Home/Glossary/Certificate Transparency (CT)

Certificate Transparency (CT)

A public logging system that records all SSL/TLS certificates, enabling detection of misissued or malicious certificates.

PKI & CertificatesAlso called: "ct logs", "certificate monitoring"

CT logs create an append-only, cryptographically verified record of every certificate issued.

Benefits for security

Detect rogue certificates issued for your domains.
Monitor for typosquatting and phishing attempts.
Verify CAs are following proper issuance procedures.
Meet browser requirements (Chrome, Safari require CT logging).

How to use CT logs

Monitor crt.sh or Censys for your domain names.
Set up alerts for new certificate issuance.
Validate certificates have SCTs (Signed Certificate Timestamps).

Related Tools

View all articles

Let's Encrypt Complete Guide: Free SSL/TLS Certificates with Certbot & ACME

Master Let's Encrypt free SSL/TLS certificates with Certbot installation, HTTP-01 and DNS-01 challenges, wildcard certificates, Cloudflare and Route53 integration, automated renewal, and troubleshooting.

Read article →

TLS Certificate Complete Guide: SSL/TLS Certificate Management for DevOps [2026]

Master SSL/TLS certificate management with our comprehensive guide covering certificate types, lifecycle management, automation, security best practices, mTLS, OCSP stapling, and troubleshooting for modern infrastructure.

Read article →

Cloud Penetration Testing: A Complete Guide for AWS, Azure, and GCP

Cloud penetration testing requires different approaches than traditional network testing. Learn cloud provider policies, testing methodologies, and common findings across AWS, Azure, and GCP environments.

Read article →

AWS S3 Versioning and Cross-Region Replication: Disaster Recovery Guide

Master S3 versioning and replication for data protection. Learn how to configure versioning, set up cross-region and same-region replication, and build disaster recovery strategies.

Read article →