Reactive measurement using certstream
vishalmohanty opened this issue · 1 comments
vishalmohanty commented
https://certstream.calidog.io/ shows the certificates issued on a live basis from the CT logs.
For the domains for which certificates are being issued, perform A
lookup (if it is not a wildcard certificate like *.example.com
) and NS
lookup.
The idea is to flag DNS hijacking attempts by tracking changes to NS records and IP addresses.
vishalmohanty commented
Will be taken up under different project.