Monitoring Threat Actors Cobalt Strike C2 Infrastructure with Shodan

Threat Intel Tips and Shodan queries

ReliableSite, Leaseweb, ITL-Bulgaria, and HostKey Infrastructure are good examples but you can also look for and monitor other ISP’s/orgs.

ReliableSite

org:”ReliableSite.Net LLC” port:”443" HTTP/1.1 404 Not Found Content-Length: 0

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store