GithubHelp home page GithubHelp logo

classicvalues / authenticode-parser Goto Github PK

View Code? Open in Web Editor NEW

This project forked from avast/authenticode-parser

1.0 1.0 0.0 123 KB

Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.

License: MIT License

C 91.97% CMake 0.39% C++ 7.63%

authenticode-parser's Introduction

Master

Authenticode parser

Authenticode-parser is a C library used to parse Microsoft digital signature format, that is being used to sign PE files on Windows systems.

The library interface takes binary data with Authenticode signature as input, which is then verified and parsed into an internal representation.

Features:

  • Parsing of Authenticode signature - digests, signerInfo, certificates, building certificate chain
  • Extracting further Nested Authenticode signature (through unauthenticated attributes)
  • Parsing of PKCS9 timestamp counter-signatures
  • Parsing of Microsoft timestamp counter-signatures
  • Verification of the Authenticode signatures, PKCS9 and Microsoft timestamp counter-signatures (That hashes match, etc.)

Important note: Certificate chain is only built, but not verified as we cannot complete the verification without trust anchors anyway.

Use of the library

Integrating the library is very easy through CMake. If you installed the library into a standard installation location of your system (e.g. /usr, /usr/local), all you need to do in order to use its components is:

find_package(authenticode REQUIRED)

target_link_libraries(your-project
    PUBLIC 
        authenticode
      [...]
)

If your library is in different location, you can pass the path to your CMake -Dauthenticode_DIR=<path> or set a CMAKE_PREFIX_PATH.

A simple example of library use, that dumps all the parsed information, and integration can be found here.

Build, Installation and Testing

Requirements

  • A C++ and a C compiler
  • OpenSSL (version >= 1.1.1)
  • CMake (version >= 3.14)

On Debian-based distributions (e.g. Ubuntu), the required packages can be installed with apt-get:

sudo apt-get install build-essential cmake git openssl libssl-dev

On Windows, the required packages can be installed with Chocolatey - choco

choco install openssl cmake git

On MacOS, the required packages can be installed with brew

brew install [email protected] cmake git

Build and Installation

  • Clone the repository:
    • git clone https://github.com/avast/authenticode-parser/
  • Linux and MacOS:
    • cd authenticode-parser
    • mkdir build && cd build
    • cmake .. -DCMAKE_INSTALL_PREFIX=<path>
    • make install
  • Windows:
    • cd authenticode-parser
    • mkdir build && cd build
    • cmake .. -DCMAKE_INSTALL_PREFIX=<path>
    • cmake --build . --config Debug --target install

If you wish to also build tests, pass -DBUILD_TESTS=ON option to CMake. For MacOS, if CMake can't find OpenSSL on PATH, you can pass it to the CMake with -DOPENSSL_ROOT_DIR=/usr/local/opt/openssl option

Testing

Authenticode-parser is using GoogleTest as testing framework. Tests can be built using -DBUILD_TESTS=ON CMake option.

To run the tests go to the build/ folder and run:

ctest -V

On Windows you will need to specify the configuration:

ctest -C Debug -V

License

Copyright (c) 2021 Avast Software, licensed under the MIT license. See the LICENSE file for more details.

authenticode-parser's People

Contributors

houndthe avatar

Stargazers

avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.