sctcheck is a utility to show and check embedded SCTs (Signed Certificate Timestamps) in certificates.

sctscan is a utility to scan a CT log and check embedded SCTs (Signed Certificate Timestamps) in certificates in the log.

ContainsSCT checks to see whether the given SCT is embedded within the given certificate.

LeafHash calculates the leaf hash of the certificate or precertificate at chain[0] that sct was issued for.

LeafHashB64 does as LeafHash does, but returns the leaf hash base64-encoded.

LogInfoByKeyHash builds a map of LogInfo objects indexed by their key hashes.

NewLogInfo builds a LogInfo object based on a log list entry.

VerifySCT takes the public key of a Certificate Transparency Log, a certificate chain, and an SCT and verifies whether the SCT is a valid SCT for the certificate at chain[0], signed by the Log that the public key belongs to.

VerifySCTWithVerifier takes a ct.SignatureVerifier, a certificate chain, and an SCT and verifies whether the SCT is a valid SCT for the certificate at chain[0], signed by the Log whose public key was used to set up the ct.SignatureVerifier.

LogInfo holds the objects needed to perform per-log verification and validation of SCTs.

LogInfoByHash holds LogInfo objects index by the SHA-256 hash of the log's public key.