Validate Authenticode signature on EXE - C++ without CAPICOM

c++ cryptography winapi authenticode

I'm writing a function for an installer DLL to verify the Authenticode signature of EXE files already installed on the system.

The function needs to:

A) verify that the signature is valid.
B) verify that the signer is our organization.

Because this is in an installer, and because this needs to run on older Win2k installations, I don't want to rely on CAPICOM.dll, as it may not be on the target system.

The WinVerifyTrust API works great to solve (A).

I need to find a way to compare a known certificate (or properties therein) to the one that signed the EXE in question.


You should use CryptQueryObject.

This KB-article demonstrates the use: How To Get Information from Authenticode Signed Executables.

To the commenter that asked about how to do it without the Windows-APIs, I am not aware of any library that can do it, but the format is documented here: Windows Authenticode Portable Executable Signature Format

Related

Cloud9 postgres
Import XML files to PostgreSQL
How to build Boost 1.64 in 64 bits?
How to pick image for crop from camera or gallery in Android 7.0?
How do I use a Service Account to Access the Google Analytics API V3 with .NET C#?
Long running delayed_job jobs stay locked after a restart on Heroku
Creating a thread pool using boost
How to restart service after the app is killed from recent tasks
Correct response to "Pardon me" [closed]
What does "it tastes like horspy" mean?
Is it okay to say "I can play the piano by music notes"?
Is Shakespeare proper English? [closed]