Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/policy/protocols/ssl
History
Johanna Amann 115a676d08 SCT: Allow verification of SCTs in Certs. 
This is much more complex than the TLS Extension/OCSP cases. We need to
first alter the certificate and remove the extension from it, before
extracting the tbscert. Furthermore, we need the key hash of the issuing
certificate to be able to validate the proof - which means that we need
a valid certificate chain.

Missing: documentation, nice integration so that we can just add a
script and use this in Bro.
2017-03-29 09:17:24 -07:00
..
expiring-certs.bro re-add notice suppression for expiring certificates 2014-06-06 12:15:38 -07:00
extract-certs-pem.bro Merge remote-tracking branch 'origin/fastpath' 2014-05-21 15:59:26 -05:00
heartbleed.bro Fix minor typos in documentation of various scripts 2016-11-11 14:08:17 -06:00
known-certs.bro Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
log-hostcerts-only.bro Fix missing @load dependencies in some scripts. 2014-04-09 16:32:23 -05:00
notary.bro Merge remote-tracking branch 'origin/topic/jsiwek/deprecation' 2015-01-30 14:37:05 -08:00
ocsp-stapling.bro OCSP: a bunch of whitespace fixes 2017-02-10 17:03:04 -08:00
validate-certs.bro SCT: Allow verification of SCTs in Certs. 2017-03-29 09:17:24 -07:00
validate-ocsp.bro Make OCSP analyzer part of the X.509 analyzer 2017-02-10 17:02:15 -08:00
weak-keys.bro Merge remote-tracking branch 'origin/topic/johanna/ssl-policy' 2015-03-02 17:19:00 -08:00