Cert Grabber integration with Snapsec AIM
The Cert Grabber integration enhances your asset inventory by retrieving SSL/TLS certificate metadata from each discovered subdomain. This helps detect:- Expired certificates
- Weak encryption
- Misconfigured certificate chains
- Certificate reuse issues
How It Works
Once enabled, AIM will:- Scan discovered subdomains
- Fetch certificate details, including:
- Issuer
- Expiry date
- SAN entries
- Signature algorithm
- Public key info
- Map certificates to:
- Subdomains
- Services
- Technology fingerprints
Enabling the Integration
- Navigate to AIM → Integrations
- Select Cert Grabber
- Click Install
What AIM Enriches
- Automatically flags:
- Expired certificates
- Soon-to-expire certificates
- Weak or deprecated algorithms
- Creates certificate entries under AIM → Certificates
Troubleshooting
No certificates found:Subdomain may not resolve or may not support HTTPS. Duplicate certificates:
AIM deduplicates based on fingerprint.
Next Steps
Browse Certificates
View certificate metadata, expiration alerts, and linked assets.