Query Crtsh (crt.sh) from node.js.
Crtsh is a platform that permits you search for certificates that have been logged by CT. Many people use this to enumerate subdomains.
npm i crtsh
const { hostnames: crtshHostnames } = require('crtsh');
(async () => {
const hostnames = await crtshHostnames('%.example.org');
console.log(JSON.stringify(hostnames, null, 2);
// Will print:
// [
// "example.org",
// "www.example.org",
// "www.testdomain.example.org"
// ]
})();
More examples can be found at examples.
pattern (string, required):
For example, if you want to list certificate names for "example.org" domain and subdomains, you can use "%.example.org".
options (object, optional):
axiosConfig: optional config to pass to axios.
proxy: optional proxy to use, eg: "localhost:8080"
For example, if you want to use proxy when calling crt.sh, you can use syntax like this:
const { hostnames } = require('crtsh');
await hostnames('%.example.org', { proxy: 'localhost:8080' });
See CHANGELOG.md.
License under MIT License.
FAQs
Query crt.sh from nodejs
We found that crtsh demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.