Scan Report
10 /100
Search Viewer
信息收集与空间测绘工具 - 聚合Fofa/Hunter/Shodan/Quake/Zoomeye
This is a legitimate open-source OSINT reconnaissance tool that aggregates multiple space mapping platforms (Fofa, Hunter, Shodan, Quake, Zoomeye, Censys). No malicious behavior detected.
Safe to install
No action required. The skill performs exactly as documented.
Findings 2 items
| Severity | Finding | Location |
|---|---|---|
| Low | Dependencies not version pinned Supply Chain | SKILL.md:54 |
| Info | Hardcoded IP address in documentation Doc Mismatch | SKILL.md:92 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | WRITE | WRITE | ✓ Aligned | SKILL.md:54-55 + Search_Viewer.py:97-152 (config.ini write) |
| Network | READ | READ | ✓ Aligned | SKILL.md:10-21 (lists all 6 API platforms) |
| Shell | NONE | NONE | — | No subprocess or os.system calls found |
| Environment | NONE | NONE | — | No os.environ access |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | NONE | — | No database access |
1 High 18 findings
High IP Address 硬编码 IP 地址
1.1.1.1 SKILL.md:92 Medium External URL 外部 URL
https://img.shields.io/badge/Platform-Windows%20%7C%20macOS%20%7C%20Linux-blue README.MD:5 Medium External URL 外部 URL
https://img.shields.io/badge/Language-Python%20%7C%20C%2B%2B-yellow README.MD:6 Medium External URL 外部 URL
https://img.shields.io/badge/License-GPL--3.0-green README.MD:7 Medium External URL 外部 URL
https://fofa.info README.MD:56 Medium External URL 外部 URL
https://hunter.qianxin.com README.MD:57 Medium External URL 外部 URL
https://www.shodan.io README.MD:58 Medium External URL 外部 URL
https://quake.360.cn README.MD:59 Medium External URL 外部 URL
https://www.zoomeye.org README.MD:60 Medium External URL 外部 URL
https://fofa.info/api/v1/search/all?email= Search_Viewer.py:314 Medium External URL 外部 URL
https://hunter.qianxin.com/openApi/search?&api-key= Search_Viewer.py:442 Medium External URL 外部 URL
https://quake.360.net/api/v3/search/quake_service Search_Viewer.py:775 Medium External URL 外部 URL
https://quake.360.net/api/v3/user/info Search_Viewer.py:782 Medium External URL 外部 URL
https://api.zoomeye.org/resources-info Search_Viewer.py:888 Medium External URL 外部 URL
https://api.zoomeye.org/host/search? Search_Viewer.py:893 Medium External URL 外部 URL
https://search.censys.io/api/v2/hosts/search?q= Search_Viewer.py:988 Medium External URL 外部 URL
https://search.censys.io/api/v2/hosts/ Search_Viewer.py:990 Medium External URL 外部 URL
https://search.censys.io/api/v2 Search_Viewer.py:1192 File Tree
7 files · 86.7 KB · 2319 lines Python 3f · 1935L
Markdown 3f · 372L
JSON 1f · 12L
├─
_meta.json
JSON
├─
CHANGELOG.MD
Markdown
├─
iconhash.py
Python
├─
README.MD
Markdown
├─
resources_rc.py
Python
├─
Search_Viewer.py
Python
└─
SKILL.md
Markdown
Dependencies 2 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
pyside2 | * | pip | No | Version not pinned |
requests | * | pip | No | Version not pinned |
Security Positives
✓ No reverse shell, C2, or covert data exfiltration detected
✓ No credential harvesting beyond user-provided API keys (stored in config.ini as declared)
✓ No base64-encoded obfuscation or anti-analysis patterns
✓ No access to sensitive paths (~/.ssh, ~/.aws, .env)
✓ No supply chain compromise - uses standard legitimate libraries (requests, PySide2, shodan SDK)
✓ All network activity matches documented API calls to legitimate OSINT platforms
✓ No persistence mechanisms (no cron, startup hooks, or backdoors)
✓ Base64 usage is for API query encoding only (qbase64 parameter), not obfuscation
✓ Threading is used for legitimate async UI operations
✓ CSV exports are user-initiated with confirmation dialogs