Or, How I Accidentally Created a Visual Shodan and Learned to Love Vibecoding

I plan to do a write-up on the architecture and journey. It did start as a vibe coding experiment, and quickly evolved into a Shodan-like screenshotting OSINT thing. Agents generate random IP addresses, check for HTTP, and attempt to screenshot. If a screenshot is taken, then it becomes a 'result' submitted to the backend.

The search page lets you add multiple exclude filters to the aggregation pipeline. So as you filter common strings, the interesting results bubble to the top.

If you click the image it should take you to an info page on the service.

That explains why I've been using this to find all the cool stuff :) https://whatsonhttp.com/votes

You're absolutely right!

(I actually typed that.)

More improvements; The network map can now be used to create a search query! Since the IP addresses are stored in decimal, it makes it very easy to filter on CIDR as a range of integers. You can now actually zoom in and click around to explore the network map. I hope to do something similar with the World Map and using geospatial queries.

If you gave a monkey a web browser, and just had them mash on a keyboard (okay, well, numeric keypad), how long would it take them to find a website over HTTP? How about a login page? A dashboard? Your smart fridge? We decided to find out.

Hah, about the same time, I was vibe coding something similar, for similar purposes.

It's not static, though. I'll be publishing a repo with the code for it, when I get around to it. http://ratchet.link/

If you can fingerprint a penetration workstation, they're doing it wrong