Certificate Expiry Monitor is a utility that monitors TLS certificate expiration dates and exposes this information as Prometheus metrics. The tool can be deployed as a Docker container and provides configurable monitoring of certificate expiry times across multiple domains. The monitor supports various deployment scenarios including Kubernetes environments where it can automatically discover domains from ingresses across specified namespaces. It offers flexible configuration options for polling frequency, domain inclusion/exclusion patterns using regex support, and connection security settings. Key features include: - Automatic domain discovery from Kubernetes ingresses - Configurable polling intervals for certificate checks - Domain filtering with regex pattern support for exclusions - Prometheus metrics export for integration with monitoring systems - Docker containerization for easy deployment - Support for both secure and insecure TLS connections - Host IP connection mode for pod-based deployments The tool accepts comma-separated domain lists for manual configuration and can exclude specific domains or domain patterns from monitoring. It integrates with existing Prometheus-based monitoring infrastructure to provide visibility into certificate expiration status across an organization's TLS-enabled services.
FEATURES
SIMILAR TOOLS
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A userland implementation of the Network Block Device protocol that enables remote block device access over network connections for distributed storage and virtualization use cases.
Snort is an open source intrusion prevention system that uses rules to detect and prevent malicious network activity.
A free DNS recursive service that blocks malicious host names and protects user privacy.
pfSense is a leading open source firewall and network security solution, providing advanced protection and connectivity options.