脚本所属分类: safe, discovery, external
Queries Google's Certificate Catalog for the SSL certificates retrieved from target hosts.
The Certificate Catalog provides information about how recently and for how long Google has seen the given certificate. If a certificate doesn't appear in the database, despite being correctly signed by a well-known CA and having a matching domain name, it may be suspicious.
nmap -p 443 --script ssl-cert,ssl-google-cert-catalog <host>
PORT STATE SERVICE 443/tcp open https | ssl-google-cert-catalog: | First/last date seen: 19 Aug 2011 / 10 Sep 2011 |_ Days in between: 20
Author: Vasiliy Kulikov
License: VER007 整理 http://www.ver007.com