Print Page - DONE: Tool that lists digitally signed files from a folder/disk

DonationCoder.com Software => Coding Snacks => Finished Programs => Topic started by: neverlight on August 04, 2014, 09:32 AM

Title: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 04, 2014, 09:32 AM

At the moment, I can not find such a tool.

This kind of tool could be quite handy since malware analysts/researchers look into digitally signed files for whitelisting/blacklisting purposes.
Possible (important) features (to be considered):
- display digitally signed files from a specific folder as a list;
- ability to view the specific folder using a right-click menu (or something similar) on the digitally signed file;
- ability to filter files using digital signature details such as "Issued by", "Issued to", "Valid from" - "to", etc;

Kind Regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on August 04, 2014, 07:42 PM

That's really not a bad idea at all -- especially if it showed a grid with the signing details.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: 4wd on August 05, 2014, 04:39 AM

Maybe skwire can add another column to SFV Ninja (https://www.donationcoder.com/forum/index.php?topic=26193.0) ?

Turn it into CFV Ninja, (Complicated File Verification).

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 05, 2014, 07:25 AM

I didn't expect such positive replies.

Please note,that it's (very) important to know which files have a valid digital signature in terms of #date. In other words, to less or equal to current date. That could be a method.
Now, extending the idea of complex verification, It could also use an 'offline database', perhaps a text file (list) that contains default/custom trusted vendors. The vendors that are listed in the respective text file will show in a color, let's say green while the others that are not in the list will be marked red. Of course, colors could be customizable/user-choice -- whatever seems appropriate to DonationCoder.

Thanks again for the great feedback.

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: Curt on August 05, 2014, 03:02 PM

is this the same as sigverif?

Verify Unsigned Device Drivers

   Click Start, click Run, type sigverif, and then click OK.
   Click Advanced.
   Click Look for other files that are not digitally signed.

   In the Look in this folder box, type x:\Windows\system32\drivers, where x is the letter of the drive where Windows is installed.
   On the Logging tab, make sure the Save the file signature verification results to a log file check box is selected, and then click OK.
   Click Start.

   NOTE: The log file is named Sigverif.txt, and it is saved in the Windows folder. Third-party drivers that are unsigned are displayed as "Not signed." Use the drivers in this list as your troubleshooting starting point.

http://support.microsoft.com/kb/308514
-support.microsoft.com/kb/308514

The article was about XP, but I can confirm that I have sigverif on Win 7 as well.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: Shades on August 05, 2014, 08:59 PM

I tried it, but it only shows an overview of driver files that are not signed. The application sigverif is too limited to be of almost any use, if you would have asked me (and I know you didn't).

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 25, 2014, 08:56 AM

In the meantime, I've found a (temporary) solution-- Sigcheck (http://technet.microsoft.com/en-us/sysinternals/bb897441.aspx).

More information

Sigcheck is a command-line utility that shows file version number, timestamp information, and digital signature details, including certificate chains.

Interesting tool that does the job and it could be used in the "process". I'm guessing a GUI could be made based on this tool.
Hope it helps.

Kind Regards,
Marius Il.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on August 25, 2014, 10:40 AM

Thanks for posting about that.. it does seem like it would be a natural next step for someone to make a gui tool that uses this commandline utility.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 27, 2014, 09:16 AM

Interesting tool that does the job and it could be used in the "process". I'm guessing a GUI could be made based on this tool.
-neverlight (August 25, 2014, 08:56 AM)

Yep, quite easily. I assume you would like all bits of information listed in columns? Example output from the CLI tool:

Verified: Signed Signing date: 4:45 PM 4/28/2014 Publisher: Microsoft Corporation Description: File version and signature viewer Product: Sysinternals Sigcheck Prod version: 2.1 File version: 2.1 MachineType: 32-bit

Here's an extended output from the CLI tool:

Verified: Signed Signing date: 4:45 PM 4/28/2014 Publisher: Microsoft Corporation Description: File version and signature viewer Product: Sysinternals Sigcheck Prod version: 2.1 File version: 2.1 MachineType: 32-bit Binary Version: 2.10.0.0 Original Name: sigcheck.exe Internal Name: Sigcheck Copyright: Copyright (C) 2004-2014 Mark Russinovich Comments: n/a Entropy: 6.447

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on August 27, 2014, 09:20 AM

columns would be nice.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 27, 2014, 09:24 AM

columns would be nice.
-mouser (August 27, 2014, 09:20 AM)

For sure. I foresee something very similar to my PDFInfoGUI (http://skwire.dcmembers.com/fp/?page=pdfinfogui) tool.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on August 27, 2014, 09:51 AM

perfect.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 28, 2014, 05:13 AM

[...] I assume you would like all bits of information listed in columns? [...]
-skwire (August 27, 2014, 09:16 AM)

Yes. It's a good start (for the first version) but this (suggested) application should not be limited (only) to the output though. :up:

columns would be nice.
-mouser (August 27, 2014, 09:20 AM)
For sure. I foresee something very similar to my PDFInfoGUI (http://skwire.dcmembers.com/fp/?page=pdfinfogui) tool.
-skwire (August 27, 2014, 09:24 AM)

However, maybe columns should be opt-in. End-users should select which columns to be displayed.

