OSINT: Threat Hunting

🌐 Intelligence Operation

Your SOC team needs to evaluate the global risk of a recent 0-day. Construct a single Shodan search query (Dork) that filters servers combining these 3 exact criteria:

1. The product must be Tomcat.
2. They must be geolocated in the United States (code US).
3. They must be tagged with the Log4Shell vulnerability (CVE-2021-44228).