January 31, 2021 | ||
---|---|---|
View e7f5f53
Bump Cisco copyright dates for 2021Micah Snyder authored on 2021/01/31 16:41:30 |
January 4, 2020 | ||
---|---|---|
View 898c08f
Formatting touch-upMicah Snyder authored on 2020/01/04 05:53:29 |
||
View 206dbae
Update copyright dates for 2020Micah Snyder authored on 2020/01/04 05:44:07 |
November 2, 2019 | ||
---|---|---|
View 21588dc
Ignore e for whitelist CRBs, allow blank serialsAndrew authored on 2019/11/02 06:07:54 |
October 12, 2019 | ||
---|---|---|
View 67f3d97
Fix blacklist CRB rules not working against certs using e!=65537Andrew authored on 2019/10/12 06:03:38 |
July 30, 2019 | ||
---|---|---|
View d74d038
Replacing cli_crt member initialization with memset (per CR feedback)Andrew authored on 2019/07/30 03:29:34 |
July 20, 2019 | ||
---|---|---|
View a098038
Fix uninitialized memory usage in PE cert parsingAndrew authored on 2019/07/20 01:24:23 |
February 14, 2019 | ||
---|---|---|
View 3cf1b1c
Add ability to whitelist leaf certificatesAndrew authored on 2019/02/14 04:29:40 |
February 13, 2019 | ||
---|---|---|
View 92088f9
Add support for cert blacklisting and whitelisting upfrontAndrew authored on 2019/02/13 05:10:04 |
January 26, 2019 | ||
---|---|---|
View 52cddcb
Updating and cleaning up copyright notices.Micah Snyder authored on 2019/01/26 00:15:50 |
December 4, 2018 | ||
---|---|---|
View 72fd33c
clang-format'd using new .clang-format rules.Micah Snyder authored on 2018/12/04 02:40:13 |
September 14, 2018 | ||
---|---|---|
View 50d1a0b
Make --dumpcerts be more consistent, improve cert processing This commit makes the following changes: - --dumpcerts will print certificates even if they already exist in any .crb files loaded - --dumpcerts will print certificates only once - Having a whitelist CRB rule on a leaf certificate should no longer prevent signature verification from happening. NOTE, this doesn't mean that you can have whitelist rules for leaf certificates and have that result in a trusted signature - that doesn't work yet - Determining whether a certificate is blacklisted now includes comparing the public key data (modulus and exponent) in addition to the subject and serial hashes - If a blacklisted certificate is detected, the code will return immediately instead of continuing on to parse the rest of the signatureAndrew authored on 2018/09/14 01:04:17 |
September 7, 2018 | ||
---|---|---|
View 0973eb9
Add more support for SHA384/SHA512 I think SHA384/SHA512 hashes are supported in all parts of the authenticode signature nowAndrew authored on 2018/09/07 23:46:26 |
September 1, 2018 | ||
---|---|---|
View a2bb4cd
Add support for signatures without unauthAttr section and add more dbg msgsAndrew authored on 2018/09/01 03:02:40 |
August 31, 2018 | ||
---|---|---|
View d3440d8
Add more support for SHA384-based certificatesAndrew authored on 2018/08/31 06:58:09 |