zcrypto
zcrypto copied to clipboard
zmap
Liberal Go TLS + X.509 Library for Research
Use branch master and feature/tlsv1.3 to scan the same ip+port, The results of secure_renegotiation and scts are different ``` func TestTls(t *testing.T){ tests := []string{ "138.201.124.182:10250"} for _, test :=...
https://new-proxy.shunwang.com/ the cert browser is trusted, but zcrypto Invalid display certificate  
Currently the "Adobe Authentic Document Trust" EKU is not supported by zcrypto. The OID is registered as http://oid-info.com/get/1.2.840.113583.1.1.5 and is typically present in Adobe AATL certificates.
Can you add a field mean certificate has expired?
Can be accessed normally through the browser https://1.179.232.207:1080 Here is the test code ``` import ( "fmt" "github.com/zmap/zcrypto/tls" "testing" ) func TestTLS(t *testing.T) { config := tls.Config{ InsecureSkipVerify: true, MaxVersion:...
https://github.com/zmap/zcrypto/blob/30e1a9e0a8f5a3711cfd10ffb695da3ffb178321/x509/pkix/pkix.go#L232 
**Env**: Ubuntu x64 **Go version**: 1.13, 1.15 **Reproduce**: `./zcertificate seed-4s18-107s39-277s36-546s31-704s37-817s26-81c17-791c21.pem` **Expected result**: similar to ``` X509v3 Authority Key Identifier: 0. ``` **Actual result**: no AKI in JSON ouput ``` "extensions":...
**Env**: Ubuntu x64 **Go version**: 1.13, 1.15 **Reproduce**: `./zcertificate seed-5s26-66s28-558s39-917s30.pem` **Expected result**: similar to ``` X509v3 Inhibit Any Policy: 2 ``` **Actual result**: ``` "unknown_extensions": [ { "id": "2.5.29.54", "critical":...