moscovium-mc/CloudRip

GitHub: moscovium-mc/CloudRip

Stars: 417 | Forks: 53

# CloudRip [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT) [![Python 3.8+](https://img.shields.io/badge/python-3.8+-blue.svg)](https://www.python.org/downloads/) [![Version](https://img.shields.io/badge/version-2.1.0-green.svg)](https://github.com/moscovium-mc/CloudRip/releases) [![Platform](https://img.shields.io/badge/platform-linux%20%7C%20macos%20%7C%20windows-lightgrey.svg)]() [![Tool Type](https://img.shields.io/badge/tool-recon-red.svg)]() [![Built for](https://img.shields.io/badge/built%20for-pentesting-red.svg)]() [![GitHub Stars](https://img.shields.io/github/stars/moscovium-mc/CloudRip?style=social)](https://github.com/moscovium-mc/CloudRip/stargazers) [![Forks](https://img.shields.io/github/forks/moscovium-mc/CloudRip?style=social)](https://github.com/moscovium-mc/CloudRip/network/members) [![Issues](https://img.shields.io/github/issues/moscovium-mc/CloudRip)](https://github.com/moscovium-mc/CloudRip/issues) [![Maintenance](https://img.shields.io/badge/Maintained%3F-yes-green.svg)](https://github.com/moscovium-mc/CloudRip/graphs/commit-activity) [![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black) A tool that helps you find the real IP addresses hiding behind Cloudflare by checking subdomains. For penetration testing, security research, and learning how Cloudflare protection works. ## Table of Contents - [What it does](#what-it-does) - [Installation](#installation) - [How to use it](#how-to-use-it) - [Examples](#examples) - [Output Formats](#output-formats) - [Version History](#version-history) - [Contributors](#contributors) - [Contributing](#contributing) - [Support](#support) - [Need to avoid Rate Limits?](#need-to-avoid-rate-limits) - [Legal Notice](#legal-notice) - [License](#license) ## What it does ## Installation ### Requirements - Python 3.8 or higher - pip (Python package manager) ### Setup Clone the repository: git clone https://github.com/moscovium-mc/CloudRip cd CloudRip Create a virtual environment and install dependencies: **Linux/macOS:** python3 -m venv venv source venv/bin/activate pip install -r requirements.txt **Windows:** python -m venv venv venv\Scripts\activate pip install -r requirements.txt ## How to use it Basic scan: python3 cloudrip.py example.com With all the options: python3 cloudrip.py example.com -w wordlist1.txt -w wordlist2.txt -t 20 -o report.json -f json **Options:** | Option | Description | |--------|-------------| | `` | The site you're testing (like example.com) | | `-w, --wordlist` | Wordlist file(s). Can be specified multiple times (default: dom.txt) | | `-t, --threads` | How many threads to run (default: 10) | | `-o, --output` | Save results to a file | | `-f, --format` | Output format: `normal`, `json`, `yaml`, `csv` (default: normal) | | `-v, --verbose` | Show all results including "not found" entries | | `-q, --quiet` | Minimal output - only show found IPs | ## Examples **Basic scan:** python3 cloudrip.py example.com **Multiple wordlists with JSON output:** python3 cloudrip.py example.com -w subs1.txt -w subs2.txt -o report.json -f json python3 cloudrip.py example.com -t 50 -o results.csv -f csv **Verbose mode (see all attempts):** python3 cloudrip.py example.com -v **Quiet mode (only found IPs):** python3 cloudrip.py example.com -q -o found.txt ## Output Formats ### Normal (default) CloudRip Scan Report ============================================================ Target: example.com Date: 2025-11-28T12:00:00+00:00 Total checked: 150 [FOUND] Non-Cloudflare IPs (3): mail.example.com v4:[192.168.1.1, 192.168.1.2, 192.168.1.3] ftp.example.com v4:[10.0.0.1] | v6:[2001:db8::1] [CLOUDFLARE] Behind Cloudflare (5): www.example.com v4:[104.16.1.1 [CF], 172.67.1.1 [CF]] | v6:[2606:4700::1 [CF]] ### JSON { "target_domain": "example.com", "scan_date": "2025-11-28T12:00:00+00:00", "total_checked": 150, "summary": { "found": 3, "cloudflare": 5, "not_found": 142, "errors": 0 }, "results": { ... } } ### CSV domain,ipv4,ipv4_cloudflare,ipv6,ipv6_cloudflare,status,error mail.example.com,192.168.1.1;192.168.1.2;192.168.1.3,,,,found, www.example.com,104.16.1.1;172.67.1.1,104.16.1.1;172.67.1.1,2606:4700::1,2606:4700::1,cloudflare, ## Version History See [CHANGELOG.md](CHANGELOG.md) for full version history. ## Need to Avoid Rate Limits? CloudRip makes many DNS queries. Cloudflare will eventually block your IP. **Solution:** Residential proxies rotate your IP address so you can scan without getting blocked. ### Recommended Proxy Service [![ScrapingAnt](https://img.shields.io/badge/Proxies-ScrapingAnt-0055FF?style=for-the-badge&logo=cloudflare&logoColor=white)](https://scrapingant.com/?ref=m2izy2z) **Why ScrapingAnt?** - 3M+ residential IPs across 100+ countries - Supports security testing workflows - Free 10,000 credits to start 👉 **[Sign up for ScrapingAnt](https://scrapingant.com/?ref=m2izy2z)** use code **moscovium** for 5% off. ## Legal Notice **Only use CloudRip on systems you have explicit permission to test.** This tool is designed for ethical security research, authorized penetration testing, and educational purposes only. **Unauthorized reconnaissance or scanning of systems is illegal** and may violate various laws including: - Computer Fraud and Abuse Act (CFAA) in the United States - Computer Misuse Act in the United Kingdom - Similar legislation in other jurisdictions **You are solely responsible for how you use this tool.** The author assumes NO LIABILITY for any misuse, damage, or illegal activity conducted with CloudRip. **Ethical Use Required:** - Obtain written authorization before testing - Respect rate limits and system resources - Follow responsible disclosure practices - Comply with all applicable laws and regulations ## License MIT License - See [LICENSE](LICENSE) for details.