It just a silly python script that either retrieves SSL Certificate based data from online sources, currently https://crt.sh/, https://certdb.com/, https://sslmate.com/certspotter/, and https://censys.io or given an IP range it will attempt to extract host information from SSL Certificates. If you want to use Censys.io you need to register for an API key.
How to install
git clone https://github.com/joda32/CertCrunchy.git
cd CertCrunchy
sudo pip3 install -r requirements.txtHow to use it?
Very simply -d to get hostnames for a specific domain
-D to get hostnames for a list of domains (just stuff it in a line-delimited text file)
-I to retrieve and parse certificates from hosts in a netblock / IP range (e.g. 192.168.0.0/24)
-T the thread count makes stuff faster, but don't over do it
-o Output file name
-f Output format CSV or JSON, CSV is the default
for the rest, I'm still working on those :)
API keys and configs
All API keys are stored in the api_keys.py file below is a list of supported APIs requiring API keys.
- Censys.oi https://censys.io
- VirusTotal https://www.virustotal.com/en/documentation/public-api/
- Hacks And Tools
- Pentest Tools Free
- Pentest Tools Android
- Hacking Tools For Windows 7
- Pentest Reporting Tools
- Hacking App
- Hacking Tools Windows
- Hack Tools For Mac
- Beginner Hacker Tools
- Pentest Tools Website
- Hack Tools Mac
- Hacking Tools Hardware
- Hacking Tools Github
- Pentest Tools Review
- Hacking Apps
- Pentest Tools For Ubuntu
- Hacker Tools 2020
- Pentest Tools Port Scanner
- Underground Hacker Sites
- Hacker Tools Github
- Pentest Tools Find Subdomains
Tidak ada komentar:
Posting Komentar