certshield

command module
v1.0.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jul 23, 2024 License: MIT Imports: 8 Imported by: 0

README

CertShield

CertShield is a real-time phishing domain detection system that monitors and analyzes newly created SSL/TLS certificates using the CaliDog certstream-go library. By identifying suspicious domain names and certificate attributes, CertShield helps identify potential phishing attacks and malicious websites.

Features

  • Real-Time Monitoring: Continuously tracks the stream of newly issued SSL/TLS certificates.
  • Suspicious Domain Detection: Identifies domain names that exhibit patterns commonly associated with phishing sites.
  • Certificate Analysis: Evaluates various certificate attributes to detect anomalies and potential security threats.
  • Alert System: Generates alerts for identified suspicious certificates and domains.
  • Logging: Supports both stdout logging and integration with Elastic for centralized logging and analysis.

Integrations

  • Elastic: Integration with Elastic allows for advanced logging, search, and analysis capabilities.
  • Stdout Logging: Basic logging to standard output for simplicity and ease of use.

Getting Started

Prerequisites
  • Golang 1.22 or later
  • Elastic Stack (optional)
Installation
  1. Clone the repository: 
    git clone https://github.com/codevault-llc/certshield.git
 cd certshield
  2. Install dependencies: 
    go mod download
  3. Build the project: 
     go build
  4. Run the program: 
    ./certshield
Configuration

We use dotenv to manage environment variables. Create a .env file in the project root directory and add the following variables (see .env.example for an example):

# ElasticSearch URL (optional)
ELASTICSEARCH_URL=http://localhost:9200
ELASTICSEARCH_APIKEY=yourapikey

Disclaimer

This project is intended for educational purposes only. The author is not responsible for any misuse or damage caused by this program. Use at your own risk.

This project is in the early stages of development and has not been thoroughly tested. If you encounter any issues or have suggestions for improvements, please feel free to open an issue or submit a pull request. Your feedback is greatly appreciated!

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgments

  • CaliDog for the certstream-go library.
  • Elastic for the Elastic Stack.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
cmd
generate command
generate/rules

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.