Putting certificate transparency to use


#1

[The following tool is used as an entry point for monitoring certificate expiration, which is useful for checking your servers are in good shape. ]

People have realized that certificate transparency - logs of all issued certificates - can be used to find hidden domains. So far, all sources required some level of programming.

This time, you can just keep typing domain names and see what you can find.

If you feel geeky, you can start with “>” and search with domain name parts reversed. For example, if you want to find what’s under teslamotors.com, you type “>com.teslamotors.cn” … etc.

You can also have a look at this 50s video before you try for yourself.


#2

If you want to just do domain search… I think crt.sh has done a great job so far (despite the huge backlog and server scaling issues)