={query}

I presume if this gets fixed then the app will work for CIDR.

0 Karma
Reply

gaylorddusautoi
New Member
‎08-19-2015 02:27 AM

I'm facing issue with CIDR.
I made some tests with 8.8.8.8, it's working properly but not with 8.8.8.0/24 notation.
Did I miss something ?

0 Karma
Reply

mcmaster
Communicator
‎06-11-2015 10:44 AM

The only CSV I can think of for the app is the one you set up under "Configure" in the app (shodan_lookup.csv), which absolutely supports CIDR notation.

0 Karma
Reply
Get Updates on the Splunk Community!

Introducing the 2024 Splunk MVPs!

We are excited to announce the 2024 cohort of the Splunk MVP program. Splunk MVPs are passionate members of ...

Splunk Custom Visualizations App End of Life

The Splunk Custom Visualizations apps End of Life for SimpleXML will reach end of support on Dec 21, 2024, ...

Introducing Splunk Enterprise 9.2

WATCH HERE! Watch this Tech Talk to learn about the latest features and enhancements shipped in the new Splunk ...