lunes, 20 de abril de 2020

CertCrunchy - Just A Silly Recon Tool That Uses Data From SSL Certificates To Find Potential Host Names


It just a silly python script that either retrieves SSL Certificate based data from online sources, currently https://crt.sh/, https://certdb.com/, https://sslmate.com/certspotter/, and https://censys.io or given an IP range it will attempt to extract host information from SSL Certificates. If you want to use Censys.io you need to register for an API key.

How to install
git clone https://github.com/joda32/CertCrunchy.git
cd CertCrunchy
sudo pip3 install -r requirements.txt

How to use it?
Very simply -d to get hostnames for a specific domain
-D to get hostnames for a list of domains (just stuff it in a line-delimited text file)
-I to retrieve and parse certificates from hosts in a netblock / IP range (e.g. 192.168.0.0/24)
-T the thread count makes stuff faster, but don't over do it
-o Output file name
-f Output format CSV or JSON, CSV is the default
for the rest, I'm still working on those :)

API keys and configs
All API keys are stored in the api_keys.py file below is a list of supported APIs requiring API keys.
  1. Censys.oi https://censys.io
  2. VirusTotal https://www.virustotal.com/en/documentation/public-api/

More information


  1. Hacker Tools
  2. Hacking Tools Pc
  3. Hacker Tools 2019
  4. Pentest Tools Subdomain
  5. Hacking Tools
  6. Pentest Tools Port Scanner
  7. Pentest Tools For Mac
  8. Hacker Tools For Windows
  9. Wifi Hacker Tools For Windows
  10. Hacking Tools Github
  11. Pentest Tools Subdomain
  12. Hacking Apps
  13. Hacker Tools Windows
  14. Hacking Tools For Windows 7
  15. Hacker Tools Linux
  16. Hacking Tools And Software
  17. Pentest Tools Bluekeep
  18. Underground Hacker Sites

No hay comentarios:

Publicar un comentario