Skip to content
/ quickcert Public

A better way of querying certificate transparency logs

76 stars 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

c3l3si4n/quickcert

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
.idea
.idea
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
quickcert
quickcert
 
 
quickcert.go
quickcert.go
 
 

Repository files navigation

QuickCert

QuickCert is a high-performance tool for extracting subdomains from SSL/TLS certificate transparency logs using crt.sh's PostgreSQL database. Unlike traditional HTTP API methods, QuickCert offers improved reliability and unlimited result retrieval by directly connecting to the certificate transparency database.

Features

  • 🚀 Direct PostgreSQL connection to crt.sh database
  • 💪 Multi-threaded processing (10 concurrent connections)
  • 🔄 Automatic retry mechanism for failed queries
  • 🎯 Smart duplicate filtering
  • ⚡ High-performance using pgx driver
  • 📝 Case-insensitive matching
  • 🧹 Automatic wildcard certificate handling

Installation

Using Go Install

go install github.com/c3l3si4n/quickcert@HEAD

Building from Source

git clone https://github.com/c3l3si4n/quickcert.git
cd quickcert
go build

Usage

Basic Usage

echo "example.com" | quickcert

Multiple Domains

cat domains.txt | quickcert

Combining with Other Tools

echo "example.com" | quickcert | tee subdomains.txt

Technical Details

  • Database: Connects to crt.sh PostgreSQL database (certwatch)
  • Connection String: postgres://[email protected]:5432/certwatch
  • Query Limit: 15,000 records per page
  • Retry Mechanism: Up to 5 retries per failed query
  • Concurrent Connections: 10 parallel queries

Features in Detail

  1. Duplicate Handling

    • Automatically removes duplicate subdomains
    • Converts all domains to lowercase for consistent matching

  2. Wildcard Certificate Processing

    • Automatically strips *. from wildcard certificates
    • Ensures proper subdomain formatting

  3. Error Handling

    • Graceful handling of database connection issues
    • Automatic query retries on failure
    • Concurrent connection management

Limitations

  • Fixed number of concurrent connections (10)
  • Dependent on crt.sh database availability

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

Acknowledgments

  • crt.sh for providing public access to their certificate transparency database
  • The Go community for excellent database drivers and tools

Author

c3l3si4n

About

A better way of querying certificate transparency logs

Resources

Readme
Activity

Stars

76 stars

Watchers

1 watching

Forks

6 forks
Report repository

Releases 2

v0.0.2 Latest
Oct 9, 2023
+ 1 release

Packages

No packages published

Languages