This time I will use Kali Linux it is a great distro for pentesters. After all, nothing prevents you from using another distribution, such as Debian Linux.
Sometimes we need to check the certificate issuance date. Nmap and curl are a very good tool for this.
Both of these tools allow for advanced analysis of the SSL connection. Let’s try to check the certificate date with nmap:
1 |
$ nmap -p 443 --script ssl-cert soban.pl |
To be more precise, let’s leave the date and time alone:
1 |
$ nmap -p 443 --script ssl-cert soban.pl | grep after | awk '{ print $5 }' |
Here is the result:
In my experience nmap is a very good tool – however curl is much faster, to use it, do the following:
1 |
$ curl -X GET -i 'https://google.com' | grep -i 'date:' | grep GMT |
This is the effect:
It is worth getting acquainted with both tools. Besides checking the date of the certificate, they offer a number of other possibilities.