Hey all, back with CQOTW after some time off! Here is a fairly straightforward one that uses our service fields to find potentially exposed telnet services:

(services=telnet) and services.banner:`username`

You could make this more targeted using something like an IP address, IP range, ASN, and so on:

(services=telnet) and services.banner:`username` and ip=[insert IP/range here]

This is part of a regular series of posts in which we highlight useful, interesting, and otherwise cool queries for use with Censys Search and ASM. If you have any questions, similar queries, or custom versions of this week’s highlight, let us know!