Kind Regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 28, 2014, 03:48 PM

Yes. It's a good start (for the first version) but this (suggested) application should not be limited (only) to the output though. :up:
-neverlight (August 28, 2014, 05:13 AM)

Hmmm...not sure what else you'd want out of this tool.

However, maybe columns should be opt-in. End-users should select which columns to be displayed.
-neverlight (August 28, 2014, 05:13 AM)

Column order and widths are saved so, if you don't want to see a column, you would simply set it to zero-width. Here's a teaser screenshot so far:

[ You are not allowed to view attachments ]

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on August 28, 2014, 03:50 PM

nice!!!
love it. :up:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 28, 2014, 05:13 PM

Awesome.

Hmmm...not sure what else you'd want out of this tool.
-skwire (August 28, 2014, 03:48 PM)

Well, imagine tons & tons of files- you have to sort/filter these by columns, copy/move files to other folders, filter/hide files from signers that are loaded from a list, copy and paste displayed information such as hashes of files. These are most used operations.

Kind Regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 08, 2014, 11:36 PM

Apologies for the delay. Here's the first release:

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.0 - 2014-09-08 + Initial forum build.

Screenshots:

[ You are not allowed to view attachments ]

[ You are not allowed to view attachments ]

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 09, 2014, 08:49 PM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.2 - 2014-09-09 + Added option to include file hashes (MD5, SHA1, PESHA1, PE256, and SHA256). + Added "Is Running" column. (Thanks, mouser) + Added a toolbar button to dump all running exes to the list. (Thanks, mouser)

New screens:

[ You are not allowed to view attachments ]

[ You are not allowed to view attachments ]

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on September 09, 2014, 09:02 PM

LOVE it.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 10, 2014, 11:15 AM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.3 - 2014-09-10 + Double-clicking a row display the information box for that process. * Improved performance when clearing list items.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 10, 2014, 10:44 PM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.4 - 2014-09-10 + Added option to query VirusTotal (www.virustotal.com) for malware based on file hash. Note that this slows down scanning considerably. You can see the results in two new columns: Virus Total Detection and Virus Total URL. + Added context menu entry to go to the Virus Total URLs. + Added context menu entries to perform web searches based on the process name. Choose from Google, Bing, and Duck Duck Go. + Added "Export file list" feature to dump the full paths to a text file for later import using the "Import file list" feature.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on September 11, 2014, 01:48 PM

Written up by Martin at ghacks today!
http://www.ghacks.net/2014/09/11/check-windows-folders-for-file-signatures-with-sigcheckgui/

He seems to really like it, though he pointed out a few issues with the virustotal integration.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 11, 2014, 01:53 PM

Yeah, disabled that in a new build until I work out those kinks. I know WHAT the issue is...just need to come up with a way to handle it elegantly.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 11, 2014, 02:58 PM

Apologies for that. :-[

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.6 - 2014-09-11 ! Re-enabled VirusTotal functionality. SigcheckGUI now checks for the acceptance of the Sigcheck EULA and the VirusTotal ToS and will prompt the user for acceptance if necessary. v1.0.5 - 2014-09-11 ! Disabled the VirusTotal functionality until some kinks are worked out.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: Mattes57 on September 12, 2014, 04:01 AM

Nice tool. Thank you!

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 13, 2014, 08:02 AM

Thank you. I will spread the word about this amazing piece of software.
You should add a stop/pause/resume feature & process priority (foreground,background) feature.

Kinds Regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 13, 2014, 02:08 PM

Nice tool. Thank you!
-Mattes57 (September 12, 2014, 04:01 AM)

Thank you. I will spread the word about this amazing piece of software.
-neverlight (September 13, 2014, 08:02 AM)

Thank you, Mattes57 & neverlight. I'm glad you like the software.

You should add a stop/pause/resume feature & process priority (foreground,background) feature.
-neverlight (September 13, 2014, 08:02 AM)

"Cancelling a scan" feature is forthcoming. Regarding the process priority request, what do you expect to gain from such (honest question)?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 13, 2014, 03:42 PM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.7 - 2014-09-13 + Pressing the Escape key while a scan is going now cancels the scan.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: x16wda on September 13, 2014, 05:05 PM

Good stuff. Although the help still says it's a front end for tiffinfo. :-)

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 13, 2014, 05:51 PM

Good stuff. Although the help still says it's a front end for tiffinfo. :-)
-x16wda (September 13, 2014, 05:05 PM)

Thanks! I uploaded a silent build that should fix that help issue.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 14, 2014, 10:32 AM

"Cancelling a scan" feature is forthcoming. Regarding the process priority request, what do you expect to gain from such (honest question)?
-skwire (September 13, 2014, 02:08 PM)

Sometimes the window gets unresponsive while handling a lot of files. That's why I suggested priority similarly to how archive managers handle things. I'm not sure if it's possible.

Also, it would be very interesting to see a cache system that might speed up the process since some files might have been (already) processed.
Perhaps there should be another action in "View" tab that gives end-users the ability to show only unique files (not duplicates).

Another issue that I've observed is that it does not handle special characters well. Probably a display issue.

And another suggestion would be to rename "Trusted list" to "Trusted Vendors" as this might avoid possible confusion & make the box re-sizable.

