2018-04-18 09:48:19 +04:30
# SSL Checker
#### Simple Python script that collects SSL information from hosts
2018-04-18 16:32:41 +04:30
## About
2018-04-18 09:48:19 +04:30
2018-04-21 16:05:41 +04:30
It's a simple script running in python that collects SSL information then it returns the group of information in JSON. It can also connects trough your specified SOCKS server.
2018-04-18 09:48:19 +04:30
2018-04-18 16:32:41 +04:30
## Requirements
You only need to installl pyOpenSSL:
`pip install pyopenssl`
## Usage
2018-04-18 09:48:19 +04:30
2018-04-21 09:39:24 +04:30
```
2018-04-19 14:35:50 +04:30
./ssl_checker.py -h
2018-04-21 16:05:41 +04:30
usage: ssl_checker.py -H [HOSTS [HOSTS ...]] [-s HOST:PORT] [-j] [-p] [-h]
2018-04-19 14:35:50 +04:30
optional arguments:
-H [HOSTS [HOSTS ...]], --host [HOSTS [HOSTS ...]]
Hosts as input separated by space
2018-04-21 16:05:41 +04:30
-s HOST:PORT, --socks HOST:PORT
Enable SOCKS proxy for connection
2018-04-19 14:35:50 +04:30
-j, --json Enable JSON in the output
2018-04-19 21:11:32 +04:30
-p, --pretty Print pretty and more human readable Json
2018-04-19 14:35:50 +04:30
-h, --help Show this help message and exit
```
2018-04-18 09:59:32 +04:30
Port is optional here. The script will use 443 if not specified.
2018-04-18 09:48:19 +04:30
2018-04-19 14:35:50 +04:30
`-j, --json` Use this if you want to only have the result in JSON
2018-04-21 16:48:06 +04:30
`-p, --pretty` Use this with `-j` to print indented and human readable JSON
2018-04-19 21:11:32 +04:30
2018-04-21 16:05:41 +04:30
`-s, --socks` Enable connection through SOCKS server
2018-04-19 14:35:50 +04:30
`-H, --host` Enter the hosts separated by space
`-h, --help` Shows the help and exit
2018-04-21 16:05:41 +04:30
## Censored?
2018-04-21 16:08:57 +04:30
No problem. Pass `-s/--socks` argument to the script with `HOST:PORT` format to connect through SOCKS proxy.
2018-04-21 16:05:41 +04:30
```
narbeh@narbeh -xps:~/ssl-checker$ ./ssl_checker.py -H facebook.com
Analyzing 1 host(s):
--------------------
[-] facebook.com Failed: [Errno 111] Connection refused
----
0 successful and 1 failed
narbeh@narbeh -xps:~/ssl-checker$ ./ssl_checker.py -H facebook.com -s localhost:9050
Analyzing 1 host(s):
--------------------
[+] facebook.com
Issued domain: *.facebook.com
Issued by: DigiCert Inc
Valid from: 2017-12-15
Valid to: 2019-03-22 (334 days left)
Validity days: 462
Certificate S/N: 14934250041293165463321169237204988608
Certificate version: 2
Certificate algorithm: sha256WithRSAEncryption
Expired: False
----
1 successful and 0 failed
```
2018-04-19 14:35:50 +04:30
2018-04-18 16:32:41 +04:30
## Example
2018-04-18 09:48:19 +04:30
2018-04-21 09:39:24 +04:30
```
2018-04-21 14:11:41 +04:30
narbeh@narbeh -xps:~/ssl-checker$ ./ssl_checker.py -H narbeh.org google.com:443 facebook.com
2018-04-21 16:05:41 +04:30
Analyzing 3 host(s):
2018-04-21 14:11:41 +04:30
-------------------
[+] narbeh.org
Issued domain: narbeh.org
Issued by: Let's Encrypt
Valid from: 2018-04-21
Valid to: 2018-07-20 (89 days left)
Validity days: 90
Certificate S/N: 338163108483756707389368573553026254634358
Certificate version: 2
Certificate algorithm: sha256WithRSAEncryption
Expired: False
----
[+] google.com
Issued domain: *.google.com
Issued by: Google Inc
Valid from: 2018-03-28
Valid to: 2018-06-20 (59 days left)
Validity days: 83
Certificate S/N: 2989116342670522968
Certificate version: 2
Certificate algorithm: sha256WithRSAEncryption
Expired: False
----
2018-04-19 11:28:07 +04:30
[-] facebook.com Failed: [Errno 111] Connection refused
2018-04-21 14:11:41 +04:30
----
2018-04-19 11:28:07 +04:30
2018-04-21 14:11:41 +04:30
2 successful and 1 failed
2018-04-19 14:35:50 +04:30
```
2018-04-21 16:05:41 +04:30
Example only with the `-j/--json` and `-p/--pretty` arguments which shows the JSON only. Perfect for piping to another tool.
2018-04-19 14:35:50 +04:30
2018-04-21 09:39:24 +04:30
```
2018-04-21 10:43:32 +04:30
narbeh@narbeh -xps:~/ssl-checker$ ./ssl_checker.py -j -p -H narbeh.org:443 test.com
2018-04-21 09:54:44 +04:30
{'narbeh.org': {'cert_alg': u'sha256WithRSAEncryption',
'cert_exp': False,
2018-04-21 10:43:32 +04:30
'cert_sn': 338163108483756707389368573553026254634358L,
2018-04-21 09:54:44 +04:30
'cert_ver': 2,
2018-04-21 10:43:32 +04:30
'issued_to': u'narbeh.org',
2018-04-21 09:54:44 +04:30
'issuer_c': u'US',
'issuer_cn': u"Let's Encrypt Authority X3",
'issuer_o': u"Let's Encrypt",
'issuer_ou': None,
2018-04-21 10:43:32 +04:30
'valid_from': '2018-04-21',
'valid_till': '2018-07-20',
2018-04-21 09:54:44 +04:30
'validity_days': 90},
'test.com': {'cert_alg': u'sha256WithRSAEncryption',
'cert_exp': False,
'cert_sn': 73932709062103623902948514363737041075L,
'cert_ver': 2,
2018-04-21 10:43:32 +04:30
'issued_to': u'www.test.com',
2018-04-21 09:54:44 +04:30
'issuer_c': u'US',
'issuer_cn': u'Network Solutions DV Server CA 2',
'issuer_o': u'Network Solutions L.L.C.',
'issuer_ou': None,
'valid_from': '2017-01-15',
'valid_till': '2020-01-24',
'validity_days': 1104}}
2018-04-19 21:11:32 +04:30
```
