I need to verify the digital signatures of downloaded images (dll, exe), if the image does not have a specific signature, it is necessary to reject its download. How can I do this? Are there functions for verifying digital signatures? Both a complete answer and partial information on the question will be useful.
Asked
Active
Viewed 274 times
1
-
`WinVerifyTrust()` – Luke Sep 03 '21 at 11:27
-
WinVerifyTrust() is user space API – Baget Sep 06 '21 at 14:29
1 Answers
1
There is no public API by Microsoft, you have two options:
- Use undocumented API - there is sample here
- Implement your own test, by reading the image and check signature using CNG Kernel API (BCrypt)
Baget
- 3,318
- 1
- 24
- 44