I've seen that you get to choose from three different search providers. However, why not let the user choose additional ones? Perhaps it should be configurable since some users might have access to executable databases by using hashes (or other information). Thus, another useful suggestion would be to allow macros. As for example, the user could input $SHA1 (and other) in the url.
Example of such usage (but not necessarily limited to VirusTotal) : https://www.virustotal.com/en/file/$SHA256/analysis/

While I do like that you can use "Open VirusTotal URL(s)" from the right-click menu, it is unclear on how to actually use it from a novice user point of view. This action is available/enabled by default. I'm not sure if it is intended since you can spam this action while not doing anything and not being ok from aesthetics point of view.

Also, the clean action will not do anything if files are being processed. I'm guessing this option could be grayed out or/and inform the user that it is not possible, maybe.

Under "Help" tab > "Contents", users would expect a help file and not a pop-up that describes SigcheckGUI since there is an "About" button. Superseded.

Another suggestion that might be useful regarding quick access would be to add another action in the right-click menu named, for example, "Open File Location".

Maybe, the "Info Box" action from right-click menu should be grayed out for multiple files.

SigcheckGUI or SigCheckGUI -- Is it intended?

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 14, 2014, 11:06 AM

Sometimes the window gets unresponsive while handling a lot of files. That's why I suggested priority similarly to how archive managers handle things. I'm not sure if it's possible.
-neverlight (September 14, 2014, 10:32 AM)

Unfortunately, that unresponsiveness has nothing to do with the process priority. It has to do with the fact that the UI is waiting for the commandline sigcheck.exe to finish. There are a few different methods I can use for this so it might be something I can alleviate.

Also, it would be very interesting to see a cache system that might speed up the process since some files might have been (already) processed.
-neverlight (September 14, 2014, 10:32 AM)

Doubtful that I'd add this.

Perhaps there should be another action in "View" tab that gives end-users the ability to show only unique files (not duplicates).
-neverlight (September 14, 2014, 10:32 AM)

I can add an option like "Skip duplicates in list" or something like that. If this is enabled, files that already exist in the list will be skipped. I'd think the full path would have to match exactly for this to be useful, though.

Another issue that I've observed is that it does not handle special characters well. Probably a display issue.
-neverlight (September 14, 2014, 10:32 AM)

The app does seem to handle Unicode paths and Unicode filenames without issue so I'll assume you're talking about the actual displayed data. If so, can you provide me an example of what you're seeing?

And another suggestion would be to rename "Trusted list" to "Trusted Vendors" as this might avoid possible confusion & make the box re-sizable.
-neverlight (September 14, 2014, 10:32 AM)

Can do.

Also, the clean action will not do anything if files are being processed. I'm guessing this option could be grayed out or/and inform the user that it is not possible, maybe.
-neverlight (September 14, 2014, 10:32 AM)

Can do.

Under "Help" tab > "Contents", users would expect a help file and not a pop-up that describes SigcheckGUI since there is an "About" button. Superseded.
-neverlight (September 14, 2014, 10:32 AM)

Ah, help files. The bane of developers everywhere. :) I'm terrible at providing them. :-[ That said, I do try to write my applications such that, hopefully, a help file shouldn't be needed for the most part.

Another suggestion that might be useful regarding quick access would be to add another action in the right-click menu named, for example, "Open File Location".
-neverlight (September 14, 2014, 10:32 AM)

Can do.

Maybe, the "Info Box" action from right-click menu should be grayed out for multiple files.
-neverlight (September 14, 2014, 10:32 AM)

Good point.

SigcheckGUI or SigCheckGUI -- Is it intended?
-neverlight (September 14, 2014, 10:32 AM)

I've seen both. However, the official site for the sigcheck.exe program (http://technet.microsoft.com/en-us/sysinternals/bb897441.aspx) that does the grunt work has it spelled Sigcheck so that's what I went with.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 14, 2014, 11:22 AM

The app does seem to handle Unicode paths and Unicode filenames without issue so I'll assume you're talking about the actual displayed data. If so, can you provide me an example of what you're seeing?
-skwire (September 14, 2014, 11:06 AM)

"Product" & "Copyright" columns, for example. Please check attachment.

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 14, 2014, 11:37 AM

"Product" & "Copyright" columns, for example. Please check attachment.
-neverlight (September 14, 2014, 11:22 AM)

This looks to be an issue with sigcheck.exe itself not being able to handle those characters. Run a "sigcheck -a c:\windows\explorer.exe" and you'll see what I mean.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 14, 2014, 11:47 AM

sigcheck.exe itself not being able to handle those characters. Run a "sigcheck -a c:\windows\explorer.exe
-skwire (September 14, 2014, 11:37 AM)

Those are not really important anyway. Future versions of Sigcheck might have it fixed.

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 15, 2014, 08:29 AM

Another review,
http://www.softpedia.com/get/Security/Security-Related/SigcheckGUI.shtml
&
http://www.appinn.com/sigcheckgui-for-win/

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 16, 2014, 12:37 AM

Another review,
http://www.softpedia.com/get/Security/Security-Related/SigcheckGUI.shtml
&
http://www.appinn.com/sigcheckgui-for-win/
-neverlight (September 15, 2014, 08:29 AM)

Thanks for the heads up. Looks like SigcheckGUI is starting to make some rounds around the internet.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 17, 2014, 02:38 PM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.8 - 2014-09-17 + Added an option to disallow duplicates in the list. (Thanks, neverlight) + Added icons to the statusbar for the Sigcheck and VirusTotal websites. + Added "Open file location" feature to the toolbar and context menu. (Thanks, neverlight) * Disabled certain GUI elements during a scan. * Changed "Trusted list" to "Trusted vendors." (Thanks, neverlight)

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 19, 2014, 03:54 PM

Thanks for the update, skwire. :up:

Another suggestion would be search functionality.

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 19, 2014, 04:06 PM

Another suggestion would be search functionality.
-neverlight (September 19, 2014, 03:54 PM)

To clarify, I think you mean a list filter, right? That is, you type a string in a field and the list is reduced (filtered) to only those processes that match the search string. I say this, because you can already "type" while in the list and it should match on the filename and highlight it. Am I correct?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on September 21, 2014, 02:30 PM

To clarify, I think you mean a list filter, right? That is, you type a string in a field and the list is reduced (filtered) to only those processes that match the search string. I say this, because you can already "type" while in the list and it should match on the filename and highlight it. Am I correct?
-skwire (September 19, 2014, 04:06 PM)

A filtering function based on column data. As for example, searching for a certain vendor, hash, etc.

Also, you should add a message or something for missing <sigcheck.exe>. That might cause some trouble.

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 22, 2014, 12:01 AM

I'm out of town this week for work but let me see what I can do when I get back.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on October 01, 2014, 02:12 PM

A filtering function based on column data. As for example, searching for a certain vendor, hash, etc.
Also, you should add a message or something for missing <sigcheck.exe>. That might cause some trouble.
-neverlight (September 21, 2014, 02:30 PM)

Both covered in the latest build. How does this look?

[ You are not allowed to view attachments ]

Give it a try and let me know what think. Thank you.

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.0.9 - 2014-10-01 + Added comprehensive search functionality. (Thanks, neverlight) + SigcheckGUI now checks for the presence of sigcheck.exe when it starts up and, if it's not found, offers to take the user to the Sysinternals website to download it. (Thanks, neverlight) + Added "Scan all running processes" to the File menu. (Thanks, mouser) + Added "Clear list" functionality to the Edit menu.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: mouser on October 01, 2014, 02:31 PM

The search functionality rocks :up:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on October 04, 2014, 08:38 AM

Good work!! I like it. I'm also kind of impressed while looking trough memory usage. :)

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on October 04, 2014, 09:43 AM

The search functionality rocks :up:
-mouser (October 01, 2014, 02:31 PM)

Thanks, mouser. :)

Good work!! I like it. I'm also kind of impressed while looking trough memory usage. :)
-neverlight (October 04, 2014, 08:38 AM)

Right on. I'm glad you like it. I think we can call this one done, eh?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on October 05, 2014, 01:28 PM

Right on. I'm glad you like it. I think we can call this one done, eh?
-skwire (October 04, 2014, 09:43 AM)

Of course.

Thanks,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on October 05, 2014, 03:14 PM

Great, thanks. I'll move this thread to the Finished section.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: DRMex on December 11, 2014, 08:10 PM

Hi

Great front-end
have one question, i don't see any drivers on the list, whether you select folder with drivers or select manual some driver (.sys), list is empty
actually when i choose add files, in opened window of \windows\system32\drivers\ i see only few sys files and even i choose them nothing happens, empty columns
i use win 7 sp1 ultimate x64, i'm admin and UAC is turned off
if i copy dozen of drivers for example to desktop i now can see them in add files open window but when select them again nothing happens, columns stay empty
didn't know for sure is it problem on my side, some restriction maybe or with GUI (runned as admin)

if i use just sigcheck.exe everythig is fine
this is shorter example of output from sigcheck, it can check SbieDrv.sys

[Select]

C:\Program Files\Sandboxie>sigcheck -a -e

Sigcheck v2.1 - File version and signature viewer
Copyright (C) 2004-2014 Mark Russinovich
Sysinternals - www.sysinternals.com

C:\Program Files\Sandboxie\SandboxieCrypto.exe:
   Verified: Signed
   Signing date: 20:29 9.12.2014.
   Publisher: Invincea
   Description: Sandboxie COM Services (CryptSvc)
   Product: Sandboxie
   Prod version: 4.15.6
   File version: 4.15.6
   MachineType: 64-bit
   Binary Version: 4.15.6.0
   Original Name: SandboxieCrypto.exe
   Internal Name: Crypto
   Copyright: Copyright ę 2004-2014 by Sandboxie Holdings, LLC
   Comments: n/a
   Entropy: 5.954
C:\Program Files\Sandboxie\SbieDrv.sys:
   Verified: Signed
   Signing date: 20:30 9.12.2014.
   Publisher: Invincea
   Description: Sandboxie Kernel Mode Driver
   Product: Sandboxie
   Prod version: 4.15.6
   File version: 4.15.6
   MachineType: 64-bit
   Binary Version: 4.15.6.0
   Original Name: SbieDrv.sys
   Internal Name: SbieDrv
   Copyright: Copyright ę 2004-2014 by Sandboxie Holdings, LLC
   Comments: n/a
   Entropy: 6.279
C:\Program Files\Sandboxie\SbieMsg.dll:
   Verified: Signed
   Signing date: 20:29 9.12.2014.
   Publisher: Invincea
   Description: Sandboxie Messages and Text
   Product: Sandboxie
   Prod version: 4.15.6
   File version: 4.15.6
   MachineType: 64-bit
   Binary Version: 4.15.6.0
   Original Name: SbieMsg.dll
   Internal Name: SbieMsg
   Copyright: Copyright ę 2004-2014 by Sandboxie Holdings, LLC
   Comments: n/a
   Entropy: 4.624
C:\Program Files\Sandboxie\sigcheck.exe:
   Verified: Signed
   Signing date: 22:45 28.4.2014.
   Publisher: Microsoft Corporation
   Description: File version and signature viewer
   Product: Sysinternals Sigcheck
   Prod version: 2.1
   File version: 2.1
   MachineType: 32-bit
   Binary Version: 2.10.0.0
   Original Name: sigcheck.exe
   Internal Name: Sigcheck
   Copyright: Copyright (C) 2004-2014 Mark Russinovich
   Comments: n/a
   Entropy: 6.447

