
Cert Spotter
#Knowledge Base#Miscellaneous
A collection of setup scripts for various security research tools with installers for tools like afl, angr, barf, and more.
Cert Spotter: Your Certificate Transparency Monitor
Cert Spotter is a Certificate Transparency log monitor developed by SSLMate. It alerts you whenever an SSL/TLS certificate is issued for one of your domains. Unlike other open-source CT monitors, Cert Spotter is easier to use because it does not require a database.
Enhanced Robustness of Cert Spotter
Cert Spotter is more robust because it utilizes a specialized certificate parser, ensuring that it will not overlook any certificates. Additionally, Cert Spotter is offered as a hosted service by SSLMate, which requires no setup and provides a user-friendly web dashboard for centralized certificate management.
You can use Cert Spotter to detect:
- Certificates issued to attackers who have compromised your DNS and are redirecting your visitors to their malicious site.
- Certificates issued to attackers who have taken control of an abandoned sub-domain to deliver malware under your name.
- Certificates issued to attackers who have breached a certificate authority and aim to impersonate your site.
- Certificates issued in violation of your corporate policy or outside of your centralized certificate procurement process.
Quickstart: To use Cert Spotter, ensure you have Go version 1.19 or higher installed.