{"id":4984,"date":"2018-10-29T23:38:21","date_gmt":"2018-10-29T15:38:21","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=4984"},"modified":"2018-10-29T23:38:48","modified_gmt":"2018-10-29T15:38:48","slug":"ctfr-abuse-certificate-transparency-logs-for-https-subdomains","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2018\/10\/ctfr-abuse-certificate-transparency-logs-for-https-subdomains\/","title":{"rendered":"CTFR &#8211; Abuse Certificate Transparency Logs For HTTPS Subdomains"},"content":{"rendered":"<p>CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2018\/10\/CTFR-Abuse-Certificate-Transparency-Logs-For-HTTPS-Subdomains-640x363.png\" alt=\"CTFR - Abuse Certificate Transparency Logs For HTTPS Subdomains\" width=\"640\" height=\"363\" class=\"aligncenter size-medium wp-image-5078\" srcset=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2018\/10\/CTFR-Abuse-Certificate-Transparency-Logs-For-HTTPS-Subdomains-640x363.png 640w, https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2018\/10\/CTFR-Abuse-Certificate-Transparency-Logs-For-HTTPS-Subdomains.png 748w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/><\/p>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<p>You missed AXFR technique didn&#8217;t you? (Open DNS zone transfers), so how does it work? CTFR does not use  dictionary attack or brute-force attacks, it just helps you to abuse Certificate Transparency Logs.<\/p>\n<h2>What is Certificate Transparency?<\/h2>\n<blockquote><p>Google&#8217;s Certificate Transparency project fixes several structural flaws in the SSL certificate system, which is the main cryptographic system that underlies all HTTPS connections. These flaws weaken the reliability and effectiveness of encrypted Internet connections and can compromise critical TLS\/SSL mechanisms, including domain validation, end-to-end encryption, and the chains of trust set up by certificate authorities. If left unchecked, these flaws can facilitate a wide range of security attacks, such as website spoofing, server impersonation, and man-in-the-middle attacks.<\/p><\/blockquote>\n<p>From: <a href=\"http:\/\/www.certificate-transparency.org\/\">http:\/\/www.certificate-transparency.org\/<\/a><\/p>\n<h2>Usage of CTFR to Abuse Certificate Transparency Logs<\/h2>\n<pre>\r\n$ python3 ctfr.py --help\r\n    -d --domain [target_domain] (required)\r\n    -o --output [output_file] (optional)<\/pre>\n<p>Example:<\/p>\n<pre>$ python3 ctfr.py -d facebook.com -o \/home\/shei\/subdomains_fb.txt<\/pre>\n<p>This is quite a new and novel technique compared to more traditional scripts like <a href=\"https:\/\/www.darknet.org.uk\/2016\/04\/dnsrecon-dns-enumeration-script\/\">DNSRecon \u2013 DNS Enumeration Script<\/a>.<\/p>\n<p>You can download CTFR here:<\/p>\n<p><a href=\"https:\/\/github.com\/UnaPibaGeek\/ctfr\/archive\/master.zip\">ctfr-master.zip<\/a><\/p>\n<p>Or read more <a href=\"https:\/\/github.com\/UnaPibaGeek\/ctfr\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds. You missed AXFR technique didn&#8217;t you? (Open DNS zone transfers), so how does it work? CTFR does not use dictionary attack or brute-force attacks, it just helps you to abuse Certificate Transparency Logs. What [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds.","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[9],"tags":[3265,1693,284],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4984"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=4984"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4984\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=4984"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=4984"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=4984"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}