certspotter
Cert Spotter Cert Spotter is the efficient Go-based monitor for Certificate Transparency logs, flagging new or rogue certs on subdomains to spot takeovers or misissues in asset fingerprints. Run its CLI with --domains for ongoing watches, alerting via webhooks for immediate recon updates. Open-source from SSLMate, it's the cert sentinel for pentesters templating subdomain vigilance through DNS changes.
Explore →ct-monitor
CT Monitor CT Monitor tails public CT logs for domain-specific cert issuances, notifying on unauthorized subdomains to maintain accurate asset inventories in discovery phases. Deploy its Go binary with config for email/Slack alerts, parsing events for historical tracking. Open-source from ProtonMail, it's the issuance inspector for OSINT pros monitoring DNS via transparency feeds.
Explore →trackssl
TrackSSL TrackSSL watches CT streams for cert expiry and fraud, templating alerts on DNS-resolved hosts to fingerprint changes in real-time asset monitoring. Configure via Go CLI with notify hooks, scanning for duplicates or anomalies in chains. Open-source from trackssl, it's the expiry enforcer for recon rangers templating cert lifecycle intel.
Explore →ct-mon
CT Mon CT Mon uses regex to filter CT logs for subdomain matches, storing details in MongoDB for querying historical DNS events in fingerprinting workflows. Run its Python daemon with --regexp for patterns, integrating webhooks for notifications. Open-source from kyprizel, it's the Mongo matcher for analysts templating cert searches with persistence.
Explore →ct-log-monitor
CT Log Monitor CT Log Monitor probes public logs for takeover risks, flagging typosquatting or stale subs with custom thresholds for proactive asset discovery. Deploy its Go binary with --check-typosquatting, outputting alerts for cleanup queues. Open-source from sglambert, it's the typo trapper for pentesters monitoring lookalike DNS issuances.
Explore →ctlwatcher
CTLWatcher CTLWatcher streams CT events with regex for domain alerts, logging to SQLite for historical queries on DNS changes in monitoring pipelines. Configure via Python with --db for storage, running as service for continuous intel. Open-source from pathtofile, it's the stream sentinel for pentesters templating real-time cert watches.
Explore →certi
Certi Certi queries CT logs for issued certs on domains, exporting CSV for analysis in OSINT workflows on ownership shifts via DNS. Run with --domain for watches, filtering by dates for targeted pulls. Open-source from t0mer, it's the cert cataloger for recon rangers templating issuance timelines.
Explore →certstream-monitor
CertStream Monitor CertStream Monitor hooks into live CT websockets for subdomain alerts, filtering exact matches to build asset fingerprints from cert events. Run its Python script with --domains, integrating webhooks for instant notifications. Open-source from AssuranceMaladieSec, it's the websocket watcher for analysts templating live DNS detections.
Explore →ct-woodpecker
CT Woodpecker CT Woodpecker audits CT log compliance and entries with custom checks, templating scans for stability in recon on issuance anomalies via DNS. Deploy its Python tool with --log for servers, flagging irregularities for review. Open-source from Let's Encrypt, it's the log linter for pentesters ensuring transparency feeds are trustworthy.
Explore →dns-mon