Monitoring Linux host metrics with the Node Exporter information disclosure $350


Censys is a platform that helps information security practitioners discover, devices that are accessible from the Internet. With the help of Censys, you could find valuable information such as:

  • IP Address
  • Open Ports
  • SSL Certs
  • Hosting Providers
  • etc.

The Query for our Article subject is quite straightforward, we can just simply query for the Domain itself and see if there are any IP leaks.

The other method to use is to search using Organization, Just simply choose Host from the blue bar, and search for your target.

To show you how Censys can sometimes lead to the complete IP leakage of the target, I’ll now show you a target I was recently working on, and with the simple IPv4 Query I realized the IP behind CDN:

Proof of Concept:



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store


Red Teamer | PentTester | Bug Bounty | 0day guy!