This project contains the following subprojects for running a Certificate Transparency Observatory with the reqiured backend:
- database: Contains the Dockerfile for a Postgres-database that is set up with the required tables.
- monitor: Imports certificates out of CT-Logs
- observatory: Django project for displaying the gathered data
- analyzer: Python-based script that calculates some KPIs that would otherwise take too long when rendering them live in Django
This is easy:
git clone https://github.com/USECAP/ct-infrastructure.git
cd ct-infrastructure/observatory/certs
./create_self_signed_cert.sh
cd ../..
cp observatory/ctobservatory/config.py.template.py observatory/ctobservatory/config.py
sed -i s/secret_key_here/$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)/g observatory/ctobservatory/config.py
docker-compose build
docker-compose up -d
When the containers are started the monitor instantly starts collecting certificates that are visible when you visit http://localhost:7801.
For testing purposes it is recommended to stop the certificate crawling process via docker-compose stop ctmonitor because the resulting database grows very big (up to 60GB).
usage: python analyzer.py [-h] [-l] [-e] [-u] [-r] [-m] [--t T] [--pg PG] [--es ES]
optional arguments:
-l write log file
-e enable elasticsearch import
-u update expired certs
-r update revoked certs (takes veeeery long)
-m update metadata certs
--t=T time interval between refresh in minutes (default 180)
--pg=PG postgres database ip (default localhost)
--es=ES elasticsearch database ip (default localhost)