search

Leeon123 / CC-attack

Using Socks4/5 or http proxies to make a multithreading Http-flood/Https-flood (cc) attack.
GNU General Public License v2.0
951 stars 419 forks source link

Sugestion to improve #61

Open andress134 opened 3 years ago

andress134 commented 3 years ago

Hello sir @Leeon123 Can make this script to detect all pages of target and spam all with requests? also attacking using combi proxy using http +socks4/5 in same time, send data using random get, post, head in same time, improving the tls to bypass cf header? using custom header to bypass cf page, a function to get cookies from header, to bypass cloudflare Also, what about using a lib based chromedriver, https://github.com/ultrafunkamsterdam/undetected-chromedriver just to get cookies, and bypass the cdn page ? or using this lib https://github.com/MatheusVp2/hCaptcha-Solver-MR can bypass cf uam + hcaptcha

The final question

it is possible to implement a library So, does the cc.py script call a library to get the real IP address of a target, and then send requests to that ip? created a function to call to this library and get real ip

  1. start cc.py select method ''bypass-ip''
  2. put target : https://cf-target.com
  3. sleep 60 sec (looking for real ip, if detect it)
  4. replace https://cf-target.com with real ip http://ip/
  5. start sending requests ?? https://github.com/MrH0wl/Cloudmare that lib can found real ip of alot websites

sorry for bad my english I hope you understand what I mean. Respect.

Leeon123 commented 3 years ago

I knew what did you mean, but nowadays I am busy in real life. I will try to update in summertime.

hydrogenoxide-user commented 3 years ago

I don't think it's a good idea to scan the real address before attacking.

andress134 commented 3 years ago

I don't think it's a good idea to scan the real address before attacking.

why not? i think is good ideea

Leeon123 commented 2 years ago

Finding ip behind cdn can use more efficient way such as searching ssl certificate or http title in some search engine. chromedriver is a good idea but....I am lazy. Someday i will add them.

jkeridLNX3 commented 2 years ago

Very nice Leeon,hard work / good jobs result,appreciated your work

On Thu, 24 Mar 2022 at 07:43, Leeon123 @.***> wrote:

Finding ip behind cdn can use more efficient way such as searching ssl certificate or http title in some search engine. chromedriver is a good idea but....I am lazy. Someday i will add them.

— Reply to this email directly, view it on GitHub https://github.com/Leeon123/CC-attack/issues/61#issuecomment-1077537773, or unsubscribe https://github.com/notifications/unsubscribe-auth/AUHQDCYEV7IJQ4KUGPZVG5TVBRINDANCNFSM47EZKYXQ . You are receiving this because you commented.Message ID: @.***>

swordapi commented 2 years ago

Please dont make chromedriver obligatory so it can be used on all devices bc i had problems with it thx. My respect.