Brutkey

Jan Wildeboer 😷:krulorange:
@jwildeboer@social.wildeboer.net

Le sigh. There must be a simpler way, but I cannot find it. Trying to get the SHA256 fingerprint of a x509 certificate as one long string without colons or something works with:

openssl x509 -in roots.pem -noout -fingerprint -sha256 | sed 's/://g' | sed 's/^.*=//' | awk '{print tolower($0)}'

UPDATE: This is what I now have in my .bashrc :)

function certfp(){ openssl x509 -in "$1" -outform DER | sha256sum | cut -d' ' -f1 ; }

#nerdtalk

PhreakByte the Octopus
@nieldk@infosec.exchange

@jwildeboer@social.wildeboer.net as promised, added this to openssl (https://github.com/nieldk/openssl)

PhreakByte the Octopus
@nieldk@infosec.exchange

@jwildeboer@social.wildeboer.net https://github.com/openssl/openssl/pull/28165

PhreakByte the Octopus
@nieldk@infosec.exchange

@jwildeboer@social.wildeboer.net well, the openssl team is not eager to implement this as a new app, but would prefer it as a subset to x509 command. I can easily do so, what do you think, should I continue.

PhreakByte the Octopus
@nieldk@infosec.exchange

@jwildeboer@social.wildeboer.net working on it harder than my first submission lol