adulau/crl-monitor
1
0
Fork 0
mirror of https://github.com/adulau/crl-monitor.git synced 2024-11-21 17:47:09 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge branch 'master' of https://github.com/adulau/crl-monitor

Browse source
This commit is contained in:
Alexandre Dulaunoy 2015-08-13 13:02:35 +00:00
commit 976aa74d2d
2 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
COLLECTOR.md
View file

@ -32,6 +32,13 @@ cd ssldump
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -v
~~~~ ~~~~
To dump from JSON the raw certificates:
~~~~
cd ssldump
sudo ./ssldump -ANn -i eth1 | python ../crl-monitor/bin/x509/pcap-sslcert.py -j | jq -r .pem
~~~~
Feeding the certificate store: Feeding the certificate store:

2
README.md
View file

@ -22,7 +22,7 @@ This command parses all the certificates and extract the subjects and imports t
Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen: Then you need to import the mapping between scanned IP addresses and the fingerprint of the X.509 certificate seen:
~~~~ ~~~~
zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381 zcat ./scans-io/data/20141208_hosts.gz | python hoststoredis.py -p 6381 -s
~~~~ ~~~~
The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel. The above procedure can be repeated with additional scans or you can import multiple scans in parallel using GNU Parallel.