Hi there,
I'm writing to share a new project that may be of interest to this community. I recently launched https://www.merklemap.com/, a tool designed to leverage Certificate Transparency logs for enhanced domain monitoring.
Merklemap's backend and data ingestion pipeline is written in rust. I also published a rust cli here: GitHub - Barre/merklemap-cli: Discover and enumerate all subdomains associated with a website, including those not publicly advertised. Use this tool to conduct thorough security assessments, validate your organization's digital footprint, or enhance your reconnaissance capabilities for penetration testing and bug bounty hunting.
as well as there crates.io: Rust Package Registry
Key features of MerkleMap:
- Near real-time ingestion of CT logs
- Full-string subdomain search capability
- Support for an arbitrary number of wildcards in searches
While the current functionality focuses on subdomain discovery, I'm planning to expand MerkleMap into a comprehensive CT log monitor over time. Future features may include:
- Alerts for new certificate issuances
- Historical certificate data analysis
- Integration with other security tools
I welcome any feedback or feature suggestions from the group. If you have a moment to try out the tool, I'd be particularly interested in hearing your thoughts on its performance and usability.
Thank you for your time and consideration.