#certificates

Certify
featured
Certify

Active Directory certificate abuse.

Keyfinder
featured
Keyfinder

Find and analyze private/public key files and Android APK files.

certs.io
certs.io

Search the entire internet by data in TLS certificates.

certmitm
certmitm

A tool for testing for certificate validation vulnerabilities of TLS connections.

certmon
certmon

A simple certificate expiration monitor script.

CarbonCopy
CarbonCopy

Creates a spoofed certificate of any online website and signs an executable for AV evasion.

CertStealer
CertStealer

A .NET tool for exporting and importing certificates without touching disk.

certSniff
certSniff

A certificate transparency log keyword sniffer written in Python.

Bucket Stream
Bucket Stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Certificate Search
Certificate Search

Get informations about SSL certificates.

CertCrunchy
CertCrunchy

Uses data from SSL Certificates to find potential host names.

GSAN
GSAN

Extract subdomains from SSL certificates in HTTPS sites.

dirhunt
dirhunt

Find web directories without bruteforce.

IDontSpeakSSL
IDontSpeakSSL

Simple tool to scan large scope and provide SSL/TLS vulnerabilities.

CTFR
CTFR

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Certificate Ripper
Certificate Ripper

A CLI tool to extract server certificates.

Substr3am
Substr3am

Passive reconnaissance/enumeration of interesting targets by watching for SSL certificates.

Censys Enumeration
Censys Enumeration

Extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys.

Censys subdomain finder
Censys subdomain finder

Perform subdomain enumeration using the certificate transparency logs from Censys.