christophetd / CloudFlairView external linksLinks
π Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
β2,933May 1, 2025Updated 9 months ago
Alternatives and similar repositories for CloudFlair
Users that are interested in CloudFlair are comparing it to the libraries listed below
Sorting:
- Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare networkβ2,507Mar 26, 2024Updated last year
- HTTP parameter discovery suite.β6,086Feb 20, 2025Updated 11 months ago
- A python script that finds endpoints in JavaScript filesβ4,280Apr 13, 2024Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,042Aug 14, 2024Updated last year
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,550Feb 8, 2025Updated last year
- Automatic SSRF fuzzer and exploitation toolβ3,479Sep 4, 2025Updated 5 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β975Jan 12, 2024Updated 2 years ago
- CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websitesβ¦β1,532Sep 1, 2023Updated 2 years ago
- Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies foβ¦β1,269Sep 5, 2022Updated 3 years ago
- A Tool for Domain Flyoversβ5,897May 22, 2022Updated 3 years ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,679Feb 6, 2026Updated last week
- Cloudflare, Sucuri, Incapsula real IP tracker.β1,763Jul 25, 2023Updated 2 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,821Jan 1, 2025Updated last year
- SSRF (Server Side Request Forgery) testing resourcesβ2,484Oct 12, 2024Updated last year
- Scan for misconfigured S3 buckets across S3-compatible APIs!β2,998Dec 11, 2025Updated 2 months ago
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,309May 1, 2024Updated last year
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,192Updated this week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,835Updated this week
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,106Nov 18, 2024Updated last year
- Rockyou for web fuzzingβ3,014Aug 28, 2025Updated 5 months ago
- Subdomain Takeover tool written in Goβ2,026Aug 13, 2023Updated 2 years ago
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ6,357May 1, 2025Updated 9 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,533Feb 7, 2026Updated last week
- Generates permutations, alterations and mutations of subdomains and then resolves themβ2,468Jan 9, 2025Updated last year
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! π₯β7,353Aug 28, 2025Updated 5 months ago
- Hidden parameters discovery suiteβ2,015Sep 8, 2024Updated last year
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,397Sep 13, 2024Updated last year
- IP lookup by favicon using Shodanβ1,189Feb 5, 2025Updated last year
- Automation for javascript recon in bug bounty.β1,067Sep 9, 2023Updated 2 years ago
- Fast passive subdomain enumeration tool.β13,054Feb 5, 2026Updated last week
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,998Jun 24, 2024Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Toolβ4,117Apr 21, 2024Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ4,991Dec 21, 2024Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,059Jan 2, 2024Updated 2 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,346Sep 30, 2024Updated last year
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for β¦β3,639Updated this week
- In-depth attack surface mapping and asset discoveryβ14,103Updated this week
- A repository with 3 tools for pwn'ing websites with .git repositories availableβ4,124Jun 14, 2023Updated 2 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)β3,528Jul 21, 2025Updated 6 months ago