CloudBrute vs CloudFlair
GitHub Stats
About CloudBrute
CloudBrute is an enumeration tool used to discover cloud assets across multiple cloud service providers. By leveraging publicly accessible APIs and services, it identifies exposed company resources and infrastructure components. CloudBrute is capable of scanning for assets on popular platforms like AWS, Azure, and Google Cloud, offering insights into potential security exposures. Its utility lies in its ability to provide a comprehensive view of an organization's cloud footprint, aiding in asset management and security assessments.
About CloudFlair
CloudFlair is a tool for finding origin servers of websites protected by Cloudflare, using Internet-wide scan data from Censys. When a website uses Cloudflare as a reverse proxy, the actual origin server's IP address is hidden. CloudFlair works by searching Censys for IPv4 hosts that present an SSL certificate associated with the target domain, then checks each candidate to see if it responds with the same content as the Cloudflare-protected site. This technique is effective because many administrators configure SSL certificates on their origin servers that match the domain they're protecting, but forget to restrict direct IP access. It's a valuable tool for penetration testers looking to bypass Cloudflare's WAF and DDoS protection.
Platform Support
Tags
CloudBrute only
CloudFlair only