Both stretchoid.com and shodan.io represent the collective asshole of the internet. These guys, and several others, exist only to scan for vulnerabilities that they then publish for every malicious script to scrape information from. They claim that they’re doing the world a favor by allowing you to see what your vulnerabilities are. Well, I smell marketing bullshit and stinks to high hell.
It is important to block these guys at every turn. I haven’t been able to come up with a definitive list of host names for stretchoid, but I have come up with them for shodan. They appear to be the same every time. Here they are and to hell with shodan!
shodan.io census.shodan.io census1.shodan.io census2.shodan.io census3.shodan.io census4.shodan.io census5.shodan.io census6.shodan.io census7.shodan.io census8.shodan.io census9.shodan.io census10.shodan.io census11.shodan.io census12.shodan.io census13.shodan.io dojo.census.shodan.io ninja.census.shodan.io burger.census.shodan.io atlantic.dns.shodan.io atlantic.census.shodan.io pacific.census.shodan.io rim.census.shodan.io pirate.census.shodan.io border.census.shodan.io hello.data.shodan.io scanner01.project25499.com scanner02.project25499.com scanner03.project25499.com scanner04.project25499.com scanner05.project25499.com
If any of my readers can come up with a list of stretchoid hosts, feel free to share. I hate these guys with a passion. They are doing nefarious stuff. They are trying to log in to my mail server to send spam. Fortunately, I have a really air tight setup.