# Number of services vulnerable to Heartbleed
$ shodan count vuln:CVE-2014-0160
This however requires at least a Corporate subscription if you wanted to actually download all IPs on the Internet that are vulnerable:
$ shodan download --limit=0 vuln:CVE-2014-0160
For example, this entire dashboard is generated using a free API key:
I'm really surprised to hear you find our products expensive. Typically we hear the opposite from our customers.
From an individual perspective, download restrictions and payment option flexibility are a pain for me.
Feature request: A lot of sites don't serve meaningful content if you don't visit using the right hostname. If Shodan can discover hostnames based on TLS cert SAN values or retroactively scan newly registered domains, that would provide a lot of value to enterprise customes. For the vuln tag, it would be nice if I didn't have to convince my compnay to buy the product before using it,even testing it on a personal paid account, or a temp free trial?
I mentioned your product was expensive due to the "token" based payment approach where downloading or exporting things for example requires payment each time. If I had just enough free access to do something more than occassional shodan safari or looking up suspicious IPs 5 times a day, perhaps then I would pay for it and feel like your customers. For full access even a $500/month is very cheap but there are limits and the token based approach sounds costly if it is in additon to one time payment.
Last comment: Very gladly surprised to see someone actually working at shodan respond, HN never ceases to surprise. Thank you for putting together this great service to the internet.