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: telealex on June 22, 2015, 05:34 PM

skwire, many thanks for this tool!

but I've idea for improve it a little bit

a) can you please add a context menu point on items - "System menu". (near current "Open file location") because PC where I'm using this tool is pretty slow and it have a problem (time) to open "System menu", but open folder/explorer's window with content where I can make right click it takes a lot of time! and more, than I need go back to opened explorer and close it! it's too hard work 8) instead of one right click on item in the list

and other thing. now in case of "Unknown" (column "Virus Total Detection", because it wasn't analyze steel - new file) I need to open folder, than right click on file, and select point "Send to VirusTotal" (I'm using for this point official tool)......

b) I think it more important of all my points. Can you please make possibility to save (automatically or CFGble in Options) results of scann and downloading result's data from VirusTotal web site? because it so loooong to wait each scann.
e.g. now I've waited more than 2hours for analyze 3431 elems (w7x64,x86Folder) and waiting for download results from VirusTotal. And of course this PC have been a spy proxy...
e.g. you can save VT data only if there is HASH of files. and it's better to have possibility to cgf which HASH need to show/calculate. I think you have hash of files in the list, because it need for VirusTotal?
There is need only DB with HASH and quantity of VT detections. I'm right? and it will take not so big size (for this functionality!!!). than other projects can use (download from your project) this DB.

c) columns lose sorting order triangle

what do you think about?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on June 22, 2015, 07:59 PM

Hi, telealex, and welcome to the DonationCoder site. I'm on holiday this week but I'll try to take a closer look at your post when I get back.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: telealex on June 27, 2015, 09:10 AM

Hi, telealex, and welcome to the DonationCoder site. I'm on holiday this week but I'll try to take a closer look at your post when I get back.
-skwire (June 22, 2015, 07:59 PM)

many thanks

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on July 06, 2015, 03:42 AM

@skwire, There's also a new version of Sigcheck as of March 10, 2015. ;)

reveal/hide changelog

This release of Sigcheck, a command-line tool that reports file version, code signing, and hash information, introduces import-hash reporting and support for files larger than 4 GB.

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on August 10, 2015, 11:50 PM

I started newest SigCheck GUI for all running processes and found some with a blue question mark.
Among them some important prcoesses like lsass.exe, csrss.exe and spoolsv.exe

What does a blue question mark mean?

They are not checked in Virustotal. Why not?

I cannot open the file location: Why not?

How can I verify otherwise that they are the correct/correctly signed original binaries from Microsoft?

Peter

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 11, 2015, 02:28 AM

What does a blue question mark mean?
-pstein (August 10, 2015, 11:50 PM)

In the Verified column, you should see some text. "Signed" gets a green check mark; "Unsigned" gets red exclamation point; "A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file." gets a yellow exclamation point. Any other text in there gets a blue question mark. One example I've seen is, "The timestamp signature and/or certificate could not be verified or is malformed."

They are not checked in Virustotal. Why not?
-pstein (August 10, 2015, 11:50 PM)

Are you saying that none of your files have VirusTotal URLs listed? If so, do you have the appropriate option checked in the Options tab? FWIW, the VirusTotal URLs appear to be working fine for me under W7/64. Which OS are you using?

I cannot open the file location: Why not?
-pstein (August 10, 2015, 11:50 PM)

This took some research but should be fixed in the latest version. In a nutshell, on 64-bit versions of Windows, 32-bit applications such as AutoHotkey run inside WOW64 so calls to certain 64-bit files were getting automatically redirected to the c:\Windows\SysWOW\64 folder. :-\ :-\ :-\

How can I verify otherwise that they are the correct/correctly signed original binaries from Microsoft?
-pstein (August 10, 2015, 11:50 PM)

Again, things appear to be working fine for me. Which OS are you using? Please note that I develop and test on Win7/64. I sometimes test on XP if necessary. I do not have W8 or W10.

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.1.0 - 2015-08-11 ! "Open file location" did not work properly for certain 64-bit files. (Thanks, pstein)

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on August 11, 2015, 02:46 AM

I am using 64 bit Win 7 pro.

