CloudFail – Utilize misconfigured DNS Find hidden IP’s behind the CloudFlare network

CloudFail – Utilize misconfigured DNS Find hidden IP’s behind the CloudFlare network

Credits: m0rtem

CloudFail is a tactical reconnaissance tool that aims to gather enough information about a target protected by Cloudflare in the hopes of discovering the location of the server. Using Tor to mask all requests, the tool as of right now has 3 different attack phases.

  1. Misconfigured DNS scan using
  2. Scan the database.
  3. Bruteforce scan over 2500 subdomains.


This tool is a PoC (Proof of Concept) and does not guarantee results. It is possible to setup Cloudflare properly so that the IP is never released or logged anywhere; this is not often the case and hence why this tool exists. This tool is only for academic purposes and testing under controlled environments. Do not use without obtaining proper authorization from the network owner of the network under testing. The author bears no responsibility for any misuse of the tool.


To run a scan against a target:

python --target

To run a scan against a target using Tor:

service tor start

(or if you are using Windows or Mac install Vidalia or just run the Tor browser)

python --target --tor



  • argparse
  • colorama
  • socket
  • binascii
  • datetime
  • requests
  • win_inet_pton


Please feel free to contribute to this project. If you have an idea or improvement issue a pull request!

Other Tools you may like:

kwetza – Python script to inject existing Android applications with a Meterpreter payload

30 Best Free Hacking Apps & Tools For Android

If you have found a spelling error, please, notify us by selecting that text and pressing Ctrl+Enter.

Spread the love
yoast seo premium free

Spelling error report

The following text will be sent to our editors: