Table: shodan_dns_reverse - Query Shodan DNS Reverse using SQL

Shodan DNS Reverse is a feature within Shodan that allows you to retrieve hostnames that have been defined for the given IP. It provides a comprehensive way to map and monitor domain records for various IP addresses. Shodan DNS Reverse helps you stay informed about the associated hostnames for your IP resources and take appropriate actions when predefined conditions are met.

Important Notes

• You must specify the ip in the where clause to query this table.

Table Usage Guide

The shodan_dns_reverse table provides insights into the DNS Reverse within Shodan. As a Network Administrator, explore IP-specific details through this table, including associated hostnames, and related metadata. Utilize it to uncover information about the domain mapping for your IP addresses, such as those with multiple hostnames, the relationships between IPs and hostnames, and the verification of domain records.

Examples

Reverse DNS lookup

Analyze the settings to understand the details associated with a specific IP address. This can be useful for identifying the ownership and configuration of a network resource.

select
  *
from
  shodan_dns_reverse
where
  ip = '8.8.8.8';

select
  *
from
  shodan_dns_reverse
where
  ip = '8.8.8.8';

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- shodan

You can pass the configuration to the command with the --config argument:

steampipe_export_shodan --config '<your_config>' shodan_dns_reverse