adulau/crl-monitor
1
0
Fork 0
mirror of https://github.com/adulau/crl-monitor.git synced 2024-11-21 17:47:09 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge branch 'master' of https://github.com/adulau/crl-monitor

Browse source
This commit is contained in:
Alexandre Dulaunoy 2015-08-13 13:02:35 +00:00
commit 976aa74d2d
2 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
COLLECTOR.md
View file

@ -32,6 +32,13 @@ cd ssldump
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v
~~~~
To dump from JSON the raw certificates:
~~~~
cd ssldump
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -j | jq -r .pem
~~~~
Feeding the certificate store:

2
README.md
View file

@ -22,7 +22,7 @@ This command parses all the certificates and extract the subjects and imports t
Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen:
~~~~
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381 -s
~~~~
The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel.