mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-06-12 14:14:56 +03:00
mukul975
27c6414ca5
Complete skill folder anatomy across all cybersecurity skills: - scripts/agent.py: 80-150 line Python agents using real libraries (impacket, boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.) - references/api-reference.md: real API documentation with method signatures - LICENSE: MIT license for all skill folders
1.5 KiB
1.5 KiB
API Reference: Analyzing TLS Certificate Transparency Logs
pycrtsh
from pycrtsh import Crtsh
c = Crtsh()
# Search certificates by domain
certs = c.search("example.com") # exact match
certs = c.search("%.example.com") # wildcard subdomains
# Get certificate details by ID
details = c.get(cert_id, type="id")
details = c.get(sha1_hash, type="sha1")
details = c.get(sha256_hash, type="sha256")
crt.sh REST API (Direct)
import requests
# JSON output
resp = requests.get("https://crt.sh/?q=%.example.com&output=json")
records = resp.json()
# Fields: id, issuer_ca_id, issuer_name, common_name,
# name_value, not_before, not_after, serial_number
certstream (Real-Time CT Monitoring)
import certstream
def callback(message, context):
if message["message_type"] == "certificate_update":
all_domains = message["data"]["leaf_cert"]["all_domains"]
print(all_domains)
certstream.listen_for_events(callback, url="wss://certstream.calidog.io/")
Key Certificate Fields
| Field | Description |
|---|---|
common_name |
Primary domain on certificate |
name_value |
SAN (Subject Alternative Names) |
issuer_name |
Certificate Authority |
not_before |
Issuance date |
not_after |
Expiration date |
References
- pycrtsh: https://pypi.org/project/pycrtsh/
- crt.sh: https://crt.sh/
- certstream: https://certstream.calidog.io/
- CT RFC 6962: https://datatracker.ietf.org/doc/html/rfc6962