certspotter
Cert Spotter Cert Spotter is the lightweight Go scanner for Certificate Transparency logs, alerting on new or unauthorized certs for subdomains via email or webhooks in passive asset monitoring. Run its CLI with --domains for ongoing watches, customizing filters for typosquatting or expiry thresholds. Open-source from SSLMate, it's the cert sentinel for pentesters templating subdomain vigilance through DNS changes.
Explore →ct-monitor
CT Monitor CT Monitor tails public CT logs for domain-specific cert issuances, notifying on unauthorized subdomains to maintain accurate asset inventories in discovery phases. Deploy its Go binary with config for email/Slack alerts, parsing events for historical tracking. Open-source from ProtonMail, it's the issuance inspector for OSINT pros monitoring DNS via transparency feeds.
Explore →trackssl
TrackSSL TrackSSL watches CT streams for cert expiry and fraud, templating alerts on DNS-resolved hosts to fingerprint changes in real-time asset monitoring. Configure via Go CLI with notify hooks, scanning for duplicates or anomalies in chains. Open-source from trackssl, it's the expiry enforcer for recon rangers templating cert lifecycle intel.
Explore →ct-mon
CT Mon CT Mon uses regex to filter CT logs for subdomain matches, storing details in MongoDB for querying historical DNS events in fingerprinting workflows. Run its Python daemon with --regexp for patterns, integrating webhooks for notifications. Open-source from kyprizel, it's the Mongo matcher for analysts templating cert searches with persistence.
Explore →ct-log-monitor
CT Log Monitor CT Log Monitor probes public logs for takeover risks, flagging typosquatting or stale subs with custom thresholds for proactive asset discovery. Deploy its Go binary with --check-typosquatting, outputting alerts for cleanup queues. Open-source from sglambert, it's the typo trapper for pentesters monitoring lookalike DNS issuances.
Explore →certi
Certi Certi queries CT logs for issued certs on domains, exporting CSV for analysis in OSINT workflows on ownership shifts via DNS. Run with --domain for watches, filtering by dates for targeted pulls. Open-source from t0mer, it's the cert cataloger for recon rangers templating issuance timelines.
Explore →certstream-monitor
CertStream Monitor CertStream Monitor hooks into live CT websockets for subdomain alerts, filtering exact matches to build asset fingerprints from cert events. Run its Python script with --domains, integrating webhooks for instant notifications. Open-source from AssuranceMaladieSec, it's the websocket watcher for analysts templating live DNS detections.
Explore →ct-woodpecker
CT Woodpecker CT Woodpecker audits CT log compliance and entries with custom checks, templating scans for stability in recon on issuance anomalies via DNS. Deploy its Python tool with --log for servers, flagging irregularities for review. Open-source from Let's Encrypt, it's the log linter for pentesters ensuring transparency feeds are trustworthy.
Explore →dns-mon
DNS Mon DNS Mon monitors DNS resolution changes for assets, alerting on IP shifts or TTL anomalies to track fingerprint evolutions in discovery phases. Configure its Go binary with zones for watches, logging events for timelines. Open-source from miekg, it's the resolution ranger for OSINT pros templating DNS drift detection.
Explore →certstream