3

I do not want to verify the certificate. I want to use this on a build server to check all files and list the one that we may have forgot to sign.

Improve this question
2
  • Which language are you intending to use for that - Perl, Batch, PowerShell, ...? Commented Apr 5, 2011 at 17:28
  • We already use C#, PowerShell and Python in the build process. But most things would work I guess. Commented Apr 5, 2011 at 17:45

3 Answers 3

Reset to default
4

How about using the Get-AuthenticodeSignature PowerShell cmdlet? The description says:

If the file is not signed, the information is retrieved, but the fields are blank.

Improve this answer
Sign up to request clarification or add additional context in comments.

2 Comments

Be aware that get-authenticodesignature will return "NOTsigned" for files that are catalog signed rather than PE signed. See itcookbook.net/blog/get-authenticodesignaturedoesnt
@quux the link you provided does not point to any valid link about authenticode.
3

There is a way:

The WinVerifyTrust API can be used to verify the signature of a portable executable file.

(source)

Improve this answer

Comments

1

Also you can use node implementation of WinVerifyTrust API vid npm package sign-check:

npm install -g sign-check
sign-check 'path/to/file'
Improve this answer

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.