Last active
April 23, 2021 06:30
-
-
Save zed/7901011 to your computer and use it in GitHub Desktop.
Show server's ssl certificate as json.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """Show server's certificate as json. | |
| Usage: | |
| $ %(prog)s HOST [PORT] | |
| """ | |
| import json | |
| import socket | |
| import ssl | |
| import sys | |
| def getcert(addr, timeout=None): | |
| """Retrieve server's certificate at the specified address (host, port).""" | |
| # it is similar to ssl.get_server_certificate() but it returns a dict | |
| # and it verifies ssl unconditionally, assuming create_default_context does | |
| with socket.create_connection(addr, timeout=timeout) as sock: | |
| context = ssl.create_default_context() | |
| with context.wrap_socket(sock, server_hostname=addr[0]) as sslsock: | |
| return sslsock.getpeercert() | |
| def main(argv): | |
| host = argv[1] | |
| port = int(argv[2]) if len(argv) > 2 else 443 | |
| print(json.dumps(getcert((host, port)), indent=2, sort_keys=True)) | |
| if __name__ == "__main__": | |
| main(sys.argv) |
Author
zed
commented
Mar 29, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment