(adsbygoogle = window.adsbygoogle || []).push({}); Aight, cos most of the "1337 h4x0rz" today think DoS/DDoS is totally acceptable, I thought fuck it. Nah, but seriously, sometimes having the real IP of a website can be handy if you need to have a direct connection to bypass CF as it can make websites slugglish/slow. And you can bypass the Cloudflare WAF too.

CF's main selling point (if we can call it that) is that it stands between your web server and the internet using DNS rules to direct traffic into their servers first, filter out "bad" traffic (like bots, attackers) and filter out attacks (up to a certain power on free plans). This means if you dank hackers use ping to return the IP address, you get a Cloudflare IP. There are several methods to getting the real IP, however.

#1. See if they set up their DNS rules correctly
This is the least likely to work. Sometimes when people set up their DNS rules, they leave all the ones CF adds automagically, like direct-connect, ftp etc. In these cases, you can simply just ping direct-connect.website.com or ftp.website.com. This ain't always gonna work though. If they've enabled CF on these subdomains or if they've deleted them, son.

#2. Make the target website send an email
This is one not a lot of people think about. When emails are sent, in the raw email headers you can nearly always find the target server's IP address. Take the following as an example:

You must login or register to view this content.

Notably, this chunk of headers:

    Received: from vps182061.ovh.net (144.ip-37-187-224.eu. [37.187.224.144])

Where 37.187.224.144 is the target webserver's IP address. You might sometimes find a few IP addresses, it's a bit of trial and error but you'll normally find them there, unless the target webserver uses an external SMTP service which hides the target webserver's IP address. If that happens, there's always option #3.

#3. Use an image with an IP logger in it
This is best for websites set up that allow you to change avatars by giving the system a URL to an image. Just make an image that has an IP logger in it (You must login or register to view this content.) and put the link to it in the URL field and save. You should get the target webserver's IP address using this.

There's a few methods I haven't gone over including doing reverse DNS lookups and whatnot to find other non-CF-protected websites on the same server, but these three methods are more than likely to work. Stay safe kids.

You can always just send a fake dcma to cloudflare :' - works every time (for free users)

kewl, now im 1337 just liek u! ! !

True, but it does have to have at least some form of proof too :'

You know most of the time you can just resolve the cloudflare ip using this website right? You must login or register to view this content.