| September 2, 2018 | ||
|---|---|---|
 |
View 0f53ea6
Add support for MD5 and SHA256 hash-based validation of the exe code Also refactors the code a bit to consolidate some duplicate functionalityAndrew authored on 2018/09/02 12:29:45 |
|
| September 1, 2018 | ||
|---|---|---|
|
View 6b9e6a4
Allow the countersignature to exist anywhere in unauthAttrsAndrew authored on 2018/09/01 06:02:51 |
|
|
View 18aed36
Add support for signatures without unauthAttr section and add more dbg msgsAndrew authored on 2018/09/01 03:02:40 |
|
| August 30, 2018 | ||
|---|---|---|
|
View 18869ac
Skip invalid x509 certificates instead of bailing out completely In my sample set of 2,000 signed binaries, there were 69 with x509 certificates included that didn't seem to comply with the spec. These weren't in the actual certificate chain used to verify the binary, though, and the Windows verification API had no problems with it, so we shouldn't either. The specific errors varied. Specifically: - 54 - expected NULL following RSA OID - For some binaries this was due to an old "DUMMY CERTIFICATE" included for some reason. - 8 - module has got an unsupported length (392) - Binaries from one company include 392-bit RSA keys for some reason - 7 - expected [0] version container in TBSCertificate - Some really older certificates don't seem to include the version number (maybe the RFC didn't include one at the time?)Andrew authored on 2018/08/30 01:12:22 |
|
| August 28, 2018 | ||
|---|---|---|
|
View ae8b411
Add more debugging messages for fail cases in Authenticode ASN1 parsingAndrew authored on 2018/08/28 07:34:37 |
|
| August 24, 2018 | ||
|---|---|---|
|
View e3544d1
Add minimal support for parsing MD2RSA, RSA, and SHA512RSA certsAndrew authored on 2018/08/24 22:58:57 |
|
|
View c9346ea
Add minimal support for parsing SHA384-based certificatesAndrew authored on 2018/08/24 12:19:47 |
|
|
View 0d23434
[WIP] Add support for SHA256 signatures I think that's all of it, but there might still be some unsupported casesAndrew authored on 2018/08/24 10:26:31 |
|
|
View 86d3929
Fix an issue causing the public key to be incorrectly printed with --dumpcerts sometimesAndrew authored on 2018/08/24 00:44:13 |
|
|
View cdd3f2d
Fix issue where certificate verification fails if nested sigs presentAndrew authored on 2018/08/24 00:40:23 |
|
|
View 46e0620
[WIP] Add support for SHA256 signaturesAndrew authored on 2018/08/24 00:37:40 |
|
| August 23, 2018 | ||
|---|---|---|
|
View e8c03d8
Add more debug messages in fail cases, more comments, minor changesAndrew authored on 2018/08/23 14:05:51 |
|
|
View 2f622fb
Replace (most) ASN1 magic values with #definesAndrew authored on 2018/08/23 13:31:36 |
|
|
View 879c54f
Fix white space formatting, replace tabs with spacesAndrew authored on 2018/08/23 13:10:29 |
|
| February 22, 2018 | ||
|---|---|---|
 |
View 7cd9337
Spelling Adjustments (#30)Josh Soref authored on 2018/02/22 05:00:59 |
|