ssl-checker/ssl_checker.py

#!/usr/bin/env python
import socket
import sys

from ssl import create_default_context
from datetime import datetime


class TextColor:
    """Text colors."""

    RED = '\033[31m'
    GREEN = '\033[32m'
    YELLOW = '\033[33m'
    RESET = '\033[39m'


def get_cert(host, port):
    """Connection to the host."""
    sslctx = create_default_context()
    sock = sslctx.wrap_socket(socket.socket(), server_hostname=host)

    try:
        sock.connect((host, int(port)))
        print('\t{}[+]{} {}'.format(TextColor.GREEN, TextColor.RESET, host))
    except Exception as e:
        print('\t{}[-]{} {} failed: {}'.format(TextColor.RED, TextColor.RESET, host, e))
        return None

    cert = sock.getpeercert()
    sock.close()
    return cert


def get_cert_info(cert):
    """Get all the information about cert and create a JSON file."""
    context = {}

    issued_to = dict(x[0] for x in cert['subject'])
    issued_by = dict(x[0] for x in cert['issuer'])

    context['issuer_c'] = issued_by['countryName']
    context['issuer_o'] = issued_by['organizationName']
    context['issuer_cn'] = issued_by['commonName']
    context['issued_to'] = issued_to['commonName']
    context['cert_sn'] = cert['serialNumber']
    context['cert_ver'] = cert['version']

    # Valid from
    valid_from = datetime.strptime(cert['notBefore'], '%b %d %H:%M:%S %Y %Z')
    context['valid_from'] = valid_from.strftime('%Y-%m-%d')

    # Vali till
    valid_till = datetime.strptime(cert['notAfter'], '%b %d %H:%M:%S %Y %Z')
    context['valid_till'] = valid_till.strftime('%Y-%m-%d')

    # Validity days
    context['validity_days'] = (valid_till - valid_from).days

    # Expiry check
    context['expired'] = False if valid_till >= datetime.now() else True

    return context


def show_result(hosts):
    """Get the context."""
    context= {}
    failed_cnt, total_cnt = 0, 0
    print('Analyzing {} hosts:\n'.format(len(hosts)))
    for host in hosts:
        host, port = filter_hostname(host)
        cert = get_cert(host, port)
        if cert:
            context[host] = get_cert_info(cert)
        else:
            failed_cnt += 1

    print('\n{} successful and {} failed.'.format(len(hosts) - failed_cnt, failed_cnt))

    print(context)


def filter_hostname(host):
    """Remove unused characters and split by address and port."""
    host = host.replace('http://', '').replace('https://', '').replace('/', '')
    port = 443
    if ':' in host:
        host, port = host.split(':')

    return host, port


if __name__ == '__main__':
    if len(sys.argv) < 2:
        print('Usage: python {} host1 [host2] [host3] ...'.format(sys.argv[0]))
        sys.exit(0)

    show_result(sys.argv[1:])
First Commit 2018-04-17 18:10:44 +04:30			`#!/usr/bin/env python`
			`import socket`
			`import sys`

Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`from ssl import create_default_context`
First Commit 2018-04-17 18:10:44 +04:30			`from datetime import datetime`


Add Text Color Class 2018-04-17 19:43:46 +04:30			`class TextColor:`
			`"""Text colors."""`

			`RED = '\033[31m'`
			`GREEN = '\033[32m'`
			`YELLOW = '\033[33m'`
			`RESET = '\033[39m'`


Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`def get_cert(host, port):`
First Commit 2018-04-17 18:10:44 +04:30			`"""Connection to the host."""`
Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`sslctx = create_default_context()`
			`sock = sslctx.wrap_socket(socket.socket(), server_hostname=host)`
First Commit 2018-04-17 18:10:44 +04:30
			`try:`
Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`sock.connect((host, int(port)))`
Add Failed Hosts Counter 2018-04-17 19:59:43 +04:30			`print('\t{}[+]{} {}'.format(TextColor.GREEN, TextColor.RESET, host))`
First Commit 2018-04-17 18:10:44 +04:30			`except Exception as e:`
Add Text Color Class 2018-04-17 19:43:46 +04:30			`print('\t{}[-]{} {} failed: {}'.format(TextColor.RED, TextColor.RESET, host, e))`
First Commit 2018-04-17 18:10:44 +04:30			`return None`

Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`cert = sock.getpeercert()`
First Commit 2018-04-17 18:10:44 +04:30			`sock.close()`
			`return cert`


			`def get_cert_info(cert):`
			`"""Get all the information about cert and create a JSON file."""`
			`context = {}`

Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`issued_to = dict(x[0] for x in cert['subject'])`
			`issued_by = dict(x[0] for x in cert['issuer'])`

			`context['issuer_c'] = issued_by['countryName']`
			`context['issuer_o'] = issued_by['organizationName']`
			`context['issuer_cn'] = issued_by['commonName']`
			`context['issued_to'] = issued_to['commonName']`
			`context['cert_sn'] = cert['serialNumber']`
			`context['cert_ver'] = cert['version']`
First Commit 2018-04-17 18:10:44 +04:30
			`# Valid from`
Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`valid_from = datetime.strptime(cert['notBefore'], '%b %d %H:%M:%S %Y %Z')`
First Commit 2018-04-17 18:10:44 +04:30			`context['valid_from'] = valid_from.strftime('%Y-%m-%d')`

			`# Vali till`
Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30			`valid_till = datetime.strptime(cert['notAfter'], '%b %d %H:%M:%S %Y %Z')`
First Commit 2018-04-17 18:10:44 +04:30			`context['valid_till'] = valid_till.strftime('%Y-%m-%d')`
Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30
			`# Validity days`
			`context['validity_days'] = (valid_till - valid_from).days`

			`# Expiry check`
			`context['expired'] = False if valid_till >= datetime.now() else True`

First Commit 2018-04-17 18:10:44 +04:30			`return context`


			`def show_result(hosts):`
			`"""Get the context."""`
Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`context= {}`
			`failed_cnt, total_cnt = 0, 0`
Add Text Color Class 2018-04-17 19:43:46 +04:30			`print('Analyzing {} hosts:\n'.format(len(hosts)))`
First Commit 2018-04-17 18:10:44 +04:30			`for host in hosts:`
Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`host, port = filter_hostname(host)`
			`cert = get_cert(host, port)`
First Commit 2018-04-17 18:10:44 +04:30			`if cert:`
			`context[host] = get_cert_info(cert)`
Add Failed Hosts Counter 2018-04-17 19:59:43 +04:30			`else:`
			`failed_cnt += 1`

Fix successful Report Invalid Report 2018-04-18 14:18:10 +04:30			`print('\n{} successful and {} failed.'.format(len(hosts) - failed_cnt, failed_cnt))`
First Commit 2018-04-17 18:10:44 +04:30
			`print(context)`


Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`def filter_hostname(host):`
			`"""Remove unused characters and split by address and port."""`
			`host = host.replace('http://', '').replace('https://', '').replace('/', '')`
			`port = 443`
			`if ':' in host:`
			`host, port = host.split(':')`
Replace pyOpenSSL With ssl Module 2018-04-18 14:11:46 +04:30
Add Ability to Separate Host and Port 2018-04-17 20:43:39 +04:30			`return host, port`
First Commit 2018-04-17 18:10:44 +04:30

			`if __name__ == '__main__':`
			`if len(sys.argv) < 2:`
Add README.md 2018-04-18 09:47:05 +04:30			`print('Usage: python {} host1 [host2] [host3] ...'.format(sys.argv[0]))`
Fix insufficient arguments 2018-04-17 18:14:40 +04:30			`sys.exit(0)`
First Commit 2018-04-17 18:10:44 +04:30
			`show_result(sys.argv[1:])`