Cloudflare, Inc. is an American web infrastructure and website security company, providing content delivery network services, DDoS mitigation, Internet security, and distributed domain name server services. Cloudflare’s services sit between a website’s visitor and the Cloudflare user’s hosting provider, acting as a reverse proxy for websites. If the website use cloudflare services the cloudflare machine will hide the real IP address and show another fake IP to protect the site from attack.
CloudUnflare
Reconnaissance Real IP address for Cloudflare Bypass.
Many penetration testers have the same question “how to bypass Cloudflare IP ?”. Because the Real site IP is hidden by Cloudflare, you can’t find real IP address easily even if you use scanning tools to Digg website information or vulnerabilities, the result will show Cloudflare IP which is the Fake IP.
But with CloudUnflare you can bypass Cloudflare and Reconnaissance Real IP address, you can learn how this tool is working and test that to your own website.
Preparation:
1. CompleteDNS API
- Create an account at completedns.com and verify first.
- Input your email and password on
CompleteDNS_Loginvariable incloudunflare.bash.
2. Dependencies Needed
- curl
- dig
- whois
Debian Based
apt-get install curl dnsutils whois -y
Installation:
Clone this repo
git clone https://github.com/greycatz/CloudUnflare.git
Command:
Go to CloudUnflare path
cd CloudUnflare
Run
bash cloudunflare.bash
!