A Python client for the crt.sh website to retrieve subdomains information

Project description

CertSPY - A Crt.sh Python Client

CertSPY is a Python client for interfacing with the crt.sh website, allowing users to retrieve information on subdomains from SSL certificate transparency logs.

Certificate Transparency (CT) is an open framework aimed at improving the safety of SSL/TLS certificates by creating an open and auditable log of all certificates issued by certificate authorities. It allows for the detection of mistakenly or maliciously issued certificates. In the context of reconnaissance (recon), cybersecurity experts and ethical hackers can utilize CT logs as a rich source of information for mapping the internet landscape. They can extract data about the existence of subdomains of a target domain, revealing potential targets for further investigation or penetration testing. This kind of intel can be vital in identifying vulnerable endpoints, tracking the issuance of new certificates, and generally maintaining a strong security posture against potential cyber threats. The tool crafted in the script leverages CT logs accessible through the crt.sh platform to facilitate such recon efforts, aiding in the timely identification of potential security vulnerabilities.

Features

Query subdomain information from crt.sh.
Support for wildcard and expired certificate queries.
Command-line interface for easy usage.

Installation

You can clone the repository to your local machine using the following command:

git clone https://github.com/santosomar/certspy.git

Dependencies

Python 3.x
requests library

You can install the necessary Python packages using the following command:

pip install -r requirements.txt

Usage

You can use the client from the command line with the following syntax:

python crtsh_client.py secretcorp.org

This will query the crt.sh website for subdomains of secretcorp.org and pretty print the JSON output to the console.

$ python3 certspy.py -h
usage: certspy.py [-h] domain

    CertSPY: A Python client for the crt.sh website to retrieve subdomains information.
    Author: Omar Santos (@santosomar). 

positional arguments:
  domain      The domain to search for (e.g., websploit.org).

options:
  -h, --help  show this help message and exit

Contribution

Feel free to fork the repository and submit pull requests. For bug reports and feature requests, please create an issue in the GitHub issue tracker.

License

See LICENSE for more details.

Project details

Release history Release notifications | RSS feed

0.9.0

Sep 1, 2024

0.8.0

Sep 11, 2023

This version

0.7.0

Sep 11, 2023

0.6.0

Sep 11, 2023

0.5.0

Sep 11, 2023

0.4.0

Sep 11, 2023

0.3.0

Sep 11, 2023

0.2.0

Sep 11, 2023

0.1

Sep 11, 2023

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

certspy-0.7.0-py3-none-any.whl (3.4 kB view details)

Uploaded Sep 11, 2023 Python 3

File details

Details for the file certspy-0.7.0-py3-none-any.whl.

File metadata

Download URL: certspy-0.7.0-py3-none-any.whl
Upload date: Sep 11, 2023
Size: 3.4 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/4.0.2 CPython/3.11.4

File hashes

Hashes for certspy-0.7.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`8453f21ddaa8fb11c73c968b6ec5f174966cc624e2d9a6ab1eb3c329dfba1931`
MD5	`2a0225891875d87fb31ccbdcb01d94d8`
BLAKE2b-256	`747f19c609eea9ad776b8951fc970185cdbcddb3f776c80f6d02df784132e8a6`