Shodan/Censys has a quota even if they sign up, so they can’t check more than a certain query. But using Criminal IP, I am looking for a lot of fun things. :grinning:
AWS VPC IP is captured in the location header when you search with the this search.


how this can be exploited ?

If private DNS is exposed and searched, an attack can be possible on the DNS server using a DNS address. Furthermore, Proxy arbitrary setting is possible inside the work spaces client distributed within the Amazon Virtual Private Cloud. This allows the attacker to key log the user name and password when accessing the VPC, potentially posing as an AWS VPC host.

1 Like