Commit graph

37 commits

Author SHA1 Message Date
d2a4c8c6f4 Importing ICSI results into Redis 2015-10-02 19:57:55 +00:00
6bc6d92ca9 Initial version of the ICSI Notary lookup of FP 2015-09-21 18:28:47 +00:00
e4344dcfae cfetch/ API added to fetch and parse certificate from the datastore
Sample query:

curl http://127.0.0.1:8888/cfetch/37ffbb160d4c97c42f5126bebc9c18eeffe5ede3

{
  "pem": "-----BEGIN CERTIFICATE-----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\n4DX9WTUxVPEg8uYgUktztLGlRTK9\n-----END CERTIFICATE-----\n",
  "info": {
    "subject": "C=--, ST=WA, L=Seattle, O=MyCompany, OU=MyOrg, CN=localhost.localdomain/emailAddress=root@localhost.localdomain",
    "not_before": "2013-10-09T09:38:57+00:00",
    "issuer": "C=--, ST=WA, L=Seattle, O=MyCompany, OU=MyOrg, CN=localhost.localdomain/emailAddress=root@localhost.localdomain",
    "fingerprint": "16C25D401F35DD52FB4AEC85EB1F1A28CE16F961",
    "key": "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmE+M/HAURvtG9JPcKndf\nyZ0UhGDHUg8Y+UHxKbOomscUh55EGkxdhdFeSyOTdugZ4eADf3ssCrvv0kopljay\n3yOI9Q3nWEMO4Zk0B5fA8XLuY4+pRPakskyJeoKHkY9tiIUxAaPCrwj2aiNFqnt0\nCd9w2h0eAz1oaJNoXlOxINRFkyB2sfMg8e1XKxQFBrjK5fANqLd++HrWOeV3RxCf\n8pWJMBK4rTz8p0dDMWhaN1n66kP6qbUxwqtTe1YZ4t/Gy87u2g7WcI8XH9orZpqz\ndt5H+mswfKK/CIcGPqj5xx4ad+VvhMM+bijw5DMCttZA0Okv6T12nRuzFe9noJmw\nZQIDAQAB\n-----END PUBLIC KEY-----\n",
    "keylength": 2048,
    "not_after": "2023-10-07T09:38:57+00:00",
    "extension": {
      "basicConstraints": "CA:TRUE",
      "authorityKeyIdentifier": "keyid:9B:30:B6:D6:7C:04:26:73:F8:98:49:0A:34:6E:78:BD:E2:F5:0B:38\nDirName:/C=--/ST=WA/L=Seattle/O=MyCompany/OU=MyOrg/CN=localhost.localdomain/emailAddress=root@localhost.localdomain\nserial:8A:3B:0E:73:A0:DD:23:E9\n",
      "subjectKeyIdentifier": "9B:30:B6:D6:7C:04:26:73:F8:98:49:0A:34:6E:78:BD:E2:F5:0B:38"
    }
  }
}
2015-08-27 09:35:09 +00:00
55dd12efc8 Add a cquery API to query per SHA1 fingerprint of a certificate
Sample output:

curl http://127.0.0.1:8888/cquery/37ffbb160d4c97c42f5126bebc9c18eeffe5ede3
{"seen": ["149.13.33.195", "149.13.33.194"], "hits": 2, "certificate": "37ffbb160d4c97c42f5126bebc9c18eeffe5ede3"}
2015-08-26 19:28:40 +00:00
436afcc6ad Better JSON output (subjects and certificate fp separated) 2015-08-17 09:48:58 +00:00
28c6ea71c4 Verbose output of the data store 2015-08-13 13:01:53 +00:00
b54dc68991 Handle OpenSSL errors 2015-04-24 08:08:27 +02:00
e2c3629964 Typo fixed 2015-04-23 14:00:43 +02:00
0d90f20ed7 Handle unset DN 2015-04-23 13:59:00 +02:00
e91731d82b Index bug fixed 2015-04-22 17:08:28 +02:00
cfe59cc00c Handle broken output format 2015-04-22 17:04:25 +02:00
685b0b5ae9 -i option added - Indexing subject field 2015-02-04 20:58:59 +01:00
5bfca0f3d9 Sample script to search the full-text index 2015-02-04 20:58:27 +01:00
8ea59f8a68 Output compatible with scans.io format (host and certs) 2015-02-02 08:10:44 +01:00
41c032b930 Follow scans.io format 2015-02-02 07:59:35 +01:00
463c0c1d6a Bug fixed when exception is raised (int->str) 2015-02-02 07:56:41 +01:00
7b855b2969 set of IP addresses per fingerprint added 2015-02-02 07:52:49 +01:00
1acfcb54e3 JSON output added (-j option) 2015-02-02 07:38:17 +01:00
33e45d362d -f option added (SHA1 fingerprint only + destination IP address) 2015-02-02 07:17:44 +01:00
19ee42fa3e Partial match group skipped 2015-02-01 14:41:15 +01:00
8411b99e9c Include source and destination IP addresses 2015-02-01 14:32:25 +01:00
b1643dab64 Verbose option added (-v) to show issuer CN and subject CN 2015-02-01 14:03:16 +01:00
b1bdae9f89 Option to read from file added 2015-02-01 13:16:30 +01:00
9ba1adc8f4 Improve regexp performance 2015-02-01 13:04:27 +01:00
65f283253e Dump X509 certificates from ssldump pcap tool 2015-01-31 18:24:31 +01:00
f5a7a68a4c Verbose mode added 2015-01-30 22:17:11 +01:00
cdbccbc256 Option to store certificate in keystore added 2015-01-30 22:00:18 +01:00
80049f8f30 Bug fix: process next URL skip failing ones even if not in verbose 2015-01-11 18:05:00 +01:00
7d9f1ca0b8 Exlude IPv6 addresses until now 2015-01-10 20:43:14 +01:00
9aa4329918 IP lookup HTTP server added 2015-01-08 22:22:50 +01:00
7a46ffd8e6 JSON output added 2015-01-08 20:51:03 +01:00
010bc6d520 Lookup IP subnet for known fingerprints and X.509 subjects 2015-01-02 16:47:39 +01:00
ef0e2cba0f X509 DN cache database import scripts added 2014-12-31 16:42:46 +01:00
0a81ef6467 Encoding issue with JSON dumps 2014-12-30 21:21:45 +01:00
47996ec87a Analyze CRLs stored in a directory and dump a JSON 2014-12-30 19:25:32 +01:00
c1671d76b3 Grab and Store CRL 2014-12-30 09:45:25 +01:00
f205a23a19 Tool to dump CRL and OCSP URI from DER encoded X.509 certificate (in Base64) 2014-12-29 14:49:30 +01:00