openssl#
Cryptography / TLS swiss-army knife.
$ openssl s_client -connect host:443 -servername host -showcerts
$ openssl x509 -in cert.pem -noout -text
$ openssl x509 -in cert.pem -noout -dates -fingerprint -sha256
$ openssl genrsa -out key.pem 4096
$ openssl req -new -key key.pem -out req.csr
$ openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes
$ openssl dgst -sha256 file
$ openssl enc -aes-256-gcm -pbkdf2 -in plain -out cipher