Skip to content
/ Lilly Public

Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to validate the target in-scope.

License

MIT license
176 stars 35 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Dheerajmadhukar/Lilly

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
lilly.sh
lilly.sh
 
 

Repository files navigation

Last updated on 2020/12/29

Introduction

Lilly Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to validate the target in-scope.

Usage

root@me_dheeraj:$ bash lilly.sh
[-] Argument: -d/--domain target.com -a/--api Required

       Usage: ./lilly.sh -d/--domain target.com -a/--api premium_api

Output will be saved in output/target.com-YYYY-MM-DD directory
Prerequisites
  • python3
  • jq
  • pip3 install shodan
  • pip3 install mmh3
  • Shodan Member Account & API
  • httpx @pdiscoveryio
  • Multi-Threading interlace - @codingo

Tool of the week

https://blog.intigriti.com/2021/01/06/bug-bytes-104-cache-poisoning-dos-burp-themes-a-couple-of-facebook-account-takeovers/

About

Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to validate the target in-scope.

Resources

Readme

License

MIT license
Activity

Stars

176 stars

Watchers

9 watching

Forks

35 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages