-
Notifications
You must be signed in to change notification settings - Fork 3
/
Save-NetCertificate.ps1
46 lines (45 loc) · 1.49 KB
/
Save-NetCertificate.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
<#
.Synopsis
Save the TLS certificate from a remote server as a certificate file.
.DESCRIPTION
Obtain the TLS certificate from a remote server by name or IP address and TCP port and save it to disk.
.PARAMETER ComputerName
Specify the DNS name or IP address of the URL you want to query.
.PARAMETER Port
Specify the port of the destination server.
.PARAMETER Path
Specify the path to save the certificate.
.EXAMPLE
Save-NetCertificate -ComputerName www.google.com -Port 443 -Path C:\Temp\server.crt
.EXAMPLE
Save-NetCertificate -IP 8.8.8.8 -Port 853 -Path C:\Temp\server.crt
.NOTES
Adapted by: Jason Wasser
Original code by: Rob VandenBrink
Inspiration
https://isc.sans.edu/forums/diary/Assessing+Remote+Certificates+with+Powershell/20645/
Modified: 1/9/2020 02:16:05 PM
#>
function Save-NetCertificate {
[cmdletbinding()]
Param (
[Parameter(Mandatory = $true)]
[Alias('IP')]
[string]$ComputerName,
[int]$Port = 443,
[string]$Path = 'C:\Scratch\certificate.cer'
)
$Certificate = Get-NetCertificate -ComputerName $ComputerName -Port $Port
[byte[]]$CertificateInBytes = $Certificate.Export('Cert')
if (!(Test-Path -Path $Path)) {
New-Item -Path $Path -ItemType File -Force
}
switch ($PSVersionTable.PSEdition) {
'Desktop' {
Set-Content -Path $Path -Value $CertificateInBytes -Encoding Byte -Force
}
'core' {
Set-Content -Path $Path -Value $CertificateInBytes -AsByteStream -Force
}
}
}