Skip to content
/ enum_ssl Public

Enumerate SubjectAlternativeName (SAN) entries in X509 certificates from SSL/HTTPS servers or files

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

oldrho/enum_ssl

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
enum_ssl.py
enum_ssl.py
 
 

Repository files navigation

enum_ssl

Description

Made for simple enumeration of CN and Subject Alternative Name (SAN) records in x509 certificates on webservers.

Usage

As a CLI tool

usage: enum_ssl.py [-h] [-f FILE] [-i IP] [-o WRITEFILE] [hostname] [port]

Download and parse SSL certificates from servers

positional arguments:
  hostname              Hostname or IP of the target server
  port                  Port number

optional arguments:
  -h, --help            show this help message and exit
  -f FILE, --file FILE  Load PEM encoded certificate from a file
  -i IP, --ip IP        IP to connect to (can be different than the hostname)
  -o WRITEFILE, --writefile WRITEFILE
                        Write certificate to file

Example

> ./enum_ssl.py google.com
*.google.com
*.android.com
*.appengine.google.com
*.bdn.dev
*.cloud.google.com

As a module

import enum_ssl

# Download an X509 certificate from an SSL/HTTPS connection
cert = enum_ssl.download('google.com', 443)

# Decode an X509 certificate and extract the CN and SNI hostnames
hosts = enum_ssl.get_hostnames(cert)

About

Enumerate SubjectAlternativeName (SAN) entries in X509 certificates from SSL/HTTPS servers or files

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages