forked from g0ldencybersec/gungnir
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
3bc63ef
commit aa75ab7
Showing
1 changed file
with
55 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1,55 @@ | ||
# Gungnir | ||
# Gungnir | ||
In Norse mythology, Gungnir is the spear of the god Odin. It is known for always hitting the target of the attacker regardless of the attacker's skill. | ||
## Description | ||
|
||
Gungnir is a command-line tool written in Go that continuously monitors certificate transparency (CT) logs for newly issued SSL/TLS certificates. Its primary purpose is to aid security researchers and penetration testers in discovering new domains and subdomains as soon as they are issued certificates, allowing for timely security testing. | ||
|
||
The tool connects to multiple CT logs and actively watches for new certificate entries. Whenever a new certificate is detected, Gungnir extracts the domains and subdomains present in the certificate's subject alternative names (SANs) and Common Name (CN) and prints them to stdout in real-time. | ||
|
||
By running Gungnir continuously, security professionals can stay ahead of the curve and rapidly identify potential attack surfaces as soon as new domains or subdomains become active on the web. This proactive approach enables early reconnaissance, vulnerability scanning, and prompt remediation of any identified issues. | ||
|
||
# Key features: | ||
|
||
**Real-time Monitoring:** Actively monitors multiple CT logs for newly issued certificates. | ||
**Domain Extraction:** Extracts domains and subdomains from certificate subject alternative names and common name. | ||
**Continuous Output:** Prints discovered domains and subdomains to stdout as they are detected. | ||
**Customizable Filtering:** Allows filtering output based a text file of root domains. | ||
Gungnir is designed to be a lightweight and efficient tool, making it suitable for running on various platforms, from local machines to cloud instances or containerized environments. | ||
|
||
## Installation | ||
|
||
```sh | ||
go install github.com/g0ldencybersec/gungnir/gungnir@latest | ||
``` | ||
|
||
## Usage | ||
|
||
To run the tool, use a text file of root domains you want to monitor: `roots.txt`. Then, run the `gungnir` module: | ||
|
||
```sh | ||
./gungnir roots.txt | ||
``` | ||
|
||
Once the tool starts and initializes, it will print domains to stdout. So feel free to pipe the output into your favorite tool! | ||
|
||
## Warranty | ||
|
||
The creator(s) of this tool provides no warranty or assurance regarding its performance, dependability, or suitability for any specific purpose. | ||
|
||
The tool is furnished on an "as is" basis without any form of warranty, whether express or implied, encompassing, but not limited to, implied warranties of merchantability, fitness for a particular purpose, or non-infringement. | ||
|
||
The user assumes full responsibility for employing this tool and does so at their own peril. The creator(s) holds no accountability for any loss, damage, or expenses sustained by the user or any third party due to the utilization of this tool, whether in a direct or indirect manner. | ||
|
||
Moreover, the creator(s) explicitly renounces any liability or responsibility for the accuracy, substance, or availability of information acquired through the use of this tool, as well as for any harm inflicted by viruses, malware, or other malicious components that may infiltrate the user's system as a result of employing this tool. | ||
|
||
By utilizing this tool, the user acknowledges that they have perused and understood this warranty declaration and agree to undertake all risks linked to its utilization. | ||
|
||
## License | ||
|
||
This project is licensed under the MIT License - see the [LICENSE.md](LICENSE.md) for details. | ||
|
||
## Contact | ||
|
||
For assistance, use the Issues tab. If I do not respond within 7 days, please reach out to me here. | ||
|
||
- [Gunnar Andrews](https://twitter.com/G0LDEN_infosec) |