query for discovering TLS certs (#7797)

* query for discovering TLS certs

* Update standard-query-library.yml

* Use Nabil as the contributor

Co-authored-by: Zach Wasserman <zach@fleetdm.com>

* More accurate description of query purpose

Co-authored-by: Zach Wasserman <zach@fleetdm.com>

Co-authored-by: Zach Wasserman <zach@fleetdm.com>

docs/01-Using-Fleet/standard-query-library/standard-query-library.yml

@@ -919,4 +919,15 @@ spec:
   platforms: macOS
   tags: compliance, built-in
   platform: darwin
-  contributors: GuillaumeRoss
+  contributors: GuillaumeRoss
+---
+apiVersion: v1
+kind: query
+spec:
+  name: Discover TLS certificates
+  platforms: Linux, Windows, macOS
+  description: Retrieves metadata about TLS certificates for servers listening on the local machine. Enables mTLS adoption analysis and cert expiration notifications.
+  query: SELECT * FROM curl_certificate WHERE hostname IN (SELECT DISTINCT 'localhost:'||port FROM listening_ports WHERE protocol=6 AND address!='127.0.0.1' AND address!='::1');
+  purpose: Informational
+  tags: network, tls
+  contributors: nabilschear