Categories: Kali Linux

CertCrunchy – Silly Recon Tool That Uses Data From SSL Certificates To Find Potential HostNames

CertCrunchy is just a silly python script that either retrieves SSL Certificate based data from online sources, currently https://crt.sh/, https://certdb.com/, https://sslmate.com/certspotter/ and https://censys.io or given a IP range it will attempt to extract host information from SSL Certificates. If you want to use Censys.io you need to register for a API key.

Also Read Hcxdumptool – Small Tool To Capture Packets From WLAN Devices

How To Install CertCrunchy

git clone https://github.com/joda32/CertCrunchy.git
cd CertCrunchy
sudo pip3 install -r requirements.txt

How to use it?

Very simply -d to get hostnames for specific domain

-D to get hostnames for a list of domains (just stuff it in a line delimited text file)
-i to retrieve and parse certificates from hosts in a netblock / ip range (e.g. 192.168.0.0/24)
-T the thread count, makes stuff faster, but don’t over do it
-O to set the timeout on HTTP api requests in seconds (default is 3 seconds)
-o Output file name
-f Output format csv or json, csv is the default

API Keys & Configs

All API keys are stored in the api_keys.py file, below is a list of supported APIs requiring API keys.

Related

How SSL Certificate Validation Works

August 19, 2020

In "Cyber security"

Want to protect multiple domains with a single SSL certificate? Here is your definitive guide.

August 23, 2020

In "Kali Linux"

SSL Bypass : Utilizing The Universal Android Security Bypass Suite For Penetration Testing

February 12, 2025

In "Android Security"

R K

Next Homoglyphs - Get Similar Letters, Convert To ASCII, Detect Possible Languages & UTF-8 Group »

Previous « Hcxdumptool - Small Tool To Capture Packets From WLAN Devices

Share

Published by

R K

Tags: CertCrunchysslSSL Certificate

8 years ago

Recent Posts

News

Microsoft Unveils “Project Helix”- A Next-Gen Xbox Merging Console and PC Gaming

Microsoft has officially unveiled its latest gaming venture, Project Helix, a next-generation gaming console set…

3 hours ago

OSINT

Free Email Lookup Tools and Reverse Email Search Resources

In the digital era, an email address can reveal much more than just a contact…

4 hours ago

Information Gathering

Mr.Holmes – A Comprehensive Guide To Installing And Using The OSINT Tool

Mr.Holmes is an OSINT (Open Source Intelligence) tool designed to gather valuable information from public…

4 hours ago

Tutorials

Whatweb – A Scanning Tool to Find Security Vulnerabilities in Web App

WhatWeb is the perfect name for this tool. It answers the question, “What is that…

4 hours ago

Forensics

Whapa – Comprehensive Guide To The WhatsApp Forensic Toolset

In an era dominated by messaging apps, WhatsApp has become a key platform for personal…

5 hours ago

Cyber security

How OpenClaw Works

Imagine if you had a super-powered assistant who could automatically handle all the boring, repetitive…

1 week ago

L