Blazy - Bruteforce, CSRF and Clickjacking with Cloudflare and WAF Bypass


  •  Easy target selections
  •  Smart form and error detection
  •  CSRF and Clickjacking Scanner
  •  Cloudflare and WAF Detector
  •  90% accurate results
  •  Checks for login bypass via SQL injection
  •  Multi-threading
  •  100% accurate results
  •  Better form detection and compatibility


  • Beautiful Soup
  • Mechanize


Open your terminal and enter
git clone
Now enter the following command
cd Blazy
Lets install the required modules before running Blazy
pip install -r requirements.txt
Now run Blazy by entering
Now enter your desired login page URL and Blazy will do its thing: 
Powered by Blogger.