crt.guru
External TLS cert monitoring with expiry alerts, vuln scanning & compliance reports.
crt.guru
External TLS cert monitoring with expiry alerts, vuln scanning & compliance reports.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaigncrt.guru Description
TLS
SSL
PCI DSS
NIST
Security Scanning
Alerting
Security Compliance Training
Security Reporting
Vulnerability
REST API
crt.guru is an external TLS certificate monitoring service that scans domains and hostnames from multiple geographic regions without requiring agents, server access, or code changes. The service supports monitoring across multiple protocols beyond standard HTTPS, including LDAPS, SMTP STARTTLS, and IMAPS on any port. Scans are performed from locations including Frankfurt, New York, and Amsterdam, enabling detection of issues that local or single-region checks may miss, such as CDN edge nodes serving stale certificates. Core monitoring capabilities include: - Expiry alerts sent at 30, 14, 7, and 1 day before certificate expiration - Vulnerability scanning for known TLS weaknesses including Heartbleed, ROBOT, and CCS Injection - Weak cipher detection - Certificate revocation detection - Certificate Transparency (CT) log monitoring to detect unauthorized certificate issuance for monitored domains - Compliance checks against Mozilla, PCI DSS 4.0, and NIST standards - One-click PDF compliance report generation in formats suited for CISOs, DevOps, and developers - Portfolio-level risk scoring, compliance matrix, expiry calendar, and trend tracking Notifications are delivered via email, Telegram, Discord, and Slack. Plans range from a free tier (3 assets, daily scans, single region, 7-day history) to Enterprise (200 assets, 30-minute scan intervals, unlimited regions and history, 50 team members). Paid plans include on-demand manual scans, scan comparison and diff, and extended history retention. A REST API is also available.
crt.guru FAQ
Common questions about crt.guru including features, pricing, alternatives, and user reviews.
crt.guru is External TLS cert monitoring with expiry alerts, vuln scanning & compliance reports, developed by crt.guru. It is a IAM solution designed to help security teams with TLS, SSL, PCI DSS.
crt.guru offers the following core capabilities:
1.Multi-region external TLS scanning (Frankfurt, New York, Amsterdam)
2.Certificate expiry alerts at 30, 14, 7, and 1 day intervals
3.Vulnerability scanning (Heartbleed, ROBOT, CCS Injection, weak ciphers)
4.Certificate revocation detection
5.Certificate Transparency log monitoring for unauthorized issuance
6.Compliance checks against Mozilla, PCI DSS 4.0, and NIST standards
7.One-click PDF compliance report generation
8.Portfolio risk scoring, compliance matrix, and expiry calendar
9.Multi-protocol support (HTTPS, LDAPS, SMTP STARTTLS, IMAPS)
10.On-demand manual scans and scan comparison/diff
crt.guru integrates natively with Email, Telegram, Discord, Slack. Integration support lets security teams connect crt.guru to existing SIEM, ticketing, identity, and notification systems without custom development.
crt.guru is deployed as a cloud solution, suited to startup, smb, mid-market, enterprise organizations looking to operationalize iam. The commercial offering is positioned for production security operations with vendor support and SLAs.
crt.guru is built for security teams handling TLS, SSL, PCI DSS, NIST. It supports workflows including multi-region external tls scanning (frankfurt, new york, amsterdam), certificate expiry alerts at 30, 14, 7, and 1 day intervals, vulnerability scanning (heartbleed, robot, ccs injection, weak ciphers). Teams typically adopt crt.guru when they need to iam capabilities integrated into their existing stack. Explore similar tools at https://cybersectools.com/alternatives/crtguru
crt.guru is a commercial IAM solution. For detailed pricing information, visit https://crt.guru/ or contact crt.guru directly.
Popular alternatives to crt.guru include:
1.SEALSQ INeS Managed PKI for IoT - Managed PKI-as-a-Service for IoT device cert generation & lifecycle mgmt (Commercial)
2.Sectigo 47-day Certificate Management - Automated SSL/TLS certificate lifecycle mgmt for 47-day validity periods (Commercial)
3.GlobalSign Atlas Discovery & Cert Mgmt - SSL/TLS certificate discovery and lifecycle management platform. (Commercial)
4.Securely C-View Enterprise - Centralized PKI cert lifecycle mgmt platform for large enterprises. (Commercial)
5.Cert Spotter - A Certificate Transparency log monitor that alerts users when SSL/TLS certificates are issued for their domains, helping detect unauthorized certificate issuance and potential security threats. (Free)
Compare all crt.guru alternatives at https://cybersectools.com/alternatives/crtguru
crt.guru is for security teams and organizations that need TLS, SSL, PCI DSS, NIST, Security Scanning. It's particularly suitable for enterprises requiring robust, commercial-grade security capabilities. Other IAM tools can be found at https://cybersectools.com/categories/iam
Have more questions? Browse our categories or search for specific tools.
