VNC Resolver

Revision as of 16:50, 2 March 2024 by Chloelol (talk | contribs) (the march 2nd incident)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

VNC Resolver, formerly known as "VNC Roulette" and "VNC Funland", is a tool that displays random insecure VNC servers. It is similar to sites like srsly.de, WorldofVNC, Shodan, and others. It was created in late 2015.

The first scan was done in December 2015. The latest scan was done on May 24, 2022 and ended on May 27, 2022

You can browse the current scan by going here. It is also available through CollabBot by typing +vnc.

VNC Resolver

VNC Resolver is currently a part of the CollabBot bot on the CollabVM Discord. It also has a web interface (linked above).

VNC Resolver works by portscanning the entire internet for various ports (usually 5900 - 5910, but smaller ASNs usually get more ports scanned), and then a script attempts to take a screenshot of the found servers. If it times out or is passworded, the server is skipped, but if a connection is successful, a screenshot is taken and it is added to the database.

The scripts for VNC Resolver were released on September 27, 2018 and may be downloaded here. (WARNING: Port scanning the entire internet WILL GET YOUR IP LISTED IN MOST MAJOR BLACKLISTS. This will likely cause you to be banned from certain sites. Many major ISPs across the world also ban portscanning entirely, and may terminate your service if they catch you. Use a VPS if you're going to run this.)

Types of VNC's

 
Common VNC types found over the years
  • Black screens
  • Dead VNC's (Possibly due to dynamic IP's)
  • Servers
  • Embedded computers
  • Login screens
  • Honeypots
  • Internet cafe machines
  • Asian gamers?
  • Billboards
  • XSCREENSAVER

Incident

An incident occurred on February 21 2016 involving VNC Roulette, in which Damian connected to an insecure VNC which was connected to a pool in a small town in New Jersey. Guest1337 attempted to set the pH levels to potentially lethal levels, but was stopped by both the software and an administrator before any harm could actually be done.

It should be noted that the user in question was doing this from his own computer on CollabVM.

Following the incident, the VNC Roulette was shut down in order to make improvements, and it has returned sporadically, although usually going down for technical reasons.

Another incident occured on March 2, 2024 involving the VNC Resolver Mastodon bot, where an unknown user connected to a pool controller in Poland. They then, attempted to mess with the settings but then the device got DDoSed and it broke.

Gallery of VNCs

See also

A CollabVM Wikia version of this page