Giter Club home page Giter Club logo

pullcert's Introduction

pullcert

pullcert helps you pull certificates from web hosts

Introduction

pullcert is a simple tool that pulls certificates from web hosts, relying on OpenSSL and Bash. Its main purpose is to take the difficulty out of this process and offer one of the following:

  • a human-readable parsed version of the certificate
  • an x509 representation of the certificate

It has been designed to be simple to use, easily incorporatable into your scripts and to stay out of your way.

Usage

A quick example of getting certificate details with pullcert:

pullcert.sh -snioff thatstel.la

This produces an output like the following:

[*] pullcert 1.1
[*] https://github.com/ThatStella7922/pullcert

[Info] Will now retrieve the certificate for thatstel.la!
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:22:ac:96:e6:25:dc:37:86:6f:14:52:2c:5c:f9:5e:c1:89
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jan  8 20:12:07 2024 GMT
            Not After : Apr  7 20:12:06 2024 GMT
        Subject: CN=thatstel.la
        Subject Public Key Info:
            [truncated for brevity]

In some cases, you may want the x509 representation of the certificate instead of human-readable details.

A quick way to get those is as follows:

pullcert.sh -snioff thatstel.la raw

This produces an output like the following:

[*] pullcert 1.1
[*] https://github.com/ThatStella7922/pullcert

[Info] Will now retrieve the raw certificate for thatstel.la!
-----BEGIN CERTIFICATE-----
MIIF8zCCBNugAwIBAgISAyKsluYl3DeGbxRSLFz5XsGJMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
    [truncated for brevity]

For more advanced usage including SNI support, more info about x509 representation and more, see the full usage details below.

pullcert's full usage details

This help is produced when running pullcert.sh with the -h argument (or no argument).

[*] pullcert 1.1
[*] https://github.com/ThatStella7922/pullcert

[?] pullcert helps you pull certificates from web hosts
[?]
[?] Basic example:
[?]  pullcert.sh -snioff thatstel.la
[?]
[?] Valid arguments:
[?]  pullcert.sh [sni arg] [host] [hostname if SNI] [raw]
[?]
[?] Full documentation:
[?] -h or --h    Show this help.
[?] -v or --v    Print the version and exit
[?]
[?] SNI argument
[?] SNI is when multiple SSL hosts are sharing a single IP address.
[?] -snion       Enables SNI support
[?] -snioff      Disables SNI support
[?]
[?] Host argument
[?] This argument should be the host you want to pull the certificate from.
[!] Do not specify the protocol (such as https://), just the host.
[!] Cannot be a subpage like thatstel.la/example, if you want to pull the
[!] certificate for a subpage, enable SNI and use the hostname argument.
[?]
[?] Hostname argument (only needed if SNI is enabled)
[?] This argument lets you specify the correct hostname for the certificate
[?] in the case of the remote server using SNI.
[!] Do not specify the protocol (such as https://), just the hostname.
[!] If you are trying to pull the certificate for a subpage, enable SNI and
[!] pass your subpage address like below:
[!]  pullcert.sh -snion thatstel.la thatstel.la/example
[?]
[?] Raw argument
[?] Retrieves the raw x509 certificate instead of the human-readable data.
[?] To use this argument, simply pass 'raw' as the last argument like below:
[?]  pullcert.sh -snioff thatstel.la raw
[?]  pullcert.sh -snion thatstel.la thatstel.la/example raw
[?]
[?] Silent mode
[?] Will disable all pullcert output except for the raw x509 certificate.
[?] To use it, pass '-silent' as the very first argument. You do not need to
[?] pass the raw argument when using silent mode. Example:
[?]  pullcert.sh -silent -snion thatstel.la thatstel.la/example

Requirements and Compatibility

pullcert requires Bash and OpenSSL with s_client support, and should run on any OS that can provide these dependencies.

pullcert's People

Contributors

thatstella7922 avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.