Certificate Expiry Monitor
Certificate Expiry Monitor is a utility that monitors TLS certificate expiration dates and exposes this information as Prometheus metrics. The tool can be deployed as a Docker container and provides configurable monitoring of certificate expiry times across multiple domains. The monitor supports various deployment scenarios including Kubernetes environments where it can automatically discover domains from ingresses across specified namespaces. It offers flexible configuration options for polling frequency, domain inclusion/exclusion patterns using regex support, and connection security settings. Key features include: - Automatic domain discovery from Kubernetes ingresses - Configurable polling intervals for certificate checks - Domain filtering with regex pattern support for exclusions - Prometheus metrics export for integration with monitoring systems - Docker containerization for easy deployment - Support for both secure and insecure TLS connections - Host IP connection mode for pod-based deployments The tool accepts comma-separated domain lists for manual configuration and can exclude specific domains or domain patterns from monitoring. It integrates with existing Prometheus-based monitoring infrastructure to provide visibility into certificate expiration status across an organization's TLS-enabled services.
FEATURES
SIMILAR TOOLS
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A userland implementation of the Network Block Device protocol that enables remote block device access over network connections for distributed storage and virtualization use cases.
Snort is an open source intrusion prevention system that uses rules to detect and prevent malicious network activity.
A free DNS recursive service that blocks malicious host names and protects user privacy.
pfSense is a leading open source firewall and network security solution, providing advanced protection and connectivity options.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.