Common search syntax of fofa search engine
foreword
Here is the URL link: fofa , just register a user and log in to search.
The login interface is as shown in the figure below. The query syntax framed by the red pen is quite detailed. This blog will practice some of the commonly used syntax.
Concrete operation
1. Search for the specified IP or IP segment - IP="XXX"
The specific explanation of the IP segment:
180.97.34.94 is replaced by 32-bit binary, /24 means that the first 24 bits remain unchanged, and the last 8 bits change from all 0s to all 1s, that is, the change from "00000000" to "11111111". And because all 0s are the subnet network address and all 1s are the subnet broadcast address, these two addresses are not assigned to the host. Therefore, the effective assignable range is that the first 24 bits remain unchanged, and the last 8 bits change from "00000001" to "11111110". The IP segment represented by "180.97.34.94/24" is 180.97.34.1~180.97.34.254
示例语句为 IP="180.97.34.94"(这是一个百度IP )
IP="180.97.34.94/24"
Look at the part of the box, Baidu has the most IP segments displayed.
2. The search title is specific content——title="xxx"
示例语句为 title="后台登录"
Open the URL after the search, and the title contains the keyword "background login"
3. The search text contains specific content——body="xxx"
示例语句为 body="账号"
4. The search url contains specific content——host="xxx"
示例语句为 host="admin"
5. Search for a specific port——port="xxx"
示例语句为 port="8080"
6. With "&&" or "||"
示例语句为title="后台登录" && body="默认密码" && country="CN"
write at the end
Reminder: fofa search keywords are not case-sensitive, reasonable use of && will make information collection more efficient and the retrieval effect more obvious.