zcrypto

package module

v0.0.0-...-a1f61fb Latest Latest Go to latest Published: Dec 19, 2023 License: Apache-2.0, ISC, MIT Imports: 0 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/zmap/zcrypto

Links

Open Source Insights

README ¶

ZCrypto

ZCrypto contains specialized versions of tls and x509. It is written in Golang and is primarily based on Golang's TLS library.

IMPORTANT!

ZCrypto is a research library, designed to be used for data collection and analysis, as well as experimenting and prototyping. It should not be used to provide security for production systems.

zcrypto/tls (formerly known as ZTLS)

A research TLS library based on Golang standard library crypto/tls that contains that speaks old TLS versions, export ciphers, logs handshake messages, and is highly configurable. Many scary parts are exposed as public variables. It is primarily used for data collection, and is used by ZGrab. Uses zcrypto/x509.

zcrypto/x509

A fork of the Golang stdlib crypto/x509 that adds the ability to serialize certificates to JSON, and plays nice with CT.

zcrypto/ct

A fork of the Google Certificate Transparency Golang library, designed to play nice with ZCrypto.

Documentation

Documentation uses Godoc. See https://godoc.org/github.com/zmap/zcrypto.

Documentation ¶

Overview ¶

ZCrypto is a research and data collection cryptography library, designed to be used for measuring and analyzing cryptographic deployments on the Internet. It is largely centered around the WebPKI.

ZCrypto contains forks of the Golang X.509 and TLS libraries that speak old TLS versions, deprecated ciphers. ZCrypto provides more lenient and open access to X.509 certificates and TLS handshake state than its standard library counterparts.

ZCrypto also contains a custom X.509 chain builder, designed for bulk chain building across large sets of certificates.

Source Files ¶

View all Source files

doc.go

Directories ¶

Path	Synopsis
cryptobyte Package cryptobyte contains types that help with parsing and constructing length-prefixed, binary messages, including ASN.1 DER.	Package cryptobyte contains types that help with parsing and constructing length-prefixed, binary messages, including ASN.1 DER.
asn1 Package asn1 contains supporting types for parsing and building ASN.1 messages with the cryptobyte package.	Package asn1 contains supporting types for parsing and building ASN.1 messages with the cryptobyte package.
ct
asn1 Package asn1 implements parsing of DER-encoded ASN.1 data structures, as defined in ITU-T Rec X.690.	Package asn1 implements parsing of DER-encoded ASN.1 data structures, as defined in ITU-T Rec X.690.
client Package client is a CT log client implementation and contains types and code for interacting with RFC6962-compliant CT Log instances.	Package client is a CT log client implementation and contains types and code for interacting with RFC6962-compliant CT Log instances.
client/main
scanner
x509 Package x509 parses X.509-encoded keys and certificates.	Package x509 parses X.509-encoded keys and certificates.
x509/pkix Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.	Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.
data
test/certificates
dsa Package dsa implements the Digital Signature Algorithm, as defined in FIPS 186-3.	Package dsa implements the Digital Signature Algorithm, as defined in FIPS 186-3.
encoding
asn1 Package asn1 implements parsing of DER-encoded ASN.1 data structures, as defined in ITU-T Rec X.690.	Package asn1 implements parsing of DER-encoded ASN.1 data structures, as defined in ITU-T Rec X.690.
internal
randutil Package randutil contains internal randomness utilities for various crypto packages.	Package randutil contains internal randomness utilities for various crypto packages.
json
tls Package tls partially implements TLS 1.2, as specified in RFC 5246.	Package tls partially implements TLS 1.2, as specified in RFC 5246.
util
verifier
x509
ct
pkix Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.	Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.
revocation/crl
revocation/google
revocation/microsoft
revocation/mozilla
revocation/ocsp Package ocsp parses OCSP responses as specified in RFC 2560.	Package ocsp parses OCSP responses as specified in RFC 2560.
zintermediate ZIntermediate is a command line utility for verifying a set prospective intermediate certificates against a root store.	ZIntermediate is a command line utility for verifying a set prospective intermediate certificates against a root store.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL