Easy P4: Cloudflare Bypass, Origin IP Found (Part 1)

Introduction

Hi, myself Suraj Sharma, in this short write-up, I’ll show you various methods to find the origin IP of a website hidden behind a Cloudflare Web Application Firewall (WAF).

Step-by-Step Guide

1. Initial Check with Extensions

• Wappalyzer Extension: Identify the technologies used by the target website. Example: Amazon CloudFront CDN.
• Shodan Extension: Obtain the website’s IP and check for direct access. If it returns a CloudFront error, the direct IP isn’t accessible.

2. Using Command-Line Tools

• Ping Command: Check the IP associated with the domain.
• DNS Recon: Perform reverse DNS lookups to find potential origin IPs.

3. Shodan Dorks

• Use Shodan to find domain-related information. Access these IPs to check if they bypass the WAF.

Contd. in part 2:
That’s all for this one, I’ll show you more advanced techniques in part 2. Stay tuned, Happy Hacking!