I am using GUI version 1.0.9 and SigCheck v2.2. Are there an newer versions?
VirusChecks are performed for all but the blue items.

There is no comment absolutely noting in the line except the process name.

Have a look at the following snapshot:

[ You are not allowed to view attachments ]

So again: Why do I get no further information?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 11, 2015, 02:56 AM

I am using GUI version 1.0.9 and SigCheck v2.2. Are there an newer versions?
-pstein (August 11, 2015, 02:46 AM)

Yes. If you look at the bottom of my previous post, you'll see version 1.1.0.

So again: Why do I get no further information?
-pstein (August 11, 2015, 02:46 AM)

*shrug* I don't know. Are you running the application with administrator rights? Please note that SigcheckGUI is just a front-end for the sigcheck.exe commandline program that you'll find in your SigcheckGUI folder. You could try running sigcheck.exe directly on one of those files in question and see what it reports back. I'd be interested to know.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on August 11, 2015, 05:44 AM

Ok, with your new version v1.1 it works BUT

On page http://skwire.dcmembers.com/fp/?page=sigcheckgui
still only v1.0.9 is available and
on page

https://technet.microsoft.com/en-us/sysinternals/bb897441.aspx

Sigcheck (cmdline version from sysinternals) v2.2 is already available!

Your package contains only v2.1

Maybe there are problemes with a changed API.

Can you check your GUI with the newest v2.2

?
Peter

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 11, 2015, 09:59 AM

On page http://skwire.dcmembers.com/fp/?page=sigcheckgui
still only v1.0.9 is available and
-pstein (August 11, 2015, 05:44 AM)

Updated, thank you.

Sigcheck (cmdline version from sysinternals) v2.2 is already available!
Your package contains only v2.1
-pstein (August 11, 2015, 05:44 AM)

The EULA of the 2.2 version changed and I'm no longer allowed to distribute sigcheck.exe in the SigcheckGUI download zip. However, you're free to download the new 2.2 version yourself and copy it into your SigcheckGUI folder. FWIW, I can't seem to find a changelog for Sigcheck so I'm unsure as to what has changed in the 2.2 version.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on August 11, 2015, 01:20 PM

However, you're free to download the new 2.2 version yourself and copy it into your SigcheckGUI folder.
-skwire (August 11, 2015, 09:59 AM)

Thats exactly what I did: But GUI v1.1 works only with SigCheck v2.1 and not v2.2

So something important must be changed. You should be able to find out what

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 11, 2015, 01:35 PM

Thats exactly what I did: But GUI v1.1 works only with SigCheck v2.1 and not v2.2
-pstein (August 11, 2015, 01:20 PM)

SigcheckGUI v1.1.0 works fine for me with sigcheck.exe v2.20 in the folder. :huh:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on August 11, 2015, 01:46 PM

.....except the blue icon lines which appear with v2.2 but not with v2.1

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 18, 2015, 04:10 PM

I found one small issue. On the other hand, it might be intended (but limited) behavior.
To better illustrate this issue, please consider the following example: if I tick under "View" tab to display only "Signed" files then some cases are ignored. You will get the blue icon and this message under "Verified" : "A certificate was explicitly revoked by its issuer."
Thus, we have another category of files which are signed : "Revoked". This should be displayed under "View" tab. What do you think, @skwire ? :-[

Additionally, please check my screenshot.

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on August 18, 2015, 04:25 PM

Thus, we have another category of files which are signed : "Revoked". This should be displayed under "View" tab. What do you think, @skwire ?
-neverlight (August 18, 2015, 04:10 PM)

Well, I don't know. I mean, I'm no expert regarding any of this but, without knowing the reason a signature was revoked, I'm not sure I'd put 'Revoked' on the same level as 'Signed'. Maybe I'm wrong?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 18, 2015, 04:30 PM

Digital signatures get revoked for example when these are found to be malicious (but present a signature in order to be blacklisted, not by hash but by digital signature ; malicious/blacklisted vendor).

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on August 18, 2015, 04:48 PM

Another ignored case is related to altered (signed) files (files that are digitally signed but altered by malicious applications, hex editors etc). These are files where digital signature does not verify.
These are listed under "Unsigned" -- not correct. Perhaps this is another category of signed files : "Invalid".

Please check my screenshots.

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on October 01, 2015, 05:57 PM

.....except the blue icon lines which appear with v2.2 but not with v2.1
-pstein (August 11, 2015, 01:46 PM)

Did you try running 'SigcheckGUI' as Administrator?

The reason why I'm asking is because I noticed the following :
1. Right-click on 'sigcheck.exe' ~ Go to 'Compatiblity' tab ~ Check 'Run this program as an administrator' ;
2. Run 'SigcheckGUI.exe' ~ You will notice that ALL files appear with a blue icon.
However, if you run 'SigcheckGUI.exe' as Administrator then the issue is gone.

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on November 14, 2015, 12:27 AM

SigCheck GUI does not work with new sigcheck.exe v2.3!

After having downloaded the newest sigcheck.exe v2.3 from MS I copied it to the SigCheck GUI installation folder and started the GUI.

Then I scanned all currently running processes and found lots of processes with a blue question mark icon at the beginning of the line and empty columns.

It seems to me that SigCheck GUI v1.1.0 is incompatible with the sigcheck.exe v2.3 syntax

Could you fix this in a new version?

