Cloudmare is a simple tool to find origin servers of websites protected by Cloudflare, Sucuri or Incapsula with a misconfiguration DNS.
For more detail about this common misconfiguration and how Cloudmare works, send me a private message.
Here's what Cloudmare looks like in action.
(The IP addresses in this example have been obfuscated and replaced by randomly generated IPs)
- Clone the repository
$ git clone https://github.com/MrH0wl/Cloudmare.git
- Go to the folder
$ cd Cloudmare
$ python Cloudmare.py -h or python Cloudmare.py -hh
- Run Cloudmare (see Usage below for more detail)
$ python Cloudmare.py target.site
Tested on Python 2.7 and Python=<3.7, working on Linux and Windows. Feel free to open an issue if you have bug reports or questions. If you want to collaborate, you're welcome.
If you want Cloudmare to be updated more frequently with many more features, you can donate to help make this happen.
BTC:
1MegFDHcmc3ivSCsniVcxUc915hUD8S3Go
or
1NHgyuupGNKumT6XCWmvfxWG6avXh4vaCZ
ETH:
0x9665C32ba7dD6e7C8278ff788303B937aA9b2f41
Doge:
DKT6LHHos3Rt6pgiBL4TGBq934tL7SfZEW
✉️Email: secmare@protonmail.com
🐦Twitter: @mrh0wl
📷Instagram: @mrh0wl