IP Rotate

Note: Where applicable, usage of this extension should comply with Amazon's Customer Service Policy for Penetration Testing.

This extension automatically rotates IP addresses by routing traffic through AWS API Gateway endpoints across multiple regions. Each request is sent through a different regional gateway, effectively changing the source IP address to bypass IP-based blocking mechanisms.

Features

• Spin up API Gateways across 10 AWS regions for maximum IP diversity
• Automatic rotation through endpoints on each request
• Support for both HTTP and HTTPS protocols
• Real-time status monitoring with enable/disable toggle
• Configurable target domain specification
• Automatic resource cleanup when disabled
• Built-in AWS credentials management

Usage

1. Configure AWS credentials with API Gateway permissions in the extension interface
2. Specify the target domain you wish to route traffic through
3. Select the protocol (HTTP or HTTPS) based on your target
4. Choose which AWS regions to utilize for the IP pool
5. Click Enable to create API Gateway endpoints
6. Send requests normally → traffic will automatically rotate through different IP addresses
7. Click Disable when finished to clean up AWS resources

The extension is particularly useful for bypassing rate limiting, brute force protection, and WAF rules that implement IP-based blocking. All requests to the configured target domain are automatically intercepted and routed through the rotating gateway endpoints.

For more information see Bypassing IP Based Blocking Using AWS