Is there a QID for certificates using sha1 or md5 hash algorithms? I cant seem to find it in the KB.
If you look at QID 86002 as one of the ones to look at for SSL Certificate information it gathers a lot of DATA.
as you can see in this partial snip it indicates the SHA2 algorithm. Now you could write a groovy TAG to or other TAGS to identify this. You should be able to do this with Asset Search let me know if you need details with this. Additionally there is a certificate dashboard as well.
Please let me know if you have questions, David
perfect. couldnt find it on the KB searching 'md','sha1' or 'hash', makes sense now.
Asset Search TAG XML should look something like this:
<?xml version="1.0" encoding="UTF-8"?>
Although you might want to remove the reference for DAYS.
If you want to auto-tag with groovy you could use this.
if(asset.getAssetType()!=Asset.AssetType.HOST) return false;
return (asset.resultsForQid(86002L)?.contains("sha1WithRSAEncryption") ||
Retrieving data ...