creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-26 11:44:37 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/performing-ip-reputation-analysis-with-shodan/references/api-reference.md
T
mukul975 c21af3347e Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal 
- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
2026-03-11 00:22:12 +01:00

1.1 KiB
Raw Blame History

API Reference — Performing IP Reputation Analysis with Shodan

Libraries Used

  • shodan: Shodan API client for IP host lookup, port scanning, vulnerability data
  • requests: HTTP client for AbuseIPDB API reputation checks

CLI Interface

python agent.py --shodan-key <key> [--abuseipdb-key <key>] lookup --ip <ip>
python agent.py --shodan-key <key> [--abuseipdb-key <key>] bulk --ips <ip1> <ip2>

Core Functions

shodan_host_lookup(api_key, ip) — Shodan host details

  • shodan.Shodan(api_key) / api.host(ip)
  • Returns: org, ASN, ISP, country, open ports, vulns, services

abuseipdb_check(api_key, ip, max_age_days) — AbuseIPDB reputation

  • GET https://api.abuseipdb.com/api/v2/check
  • Returns: abuse_confidence (0-100), total_reports, is_tor

bulk_reputation(shodan_key, ips, abuseipdb_key) — Multi-IP analysis with risk scoring

Risk Classification

Risk Criteria
Critical Abuse score >= 80 or 3+ known vulns
High Abuse score >= 50 or 1+ known vulns
Medium Abuse score >= 20
Low Below thresholds

Dependencies

pip install shodan requests
Reference in New Issue View Git Blame Copy Permalink