Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
β2,539Mar 26, 2024Updated 2 years ago
Alternatives and similar repositories for CloudFail
Users that are interested in CloudFail are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- π Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.β2,948May 1, 2025Updated last year
- Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies foβ¦β1,276Sep 5, 2022Updated 3 years ago
- A Tool for Domain Flyoversβ5,927May 22, 2022Updated 3 years ago
- Attack Surface Management Platformβ9,715Feb 15, 2026Updated 2 months ago
- discontinuedβ525Aug 17, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- XRay is a tool for recon, mapping and OSINT gathering from public networks.β2,302Jul 10, 2024Updated last year
- An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the rβ¦β3,278Nov 20, 2025Updated 5 months ago
- Knock Subdomain Scanβ4,161Feb 19, 2026Updated 2 months ago
- A python script that finds endpoints in JavaScript filesβ4,334Apr 13, 2024Updated 2 years ago
- A swiss army knife for pentesting networksβ9,129Dec 6, 2023Updated 2 years ago
- RedSnarf is a pen-testing / red-teaming tool for Windows environmentsβ1,212Sep 14, 2020Updated 5 years ago
- File upload vulnerability scanner and exploitation tool.β3,317May 8, 2025Updated 11 months ago
- HTTP parameter discovery suite.β6,209Feb 20, 2025Updated last year
- Scan for misconfigured S3 buckets across S3-compatible APIs!β3,063Apr 25, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)β3,577Apr 15, 2026Updated 2 weeks ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.β5,700Jan 5, 2026Updated 3 months ago
- Detect and bypass web application firewalls and protection systemsβ2,894Aug 11, 2024Updated last year
- Fast passive subdomain enumeration tool.β13,541Updated this week
- Generates permutations, alterations and mutations of subdomains and then resolves themβ2,488Jan 9, 2025Updated last year
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scannerβ1,932Apr 13, 2022Updated 4 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, alβ¦β1,291Aug 18, 2025Updated 8 months ago
- Most advanced XSS scanner.β14,913Apr 26, 2025Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Toolβ4,148Apr 21, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulnsβ1,563Nov 14, 2023Updated 2 years ago
- CATPHISH project - For phishing and corporate espionage. Perfect for RED TEAM.β630Oct 16, 2018Updated 7 years ago
- Web path scannerβ14,216Mar 16, 2026Updated last month
- Fast subdomains enumeration tool for penetration testersβ10,887Aug 2, 2024Updated last year
- Cloudflare, Sucuri, Incapsula real IP tracker.β1,779Jul 25, 2023Updated 2 years ago
- Automated NoSQL database enumeration and web application exploitation tool.β3,275Feb 20, 2026Updated 2 months ago
- Automated All-in-One OS Command Injection Exploitation Toolβ5,716Apr 23, 2026Updated last week
- Automatic SSRF fuzzer and exploitation toolβ3,534Sep 4, 2025Updated 7 months ago
- Cloudflare DNS Enumeration Tool for Pentestersβ524Aug 6, 2022Updated 3 years ago
- Open source password manager - Proton Pass β’ AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Exploitation Framework for Embedded Devicesβ13,097Mar 2, 2026Updated 2 months ago
- Striker is an offensive information and vulnerability scanner.β2,331Jun 4, 2023Updated 2 years ago
- Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentialβ¦β2,414Updated this week
- In-depth attack surface mapping and asset discoveryβ14,484Apr 17, 2026Updated 2 weeks ago
- A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricksβ1,463Nov 3, 2018Updated 7 years ago
- Web application fuzzerβ6,477Jan 21, 2026Updated 3 months ago
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,639Feb 8, 2025Updated last year