Dropzone AI Documentation
WebsiteTest Drive
  • Dropzone Documentation
  • Overview
    • Alert Sources
    • Data Sources
    • Communicators
    • On-prem Support - Dropzone Connector
    • Interactive Chat
    • Metrics Guide
  • Dropzone Administraton
    • Team Admin
      • Google Workspace SAML
      • Okta SAML
  • Dropzone Integrations
    • Alert + Data Source Integrations
      • Amazon Web Services (AWS)
        • Cross-Account Access via CloudFormation
        • Cross-Account Access via Console
      • CrowdStrike
      • Datadog
      • Elasticsearch
      • Google Workspace
      • Google GCP
      • Jira
      • Microsoft 365 / Microsoft Defender
      • Palo Alto Networks Firewall
      • Panther
      • SentinelOne
      • Splunk
      • Sumo Logic
    • Alert Integrations
      • Gem
    • Communicators
      • Slack Communicator
    • Data Source Integrations
      • AbuseIPDB
      • Active Directory (LDAP)
      • Archive Inspector
      • Blocklist.de
      • CAPA
      • Censys
      • Crowdstrike Falcon Intelligence
      • DNSResolver
      • File
      • GreyNoise
      • Hybrid Analysis
      • Host.io
      • IPInfo.io
      • IPQualityScore
      • MalwareBazaar
      • Nuclei
      • NVD
      • Okta
      • oletools
      • OpenSSL Sign Code
      • PDF Analysis
      • Perplexity AI
      • PhishTank
      • Shodan
      • TShark
      • QRadar
      • UnshortenMe
      • URLhaus
      • Urlscan.io
      • VirusTotal
      • Vision
      • WHOIS
      • YARAify
Powered by GitBook
On this page
  • Create an API Key
  • Enable Shodan

Was this helpful?

  1. Dropzone Integrations
  2. Data Source Integrations

Shodan

PreviousPhishTankNextTShark

Last updated 4 months ago

Was this helpful?

Shodan is a Threat Intelligence (TI) integration. TI Data Source integrations are used during investigations to improve analysis and in interactive chat to help answer questions. They are optional, but enabling more tooling integrations enhances Dropzone analysis.

The Dropzone platform integrates with , a search engine for devices on the internet. Dropzone can use it for identifying IP device characteristics such hosting ownership, open ports, or known vulnerabilities.

Create an API Key

Shodan requires an API key to enable.

To obtain an API key, do the following:

If you do not already have a corporate Shodan account, create one and become a member:

  • Create your account at

    • Use social login or create an account

    • Shodan will send an email to your email address - follow the instructions to activate your account

  • Become a member via

Next, retrieve your API key

  • Go to the

  • Click on "Show API Key" located in the far top right corner

  • Record the API Key shown for use later in the Dropzone UI where it is called "API key"

Enable Shodan

To enable the Data Source integration, do the following:

  • Navigate to your Dropzone AI tenant home page e.g. https://mycompany.dropzone.ai

  • Click System > Integrations

  • Click "Available"

  • In the Search bar, search Shodan, then click "Configure"

  • Input the API Key

  • Click "Test & Save" to finish

If you have any errors engage your Dropzone AI support representative.

Shodan
https://account.shodan.io/register
https://account.shodan.io/billing/member
Shodan Developer Portal
Click on "Developer" in the menu bar
Show API Key
Integrations Dropdown
Click Available
The Shodan Data Tile
The Shodan Data Source Configuration