September 2, 2018 | ||
---|---|---|
View c714559
Add support for MD5 and SHA256 hash-based validation of the exe code Also refactors the code a bit to consolidate some duplicate functionalityAndrew authored on 2018/09/02 12:29:45 |
September 1, 2018 | ||
---|---|---|
View 604cc8e
Allow the countersignature to exist anywhere in unauthAttrsAndrew authored on 2018/09/01 06:02:51 |
||
View a2bb4cd
Add support for signatures without unauthAttr section and add more dbg msgsAndrew authored on 2018/09/01 03:02:40 |
August 30, 2018 | ||
---|---|---|
View b851a64
Skip invalid x509 certificates instead of bailing out completely In my sample set of 2,000 signed binaries, there were 69 with x509 certificates included that didn't seem to comply with the spec. These weren't in the actual certificate chain used to verify the binary, though, and the Windows verification API had no problems with it, so we shouldn't either. The specific errors varied. Specifically: - 54 - expected NULL following RSA OID - For some binaries this was due to an old "DUMMY CERTIFICATE" included for some reason. - 8 - module has got an unsupported length (392) - Binaries from one company include 392-bit RSA keys for some reason - 7 - expected [0] version container in TBSCertificate - Some really older certificates don't seem to include the version number (maybe the RFC didn't include one at the time?)Andrew authored on 2018/08/30 01:12:22 |
August 28, 2018 | ||
---|---|---|
View 0a2492d
Add more debugging messages for fail cases in Authenticode ASN1 parsingAndrew authored on 2018/08/28 07:34:37 |
August 24, 2018 | ||
---|---|---|
View 144148f
Add minimal support for parsing MD2RSA, RSA, and SHA512RSA certsAndrew authored on 2018/08/24 22:58:57 |
||
View 4cd3d28
Add minimal support for parsing SHA384-based certificatesAndrew authored on 2018/08/24 12:19:47 |
||
View 5ee2fc5
[WIP] Add support for SHA256 signatures I think that's all of it, but there might still be some unsupported casesAndrew authored on 2018/08/24 10:26:31 |
||
View 8df3fab
Fix an issue causing the public key to be incorrectly printed with --dumpcerts sometimesAndrew authored on 2018/08/24 00:44:13 |
||
View 7438ffd
Fix issue where certificate verification fails if nested sigs presentAndrew authored on 2018/08/24 00:40:23 |
||
View 1b5c9f7
[WIP] Add support for SHA256 signaturesAndrew authored on 2018/08/24 00:37:40 |
August 23, 2018 | ||
---|---|---|
View 12341e1
Add more debug messages in fail cases, more comments, minor changesAndrew authored on 2018/08/23 14:05:51 |
||
View ee769cc
Replace (most) ASN1 magic values with #definesAndrew authored on 2018/08/23 13:31:36 |
||
View 937c42e
Fix white space formatting, replace tabs with spacesAndrew authored on 2018/08/23 13:10:29 |
February 22, 2018 | ||
---|---|---|
View 7cd9337
Spelling Adjustments (#30)Josh Soref authored on 2018/02/22 05:00:59 |