Certificate Expiry Monitor is a utility that monitors TLS certificate expiration dates and exposes this information as Prometheus metrics. The tool can be deployed as a Docker container and provides configurable monitoring of certificate expiry times across multiple domains. The monitor supports various deployment scenarios including Kubernetes environments where it can automatically discover domains from ingresses across specified namespaces. It offers flexible configuration options for polling frequency, domain inclusion/exclusion patterns using regex support, and connection security settings. Key features include: - Automatic domain discovery from Kubernetes ingresses - Configurable polling intervals for certificate checks - Domain filtering with regex pattern support for exclusions - Prometheus metrics export for integration with monitoring systems - Docker containerization for easy deployment - Support for both secure and insecure TLS connections - Host IP connection mode for pod-based deployments The tool accepts comma-separated domain lists for manual configuration and can exclude specific domains or domain patterns from monitoring. It integrates with existing Prometheus-based monitoring infrastructure to provide visibility into certificate expiration status across an organization's TLS-enabled services.
FEATURES
SIMILAR TOOLS
A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.
Tor Browser is a free and open-source software that allows users to browse the internet anonymously and privately.
Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.
Tcpreplay is a suite of Open Source utilities for editing and replaying captured network traffic.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
pfSense is a leading open source firewall and network security solution, providing advanced protection and connectivity options.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.