Based on our record, Shodan seems to be a lot more popular than Pulsedive. While we know about 92 links to Shodan, we've tracked only 3 mentions of Pulsedive. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
A few free/open source aggregator/dashboarding tools exist, but each seems to have their own niche. I guess not surprising since so many different teams (especially in the private sector) can have such varied priorities. ORKL is new and focuses on finished intel/TTPs/malware analysis, Pulsedive is especially good for IOCs, I've heard positive things about OpenCTI for a mix of use cases but my impression is... Source: over 1 year ago
Https://pulsedive.com/ - Search for devices connected to the internet. Source: over 1 year ago
Pulsedive might be a good addition to the list, you can start using it for free and don't need an account for most stuff: https://pulsedive.com. Source: about 2 years ago
Transform OSINT sources such as shodan, bgpview & urlscan into templates which you can use to query & store any and each of the API endpoints they provide. Source: 10 months ago
I'm a little surprised you're asking this but as you don't know - if you set the rulebase correctly, you won't get hammered by "public". A lot of people (of course not people here) don't do that which is why shodan.io is full of servers with SSH exposed to the world. Source: 10 months ago
Eh, request a full demo before signing anything. If they make you buy before you can try, move on. Just be advised that data they collect from your site may be used in a database that puts a target on your back. Similar to how shodan.io works. I would probe them on how they handle customer data and if data is shared, partitioned, or isolated to ensure safety from a platform leak. They want to be a security... Source: 10 months ago
My network is being hit by China and Russia many times per hour. Make sure your firewall is up-to-date and not have any services available on the Internet (WAN). Look at shodan.io which shows you _everything_ is searched on the Internet. Source: 11 months ago
In the cases of nginx or apache, I suspect they may be acting as proxies to some backend that also chooses not to send a reason phrase back. Searching for "Reason Phrase" yields a number of bug reports/frameworks that may omit it, and shodan.io shows apache tomcat and a few other services/software that omit the code as well. Source: 11 months ago
Netlas.io - Internet intelligence apps that provide accurate technical information about IP-addresses, domain names, web-sites, web-services, IoT-devices and other online assets.
Acunetix - Audit your website security and web applications for SQL injection, Cross site scripting and other...
LeakIX - LeakIX is a search engine indexing open hosts on the internet. It focuses on listing the databases and table names and keeps an history of every successful connection. New database software support is added on a regular basis.
Nessus - Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.
URLscan.io - urlscan.io is a free service to scan and analyse websites. When a URL is submitted to urlscan.io, an automated process will browse to the URL like a regular user and record the activity that this page navigation creates.
Censys - Censys helps organizations, individuals, and researchers find and monitor every server on the Internet to reduce exposure and improve security.