mirror of
https://github.com/adulau/crl-monitor.git
synced 2024-11-22 01:57:05 +00:00
Merge branch 'master' of https://github.com/adulau/crl-monitor
This commit is contained in:
commit
976aa74d2d
2 changed files with 8 additions and 1 deletions
|
@ -32,6 +32,13 @@ cd ssldump
|
||||||
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v
|
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v
|
||||||
~~~~
|
~~~~
|
||||||
|
|
||||||
|
To dump from JSON the raw certificates:
|
||||||
|
|
||||||
|
~~~~
|
||||||
|
cd ssldump
|
||||||
|
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -j | jq -r .pem
|
||||||
|
~~~~
|
||||||
|
|
||||||
Feeding the certificate store:
|
Feeding the certificate store:
|
||||||
|
|
||||||
|
|
||||||
|
|
|
@ -22,7 +22,7 @@ This command parses all the certificates and extract the subjects and imports t
|
||||||
Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen:
|
Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen:
|
||||||
|
|
||||||
~~~~
|
~~~~
|
||||||
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381
|
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381 -s
|
||||||
~~~~
|
~~~~
|
||||||
|
|
||||||
The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel.
|
The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel.
|
||||||
|
|
Loading…
Reference in a new issue