Honeypots are basically Traps for hackers. They are in an isolated environment with open ports to attract hackers and bots in order to learn their tricks.
Sorry, but snooping around computers that do not belong to you is legal almost nowhere. That a computer is poorly defended or not defended at all is not an invitation for people to use it. It is the same as hopping on to your neighbor's web connection without permission or walking into his house through an unlocked door. These computers you find through Shodan mostly are not intended to be on the open internet. Rather, they are simply connected, for some poorly conceived reason or for some purpose that lapsed, or they are accessible because of a software or firmware vulnerability for which the computer owner has missed an update (or many updates). Yes, this is the fault of the owner. No, it is not legal, in most places, for you to help yourself to that person's computer or network. Collecting data about vulnerable systems, about what OS they run, what ports are open, what actual vulnerabilities are instantiated, and all that stuff, that is fair game and may be useful, which is why Shodan exists. Jumping on to these systems is not, however, fine. You need permission to do that legally, and it is important to be aware of this if you are going to mess around with vulnerability research.
@@sarahlamb2333 gov has used various mechanisms such as FISA courts and broadening of the scope of national security laws from the ability to conduct surveillance on an individual with sufficient proof to now conducted general surveillance. Constitution intended to protect against this but we have failed to stop overreach of government. So in my book, no it is not legal for government to do this.
@@sarahlamb2333the government isn't your god, stop worshipping it. reality is they collect shedloads of information on everyone through back doors we don't even know about. If unauthorised access to computer systems is scary to you then the government having control of that should be even scarier
It's really not. These are forgotten and unpassworded devices. Most of them are for public networks anyway. Just password your stuff and you don't end up on the search engine
Use a password. These are open devices. If you have a username and password there's nothing to worry about. Watch the video again. He says they are all open unpassworded systems.
FYI, though hacking into others' computers or networks may be perfectly legal in India, it is a criminal offense in the U.S., akin to trespassing, theft, joyriding, or worse, and there are plenty of prosecutors that'll be all too happy to score points by sending you to prison for a very long time.
It’s not legal in India as well but this is not hacking computers as we speak this is OSINT Or open source information gathering which is legal everywhere Or this tool won’t be that readily available..
I'm sure if corporations can do this exact thing in the U.S. it's legal. Just like some levels of piracy for educational reasons only. This is a legal gray area in the U.S. Encrypted systems being penetrated are still the only crime. This is why going onto a personal website or blog are legal. Even inspecting the website is legal too.