Cloudmare is a simple tool to find origin servers of websites protected by Cloudflare, Sucuri or Incapsula with a misconfiguration DNS.
For more detail about this common misconfiguration and how Cloudmare works, send me a private message.
Here's what Cloudmare looks like in action.
(The IP addresses in this example have been obfuscated and replaced by randomly generated IPs)
- Clone the repository
$ git clone https://github.com/MrH0wl/Cloudmare.git
- Go to the folder
$ cd Cloudmare
$ python Cloudmare.py -h or python Cloudmare.py -hh
- Run Cloudmare (see Usage below for more detail)
$ python Cloudmare.py target.site
Tested on Python 2.7 and Python=<3.7, working on Linux and Windows. Feel free to open an issue if you have bug reports or questions. If you want to collaborate, you're welcome.
If you want Cloudmare to be updated more frequently with many more features, you can donate to help make this happen.
>1MegFDHcmc3ivSCsniVcxUc915hUD8S3Go
✉️Email: secmare@protonmail.com
🐦Twitter: @SecMare