Thank you
Peter

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on November 14, 2015, 08:00 PM

It seems to me that SigCheck GUI v1.1.0 is incompatible with the sigcheck.exe v2.3 syntax
Could you fix this in a new version?
-pstein (November 14, 2015, 12:27 AM)

Works fine for me with v2.3. Is this the same issue you reported when moving from sigcheck v2.1 to v2.2? If so, are you running BOTH the sigcheck.exe AND SigcheckGUI.exe with administrator rights? If you're not, following the instructions in neverlight's last post (https://www.donationcoder.com/forum/index.php?topic=38612.msg390178#msg390178) and see if that solves the problem.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: pstein on November 15, 2015, 03:24 AM

Hello skwire:
Yes, it seems to be the same issue as for v2.2. BUT:

Enabling "Run as Administrator" is NOT a solution!
Yes, of cause, I enabled it for both programs but it didn't help.
I even disabled UAC completely - it didn't help.
Moreover: Assume missing the Administrator rights would be the culprit: Then it should not work with v2.1 either!
But everything works fine for v2.1. On the same machine for the same SigCheck GUI installation (but different sigcheck.exe)

At least I would expect some warning in SigCheck GUI like "Please run as Adminstrator" or "Warning: Run without Administrator rights".
But silently suppress some information is not smart.

To give you an impression on how it looks like here I uploaded a snapshot:

http://www.picfront.org/d/9lXK

I would appreciate if you could fix the error.
Thank you

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: Ath on November 15, 2015, 04:12 AM

I've been testing on Win10 here, with SigCheckGUI 1.1.0.1 with SigCheck 2.10.0.0 and SigCheck 2.30.0.0, and I can see no different results when checking all running processes. Only 3 unsigned executables, and the rest is all green checks and Signed in the appropriate column, and all columns filled as expected. I've tested with Checksums and VirusTotal checks enabled in consecutive runs, and both with and without Run as Administrator, while UAC is enabled and on the default level.

Might it be that G Data is interfering with SigCheckGUI/SigCheck while it is checking the files? I'm using Avast (Free) here, and that does not interfere AFAICS. You could try to disabled G Data and see if that improves your scan-results, it could see the newer SigCheck version as an 'unknown' or 'unfamiliar' tool, and disallow or delay access resulting in intermittent failures during scanning.
(Experience has learned me over the years that disabling AV and similar tools solves a lot of intermittent and unexplained application failures, and there isn't much the application can do about that, as any workaround you devise comes back to bite you in your butt in the near future)

NB: This forum allows for in-message, on-forum, (image) attachments if you go to the Reply page or Preview your Quick Reply.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on November 15, 2015, 11:48 AM

Enabling "Run as Administrator" is NOT a solution!
-pstein (November 15, 2015, 03:24 AM)

Enough with the exclamation points. They certainly don't inspire me to fix anything.

Yes, of cause, I enabled it for both programs but it didn't help.
I even disabled UAC completely - it didn't help.
Moreover: Assume missing the Administrator rights would be the culprit: Then it should not work with v2.1 either!
But everything works fine for v2.1. On the same machine for the same SigCheck GUI installation (but different sigcheck.exe)
-pstein (November 15, 2015, 03:24 AM)

It might appear to be that simple. However, because you run an anti-virus program which, usually, interferes with all running processes, this might not be the case.

At least I would expect some warning in SigCheck GUI like "Please run as Adminstrator" or "Warning: Run without Administrator rights".
But silently suppress some information is not smart.
-pstein (November 15, 2015, 03:24 AM)

I do not suppress anything. My application works as designed on my machine and on my XP virtual machine. This makes it difficult to fix your reported issue.

I would appreciate if you could fix the error.
Thank you
-pstein (November 15, 2015, 03:24 AM)

What you need to realise is that this is a front-end for sigcheck.exe. All I'm doing is "running" sigcheck.exe, just as you would in a DOS prompt on your system, and interpreting its output. There is no programming voodoo I'm using here. Past that, you are going to have to research and test why your system is getting this error. You need start up a DOS prompt and run the different sigcheck.exe versions on the processes you get the blue icon for and see if you can figure out why 2.1 works and 2.2/2.3 do not.

For the record, I can confirm that the input and output syntax between all three versions is the same. I can also tell you that SigcheckGUI uses the following command-line switches:

-q -a (used always)
-h (used if the compute hash option is enabled)
-v (used if the query VirusTotal option is enabled)

So, a typical commandline for this might look like this:

"c:\path\to\sigcheck.exe" -q -a "c:\path\to\SomeExecutable.exe"

If you enable the other options, it would be like this:

"c:\path\to\sigcheck.exe" -q -a -h -v "c:\path\to\SomeExecutable.exe"

Of course, change the "c:\path\to" portions to match the paths on your system.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on January 27, 2016, 12:25 PM

"Copy files" action does not seem to work. :huh:

Kind regards,
Marius

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on February 11, 2016, 06:11 PM

"Copy files" action does not seem to work. :huh:
-neverlight (January 27, 2016, 12:25 PM)

Thanks, Marius. :up:

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.1.1 - 2016-02-11 ! Copy files functionality was broken. (Thanks, neverlight)

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: David.P on June 26, 2016, 11:31 AM

Hi forum and skwire,

thank you for the great GUI for Sigcheck!

