Example Certificate Queries in Censys Search Language
You can use Censys Search to identify expired or misconfigured SSL/TLS certificates and track vendor compliance. For more information about search syntax, see Censys Query Language Syntax.
See the video below for an overview on using search to identify expired or misconfigured certificates.
Tip
A new tool currently in Beta leverages the natural-language processing of ChatGPT to produce valid query syntax in the Censys Search Language. Give it a try here.
The section below provides working queries you can use to learn the Censys Query Language for querying certificate records.
The first column indicates the Censys Query Language feature showcased in the query. The second column describes the query. The third column shows the query syntax, which is linked to the Results page on search.censys.io.
Search Type |
Description |
Query |
---|---|---|
Full Text Search |
Search for cert records with any mention of the word apple anywhere. |
|
Full Text Search |
Search for cert records whose data contains the words apple and inc although not necessarily together |
|
Full Text Search |
Search for cert records whose data contains the phrase apple inc |
|
Field:Value Pairs |
Search for cert records whose name fields contain censys.io or any subdomain of that name |
|
Exact Match Operator ( |
Search for cert records whose name fields contains the exact name censys.io |
|
Boolean Logic |
Search for cert records of unexpired but revoked certificates used for key agreement but not signing certificates |
|
Set Operator |
Search for cert records that have any of the following validity lengths |
|
Boolean Logic |
Search for cert records whose certs were never trusted by NSS |
|
Wildcards |
Search for cert records with domain-style names that are similar to "censys" |
|
Regular Expressions (Paid users only) |
Search for cert records with domain-style names that are similar to censys that use a certain TLD |
|
Relative time |
Search for certificates that were revoked in the last 8 hours |
|
Ranges |
Search for cert records whose validity period ends between January 1 and January 30, 2024 |
|
Nested field queries |
Search for cert records entered into the Google Xenon 2024 CT log on October 30, 2023 |
|
The table provides working queries you can use to learn the data model of certificate records.
The first column shows the type of information in the certificate record showcased in the query. The second column describes the query. The third column shows the query syntax, which is linked to the Results page on search.censys.io.
Cert Record Attribute |
Description |
Query |
---|---|---|
All Names |
Search for the name |
|
All Names |
Search for the name |
|
Subject DN |
Search for cert records whose the subject DN includes an organization specified as "IBM" |
|
Issuer DN |
Search for cert records of certs issued by GTS X3 |
|
Validity Period |
Search for cert records of certs with a validity start and end date that are the same |
|
Certificate Transparency |
Search for cert records not submitted to any CT log |
Comments
0 comments
Please sign in to leave a comment.