π Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
β2,940May 1, 2025Updated 10 months ago
Alternatives and similar repositories for CloudFlair
Users that are interested in CloudFlair are comparing it to the libraries listed below
Sorting:
- Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare networkβ2,519Mar 26, 2024Updated last year
- HTTP parameter discovery suite.β6,109Feb 20, 2025Updated last year
- A python script that finds endpoints in JavaScript filesβ4,297Apr 13, 2024Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,089Aug 14, 2024Updated last year
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,572Feb 8, 2025Updated last year
- Automatic SSRF fuzzer and exploitation toolβ3,493Sep 4, 2025Updated 6 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β985Jan 12, 2024Updated 2 years ago
- CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websitesβ¦β1,540Sep 1, 2023Updated 2 years ago
- Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies foβ¦β1,272Sep 5, 2022Updated 3 years ago
- A Tool for Domain Flyoversβ5,904May 22, 2022Updated 3 years ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,693Updated this week
- Cloudflare, Sucuri, Incapsula real IP tracker.β1,768Jul 25, 2023Updated 2 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,842Jan 1, 2025Updated last year
- SSRF (Server Side Request Forgery) testing resourcesβ2,482Oct 12, 2024Updated last year
- Scan for misconfigured S3 buckets across S3-compatible APIs!β2,998Dec 11, 2025Updated 2 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,280Updated this week
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,339May 1, 2024Updated last year
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,859Feb 28, 2026Updated last week
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,131Feb 23, 2026Updated 2 weeks ago
- Subdomain Takeover tool written in Goβ2,033Aug 13, 2023Updated 2 years ago
- Rockyou for web fuzzingβ3,033Feb 11, 2026Updated 3 weeks ago
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ6,402May 1, 2025Updated 10 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves themβ2,477Jan 9, 2025Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,552Updated this week
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! π₯β7,381Aug 28, 2025Updated 6 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,401Sep 13, 2024Updated last year
- IP lookup by favicon using Shodanβ1,189Feb 5, 2025Updated last year
- Hidden parameters discovery suiteβ2,028Sep 8, 2024Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Toolβ4,123Apr 21, 2024Updated last year
- Fast passive subdomain enumeration tool.β13,192Updated this week
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,012Jun 24, 2024Updated last year
- Automation for javascript recon in bug bounty.β1,069Sep 9, 2023Updated 2 years ago
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,001Dec 21, 2024Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,062Jan 2, 2024Updated 2 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,352Sep 30, 2024Updated last year
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for β¦β3,659Updated this week
- In-depth attack surface mapping and asset discoveryβ14,222Updated this week
- A repository with 3 tools for pwn'ing websites with .git repositories availableβ4,128Jun 14, 2023Updated 2 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)β3,544Jul 21, 2025Updated 7 months ago