Rapid7 Vulnerability & Exploit Database

ZoomEye Search

Back to Search

ZoomEye Search



The module use the ZoomEye API to search ZoomEye. ZoomEye is a search engine for cyberspace that lets the user find specific network components(ip, services, etc.). Setting facets will output a simple report on the overall search. It's values are: Host search: app, device, service, os, port, country, city Web search: webapp, component, framework, frontend, server, waf, os, country, city Possible filters values are: Host search: app, ver, device, os, service, ip, cidr, hostname, port, city, country, asn Web search: app, header, keywords, desc, title, ip, site, city, country


  • Nixawk
  • Yvain
  • Grant Willcox


Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use auxiliary/gather/zoomeye_search
msf auxiliary(zoomeye_search) > show actions
msf auxiliary(zoomeye_search) > set ACTION < action-name >
msf auxiliary(zoomeye_search) > show options
    ...show and set options...
msf auxiliary(zoomeye_search) > run 

Time is precious, so I don’t want to do something manually that I can automate. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters.

– Jim O’Gorman | President, Offensive Security