{"id":24284668,"url":"https://github.com/waived/cloudflare-bypass","last_synced_at":"2025-07-09T17:35:43.167Z","repository":{"id":271665103,"uuid":"914190668","full_name":"waived/cloudflare-bypass","owner":"waived","description":"HTTP DDoS attack | Bypass Cloudflare CDN/WAF | Integrated SOCKS4 support | Header randomization/proxification","archived":false,"fork":false,"pushed_at":"2025-03-20T14:59:55.000Z","size":91,"stargazers_count":3,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-20T15:45:11.960Z","etag":null,"topics":["bypass-firewall","cache-busting","cloudflare-bypass","cloudflare-bypass-script","http-bypass","http-ddos","proxy-ddos","python3","socks4-proxy"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/waived.png","metadata":{"files":{"readme":"README.txt","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-01-09T05:46:29.000Z","updated_at":"2025-03-20T14:59:58.000Z","dependencies_parsed_at":"2025-01-09T06:52:53.058Z","dependency_job_id":null,"html_url":"https://github.com/waived/cloudflare-bypass","commit_stats":null,"previous_names":["waived/cloudflare-bypass"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/waived/cloudflare-bypass","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/waived%2Fcloudflare-bypass","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/waived%2Fcloudflare-bypass/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/waived%2Fcloudflare-bypass/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/waived%2Fcloudflare-bypass/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/waived","download_url":"https://codeload.github.com/waived/cloudflare-bypass/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/waived%2Fcloudflare-bypass/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":264502279,"owners_count":23618567,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bypass-firewall","cache-busting","cloudflare-bypass","cloudflare-bypass-script","http-bypass","http-ddos","proxy-ddos","python3","socks4-proxy"],"created_at":"2025-01-16T05:19:26.799Z","updated_at":"2025-07-09T17:35:41.797Z","avatar_url":"https://github.com/waived.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"  /////////////////////////////////////////////\n /// CLOUDFLARE CDN/WAF DDOS BYPASS SCRIPT ///\n/////////////////////////////////////////////\n\nOverview:\nBecause of the increased need for secure, many modern websites implement some\nsort of reverse-proxy technology. At the forefront of this technology, is most\ncommonly found: CloudFlare. This organization offers many reverse-proxy services\nsuch as Cloudflare's CDN (Content Delivery Network) and WAF (Web Application\nFirewall). Instead of a domain pointing to the IP Address of the \"origin server\"\n(the true device an attack is attempting to attack) the domain points to one of\nthese services.\n\nThis means each request sent must be inspected and assuming its not malicious or\nmalformed in any way, will be passed to the origin server. That request is processed,\nsent to the reverse proxy, and the reverse proxy then sends the response back to the\nclient.\n\nDuring instances of abuse (DDoS, wordlist attacks, URL tampering, etc) Cloudflare\nwill begin blocking these requests, either throwing them out altogether or by\nenabling rate-limit techniques to buffer an over-influx of traffic. This can\neasily defeat basic HTTP-based Denial-of-Service attacks.\n\nThis script however aims to bypass Cloudflare services and the many techniques\nimplemented when trying to mitigate HTTP DDoS attacks. It uses proxification\n(via public SOCKS4 proxies), header randomization, and a finite amount of requests\nper utilized proxy to forward dynamic and abusive HTTP traffic directly to the\norigin server. Because each request is unique (random user-agent, URL refer, etc)\nthe requests will not be cached and will always take up server-side resources\nat the origin.\n\nNote:\nThis script can also bypass Cloudflare UAM (Under Attack Mode). Although this\nscript is designed to be used against Cloudflare services, it also works against\nservices belonging to Akamai, BlazingFast, Amazon CloudFront (part of AWS), etc.\n\nRequirements:\nThis script requires a few Python libraries to run that may not be installed on\nyour system. These requirements can be found in the \"requirements.txt\" file.\n\nThey can be installed via: \"pip install -r requirements.txt\"\n\nOr by manually installing the latest version:\n        pip install requests[socks]\n        pip install PySocks\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwaived%2Fcloudflare-bypass","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwaived%2Fcloudflare-bypass","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwaived%2Fcloudflare-bypass/lists"}