mirror of
https://github.com/adulau/crl-monitor.git
synced 2024-12-22 16:56:01 +00:00
Merge branch 'master' of https://github.com/adulau/crl-monitor
This commit is contained in:
commit
976aa74d2d
2 changed files with 8 additions and 1 deletions
|
@ -32,6 +32,13 @@ cd ssldump
|
|||
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v
|
||||
~~~~
|
||||
|
||||
To dump from JSON the raw certificates:
|
||||
|
||||
~~~~
|
||||
cd ssldump
|
||||
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -j | jq -r .pem
|
||||
~~~~
|
||||
|
||||
Feeding the certificate store:
|
||||
|
||||
|
||||
|
|
|
@ -22,7 +22,7 @@ This command parses all the certificates and extract the subjects and imports t
|
|||
Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen:
|
||||
|
||||
~~~~
|
||||
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381
|
||||
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381 -s
|
||||
~~~~
|
||||
|
||||
The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel.
|
||||
|
|
Loading…
Reference in a new issue