From 33e45d362df72862b59ddaaa05cee412fe44ff50 Mon Sep 17 00:00:00 2001
From: Alexandre Dulaunoy <a@foo.be>
Date: Mon, 2 Feb 2015 07:17:44 +0100
Subject: [PATCH] -f option added (SHA1 fingerprint only + destination IP
 address)

---
 bin/x509/pcap-sslcert.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/bin/x509/pcap-sslcert.py b/bin/x509/pcap-sslcert.py
index 3dd72dd..4c88719 100644
--- a/bin/x509/pcap-sslcert.py
+++ b/bin/x509/pcap-sslcert.py
@@ -15,6 +15,7 @@ import argparse
 
 argParser = argparse.ArgumentParser(description='Extract certificate to PEM format from an ssldump output')
 argParser.add_argument('-v', default=False, action='store_true', help='Verbose output')
+argParser.add_argument('-f', default=False, action='store_true', help='Print certificate SHA1 fingerprint and destination IP addresses only')
 argParser.add_argument('-r', default='-', help='Read from a file, default is stdin')
 args = argParser.parse_args()
 
@@ -53,6 +54,9 @@ for l in fileinput.input(args.r):
             print srcip+"<->"+dstip+":"+dstport
             print "Issuer: "+x509.get_issuer().CN
             print "CN: " + x509.get_subject().CN
-        print OpenSSL.crypto.dump_certificate(OpenSSL.crypto.FILETYPE_PEM, x509)
+        if not args.f:
+            print OpenSSL.crypto.dump_certificate(OpenSSL.crypto.FILETYPE_PEM, x509)
+        else:
+            print fp+","+dstip+","+x509.get_subject().CN
         certstring = ""
         y = ""