yawast 0.4.0.beta1 → 0.4.0.beta2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d707bc2b668e3aee9be0c3f5824c58ae6cfe0fe2
-  data.tar.gz: 60c589954dc8a4839d77de50acc0eb210f958677
+  metadata.gz: 0bd401e7dfb0ed1202b3649590c6188004f32d89
+  data.tar.gz: 349a07e700f68ffaf4cb2c3b2d73723b838eaa63
 SHA512:
-  metadata.gz: ab2799d958dcebc5bc137494cff6c6361f492837d8830f53dd43ed47875be6c97af7fefdc9c25138d48c051166bc155a674caaa895a92a4ec1a61ca78b07dabf
-  data.tar.gz: 30b24583e8f97011a74c459a755552b583daaa369115c23b57b4b238cae996dbd2a1d5445b84aa0868b733334a565a0616e41cf6f00507f069cc5465d0473997
+  metadata.gz: 08980226efef51d1c4bd02b943fd63ff09b759bc4b921e544e2684f695682867214970d14e7ea31e22a97ce79720db1cb03de3a143fefa5ed0dc7652d8d1e96b
+  data.tar.gz: 77de689186f88cbb65b6ec5dc072c50013696b4f50420cd982afd0b6eb1c2be888cf7e99c09bc8dd8d8c7978c9c9014b471f19a5a214acf6f8be190822ed103b

data/lib/commands/cert.rb

@@ -0,0 +1,10 @@
+module Yawast
+  module Commands
+    class Cert
+      def self.process(options)
+        scan = Yawast::Scanner::Cert.new
+        scan.get_certs(options)
+      end
+    end
+  end
+end

data/lib/scanner/cert.rb

@@ -0,0 +1,99 @@
+require 'openssl'
+require 'openssl-extensions/all'
+
+module Yawast
+  module Scanner
+    class Cert
+      def setup
+        unless @setup
+
+          Yawast.header
+          puts
+
+          Yawast.set_openssl_options
+        end
+
+        @setup = true
+      end
+
+      def get_certs(options)
+        setup
+
+        content = File.readlines options.input
+
+        pool_size = 16
+        jobs = Queue.new
+        @results = Queue.new
+
+        content.map do |domain|
+          jobs.push domain.trim
+        end
+
+        workers = (pool_size).times.map do
+          Thread.new do
+            begin
+              while (domain = jobs.pop(true))
+                process domain
+              end
+            rescue ThreadError
+              #do nothing
+            end
+          end
+        end
+
+        results = Thread.new do
+          begin
+            while true
+              if @results.length > 0
+                out = @results.pop(true)
+                Yawast::Utilities.puts_info out
+              end
+            end
+          rescue ThreadError
+            #do nothing
+          end
+        end
+
+        workers.map(&:join)
+        results.terminate
+
+        puts
+        puts
+        puts 'Done.'
+      end
+
+      def process(domain)
+        return if domain == ''
+
+        begin
+          socket = Socket.tcp(domain, 443, opts={connect_timeout: 3})
+
+          ctx = OpenSSL::SSL::SSLContext.new
+          ctx.ciphers = OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:ciphers]
+
+          ssl = OpenSSL::SSL::SSLSocket.new(socket, ctx)
+          ssl.hostname = domain
+
+          Timeout::timeout(5) {
+            ssl.connect
+          }
+
+          cert = ssl.peer_cert
+
+          if cert.nil?
+            raise 'No certificate received.'
+          else
+            @results.push "#{domain}: Issuer: '#{cert.issuer.common_name}' / '#{cert.issuer.organization}' Serial: #{cert.serial}"
+          end
+        rescue
+          unless domain.start_with? 'www.'
+            process 'www.' + domain
+          end
+        ensure
+          ssl.sysclose if ssl
+          socket.close if socket
+        end
+      end
+    end
+  end
+end

data/lib/version.rb

@@ -1,3 +1,3 @@
 module Yawast
-  VERSION = '0.4.0.beta1'
+  VERSION = '0.4.0.beta2'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: yawast
 version: !ruby/object:Gem::Version
-  version: 0.4.0.beta1
+  version: 0.4.0.beta2
 platform: ruby
 authors:
 - Adam Caudill
@@ -110,6 +110,7 @@ files:
 - README.md
 - Rakefile
 - bin/yawast
+- lib/commands/cert.rb
 - lib/commands/cms.rb
 - lib/commands/head.rb
 - lib/commands/scan.rb
@@ -117,6 +118,7 @@ files:
 - lib/commands/utils.rb
 - lib/resources/common.txt
 - lib/scanner/apache.rb
+- lib/scanner/cert.rb
 - lib/scanner/cms.rb
 - lib/scanner/core.rb
 - lib/scanner/generic.rb