what do you think of these things?
is wordops protected enough?
I take 30 minutes to read twice the Sion post but still don't know how to get the real IP.
Tested the command curl -k https://wordops.net -v
But where is the real IP??
`root@ns1:~# curl -k https://wordops.net -v
GET / HTTP/2
Cloudflare does protect enough because if you're using the proxy service at the DNS level, it will hide your IP entirely. Only specific ports are even allowed to pass through.
Well.. you can try to use Kali Linux / CloudFail tool, to bypass Cloudflare DNS and find out origin server IP 🙂
PEARSONIFIED CloudFail only works on misconfigured domains. If your domain is correctly configured at Cloudflare, it won't discover anything.
PEARSONIFIED BTW, CloudFail uses TOR to make its requests. Cloudflare also allows one to completele prevent access from TOR to a given site, using free firewall rules.
portofacil What I said was, "you can try", I didn't said, nor promised, that CloudFail will work in all situations. CloudFail also works without TOR so it's not an issue if you have a strong VPN connection (for safety reasons ofc) + Virtual Machine running Kali Linux.
Hosted by VirtuBox