I ran SigcheckGUI on all *.exe files on the hard drive, and with most of the files, I got a Virustotal result. However, for some files it would either not call Virustotal, or report "unknown" for the result, see below screenshot:

(http://i.imgur.com/tibBd7g.png)

Is there anyting I can do to check those files as well on a batch run of SigcheckGUI?

Thanks again,
David

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on June 26, 2016, 11:57 AM

SigcheckGUI does not upload files to the VirusTotal website so, if there was no VirusTotal result, it usually means that nobody has ever uploaded that particular file to the VirusTotal website. I think that's the issue at hand here.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on September 03, 2016, 01:25 PM

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.1.2 - 2016-09-03 + Added file size (KB) and last modified datetime columns. (Thanks, tp109) + Added sorting arrows to the columns. (Thanks, telealex)

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: zxhtrzdg on November 04, 2016, 08:44 AM

Really great tool :Thmbsup: It makes Sigcheck so much better!
I'm surprised that it doesn't take files/folders as arguments, though.
I think it would be nice to use it through SendTo then.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on November 04, 2016, 11:22 PM

Hi, zxhtrzdg, and welcome to the DonationCoder site. :D

I'm surprised that it doesn't take files/folders as arguments, though.
-zxhtrzdg (November 04, 2016, 08:44 AM)

Please check out the latest version I just uploaded:

Website (http://skwire.dcmembers.com/fp/?page=sigcheckgui) | Download (http://skwire.dcmembers.com/apps/sigcheckgui/SigcheckGUI.zip) v1.1.3 - 2016-11-04 + SigcheckGUI now handles passed files and folders. (Thanks, zxhtrzdg) + Added "Clear unknown" to the Clear menu. * Changed/added some icons. * Verified SigcheckGUI works with sigcheck.exe v2.54.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: zxhtrzdg on November 05, 2016, 04:05 AM

Hi, zxhtrzdg, and welcome to the DonationCoder site. :D

Please check out the latest version I just uploaded:
-skwire (November 04, 2016, 11:22 PM)

Wow, that was fast! Skwire, thank you for the quick update :Thmbsup:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on November 06, 2016, 12:21 PM

Wow, that was fast! Skwire, thank you for the quick update :Thmbsup:
-zxhtrzdg (November 05, 2016, 04:05 AM)

You're welcome. I'm glad you find the program useful. :Thmbsup:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on November 17, 2016, 02:50 PM

Just wondering-- Wouldn't it be better while using "Rescan list" action to filter existent list instead of re-using sigcheck (for example, it could be faster in the case where you add a trusted vendor and recheck the list)?

Thanks for the updates by the way. ;D

Kind regards,
Marius

// added more details

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on June 18, 2017, 11:26 AM

It seems 'Trusted vendor names' (SkipList) does not work with many entries. Try to copy-paste entries from my list (see attachment) & check config. Not sure what's happening. Looks like a bug. :huh:

[attachment deleted by admin][/attachment]

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on July 03, 2017, 03:48 PM

It seems 'Trusted vendor names' (SkipList) does not work with many entries. Try to copy-paste entries from my list (see attachment) & check config. Not sure what's happening. Looks like a bug. :huh:
-neverlight (June 18, 2017, 11:26 AM)

That list is currently saved as an INI entry which is typically limited to ~65,535 characters. Do you really have need for such a long skip list? If so, I can rework it so that setting uses a text file instead of the INI setting.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: neverlight on July 09, 2017, 03:17 AM

Hi skwire,

Yup. It would be great if you could workaround the issue if you have time. Thanks. :up:

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: WarsawPact1955 on January 13, 2019, 07:07 PM

I'm not sure this is doable due to SigcheckGUI being a GUI wrapper around the already-compiled sigcheck.exe, but I have need for the full Subject Name to be displayed rather than just the final CN of the Subject Name. sigcheck.exe doesn't do this. Is SigcheckGUI calling any Crypto APIs, itself, such that it could be made to do this?

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: skwire on January 13, 2019, 07:16 PM

Hi, WarsawPact1955, and welcome to the DonationCoder site. :Thmbsup:

I'm not sure this is doable due to SigcheckGUI being a GUI wrapper around the already-compiled sigcheck.exe, but I have need for the full Subject Name to be displayed rather than just the final CN of the Subject Name. sigcheck.exe doesn't do this. Is SigcheckGUI calling any Crypto APIs, itself, such that it could be made to do this?
-WarsawPact1955 (January 13, 2019, 07:07 PM)

No, SigcheckGUI doesn't use any crypto APIs on its own. If sigcheck.exe doesn't show it, SigcheckGUI isn't going to be able to, either.

Title: Re: DONE: Tool that lists digitally signed files from a folder/disk
Post by: WarsawPact1955 on January 14, 2019, 07:36 PM

Hi, and thanks for letting me know. ;) I am generating long lists of certificate Subject Names to trust applications with in a firewall, so I may write up something to do that job. Considering how busy I am no promises! :D

DonationCoder.com Forum

DonationCoder.com Software => Coding Snacks => Finished Programs => Topic started by: neverlight on August 04, 2014, 09:32 AM