Metadata-Version: 2.1
Name: get-certificate-chain
Version: 0.1.0
Summary: Project to help use the breadcrumbs that are left by the certificate to build the chain and output it into files.
License: MIT
Author: Calvin Remsburg
Author-email: cremsburg.dev@gmail.com
Requires-Python: >=3.11,<4.0
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.11
Requires-Dist: argparse (>=1.4.0,<2.0.0)
Requires-Dist: cryptography (>=40.0.2,<41.0.0)
Requires-Dist: pytest (>=7.3.1,<8.0.0)
Description-Content-Type: text/markdown

# Get Certificate Chain 🌐🔐

This Python script retrieves the certificate chain from a website, allowing you to analyze and verify the SSL/TLS certificates of the website. The original source can be found [here](https://github.com/TheScriptGuy/getCertificateChain), and the overwhelming majority of credit goes to [TheScriptGuy](https://github.com/TheScriptGuy).

This repository will operate as a custom fork of that project to act as a customized plugin for the [PAN Dashboard](https://github.com/cdot65/pan-dashboard/) project, allowing users to retrieve the certificate chain of a website from within the PAN Dashboard and have it uploaded to a PAN-OS or Panorama appliance.

## Table of Contents

- [Get Certificate Chain 🌐🔐](#get-certificate-chain-)
  - [Table of Contents](#table-of-contents)
  - [Requirements 📋](#requirements-)
  - [Creating Virtual Environment with Poetry 🌱](#creating-virtual-environment-with-poetry-)
  - [Creating Virtual Environment without Poetry 🌱](#creating-virtual-environment-without-poetry-)
  - [Usage 🚀](#usage-)
    - [Arguments](#arguments)
  - [Examples](#examples)
  - [License](#license)

## Requirements 📋

- Python 3.10+
- Poetry (optional) - [Python Poetry](https://python-poetry.org/docs/)

## Creating Virtual Environment with Poetry 🌱

To create a virtual environment with Poetry, follow these steps:

1. Install Poetry if you haven't already:

    ```bash
    curl -sSL https://install.python-poetry.org | python3 -
    ```

2. Create a virtual environment:

    ```bash
    poetry install
    ```

3. Activate the virtual environment:

    ```bash
    poetry shell
    ```

## Creating Virtual Environment without Poetry 🌱

To create a virtual environment without Poetry, follow these steps:

1. Create a virtual environment:

    ```bash
    python3 -m venv venv
    ```

2. Activate the virtual environment:

    ```bash
    source venv/bin/activate
    ```

3. Install the required packages:

    ```bash
    pip install cryptography argparse pytest
    ```

## Usage 🚀

To use the script, run the following command:

```bash
python get_certificate_chain.py --domain www.google.com
```

### Arguments

- `--domain`: The domain:port pair that the script should connect to. Defaults to www.google.com:443.
- `--rm-ca-files`: Remove the certificate files in the current working directory (*.crt, *.pem).
- `--get-ca-cert-pem`: Get cacert.pem from the curl.se website to help find Root CA.

## Examples

Get the certificate chain for www.example.com:

```bash
python get_certificate_chain.py --domain www.example.com
```

Get the certificate chain for www.example.com:8443:

```bash
python get_certificate_chain.py --domain www.example.com:8443
```

Get the certificate chain for www.example.com:8443 and remove the certificate files in the current working directory (*.crt, *.pem):

```bash
python get_certificate_chain.py --domain www.example.com:8443 --rm-ca-files
```

Get the certificate chain for www.example.com:8443 and get cacert.pem from the curl.se website to help find Root CA:

```bash
python get_certificate_chain.py --domain www.example.com:8443 --get-ca-cert-pem
```

Get the certificate chain for www.example.com:8443, remove the certificate files in the current working directory (*.crt, *.pem), and get cacert.pem from the curl.se website to help find Root CA:

```bash
python get_certificate_chain.py --domain www.example.com:8443 --rm-ca-files --get-ca-cert-pem
```

## License

This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.

