虽然寻找隐藏在CDN下的IP地址并非总是必要的,但在某些情况下,这是一项至关重要的任务。这款新工具提供了一种简单、快速和有效的方法,可以让安全研究人员和渗透测试人员获取CDN后面的真实IP地址。
这款工具名为CloudFail
Github 地址 [链接登录后可见]
Disclaimer
This tool is a PoC (Proof of Concept) and does not guarantee results. It is possible to setup Cloudflare properly so that the IP is never released or logged anywhere; this is not often the case and hence why this tool exists. This tool is only for academic purposes and testing under controlled environments. Do not use without obtaining proper authorization from the network owner of the network under testing. The author bears no responsibility for any misuse of the tool.
[链接登录后可见]Install on Kali/Debian
First we need to install pip3 for python3 dependencies:
$ sudo apt-get install python3-pip
Then we can run through dependency checks:
$ pip3 install -r requirements.txt
If this fails because of missing setuptools, do this:
sudo apt-get install python3-setuptools
To run a scan against a target:
python3 cloudfail.py --target seo.com
To run a scan against a target using Tor:
service tor start
(or if you are using Windows or Mac install vidalia or just run the Tor browser)
python3 cloudfail.py --target seo.com --tor