Parsing Certificate Transparency Logs Like a Boss

Ryan Sears
Apr 18, 2017 · 3 min read
Image for post
Image for post
Beaker knows whats up

Show me what you got!

Python 3 because, you know, 2017
ct.googleapis.com/pilot has 92,224,404 certificates
ct.googleapis.com/aviator has 46,466,472 certificates
ct1.digicert-ct.com/log has 1,577,183 certificates
ct.googleapis.com/rocketeer has 89,391,361 certificates
ct.ws.symantec.com has 3,562,198 certificates
ctlog.api.venafi.com has 94,797 certificates
vega.ws.symantec.com has 200,401 certificates
ctserver.cnnic.cn has 5,081 certificates
ctlog.wosign.com has 1,387,492 certificates
ct.startssl.com has 293,374 certificates
ct.googleapis.com/skydiver has 1,249,079 certificates
ct.googleapis.com/icarus has 48,585,765 certificates
Total certs -> 285,037,607

The anatomy of a CTL

On PreCerts

Let’s parse some binary!

Cali Dog Security

A small software company based in the heart of silicon…

Ryan Sears

Written by

Founder of Cali Dog Security & builder of things.

Cali Dog Security

A small software company based in the heart of silicon valley with the aim to make security products hassle-free and ubiquitous. Focusing on a strong user experience and quality engineering, we build tools that solve problems no-one else has tackled before.

Ryan Sears

Written by

Founder of Cali Dog Security & builder of things.

Cali Dog Security

A small software company based in the heart of silicon valley with the aim to make security products hassle-free and ubiquitous. Focusing on a strong user experience and quality engineering, we build tools that solve problems no-one else has tackled before.

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch

Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore

Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store