Eric Brandes is a software engineer who actually understands why Certificate Transparency logs exist and, more importantly, why searching them is a nightmare. After spending too much time watching developers struggle with CT log APIs that return everything except what you’re looking for, he decided to document the reality of certificate discovery.
Eric writes about the technical depths of PKI infrastructure, certificate transparency implementation, and why every “simple” certificate solution has seventeen edge cases nobody mentions in the documentation. He believes in showing actual code that works rather than theoretical examples that break in production.
When he’s not parsing base64-encoded certificate chains or explaining why your CT log monitor is lying to you, Eric is building tools that make certificate management slightly less terrible than it was yesterday.
Searching Certificate Transparency logs lets you uncover every SSL/TLS certificate ever issued for your domain. You can detect mis-issuance, unauthorized changes, or shadow infrastructure before it becomes a problem. It’s a good way to monitor your digital identity and maintain trust in your organization’s security posture.
CertKit