CloudFail is one tool recognition that aims to collect information about a page protected by Cloudflare in the hope of discovering the real one address of the server. Using Tor to hide all your requests, CloudFail now has 3 different attack phases.
Specifications
- Incorrect DNS scan configuration using DNSDumpster.com.
- Scan baseof data on Crimeflare.com.
- Bruteforce option that scans over 2500 subdomains.
Installation in Kali / Debian
First we need to install pip3 for python3 dependencies:
$ sudo apt-get install python3-pip
Next, we can perform dependency checks:
$ pip3 install -r requirements.txt
If this fails due to a lack of installation tools, run the following command:
sudo apt-get install python3-setuptools
Use
To perform a scan on a target run the command:
python3 cloudfail.py --target seo.com
To perform a scan on a target using Tor run the command:
service tor start
(or if usesWindows or Mac install vidalia or just run the program tours Tor)
python3 cloudfail.py --target seo.com --tor
Make sure you are running the program with Python3 and not Python2.
Conditions
python3
- clutch
- colorama
- socket
- binascii
- datetime
- requests
- win_inet_pton
- dnspython
You can download the program from here.