I wanted to find a systematic way of finding self-signed certificates without a dependency on any other item, such as DNS or lists that could be out of date. I wrote a basic shell script to use wget to download the default page using an IP address. I looped through all IP’s within a block. This finds anything that is using a self-signed certificate. The script is basic and can be optimized to run multiple networks at one time rather than looping sequentially.