How to sign off Enigma protected files

Post here messages if you have any problems with working of Enigma Protector
Post Reply
mannishB
Posts: 3
Joined: Mon Dec 27, 2021 4:05 pm

How to sign off Enigma protected files

Post by mannishB »

Hello everyone,
I need some advice from you as to what procedures on signing off my Enigma Protected files:

1. I'm thinking of using Comodo Code Signing Certificate to sign off my executables
Can someone show where and how can I get this signing , what's the URL ? or website


2. Now is the below procedure correct to use on a Enigma protected exe?

2.1 Compile my codes to an exe file
2.2 Run Enigma protector to protect this exe file to become Enigma Protected exe file
2.3 Do a code signing on this Enigma protected exe file

your advice please? thanks
Enigma
Site Admin
Posts: 2939
Joined: Wed Aug 20, 2008 2:24 pm

Re: How to sign off Enigma protected files

Post by Enigma »

Hi, your steps are correct, you need to firstly protect the file, secondly digitally sign it.

You can use any code signing certificate for that, we are using this OV certificate: https://www.ksoftware.net/code-signing-certificates/

When you take certificate in PFK file, you can use signtool.exe with the following command to sign protected file:

signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
mannishB
Posts: 3
Joined: Mon Dec 27, 2021 4:05 pm

Re: How to sign off Enigma protected files

Post by mannishB »

Thanks Enigma

Some more clarifications are needed :

1. when you say
When you take certificate in PFK file
do you mean
When you take certificate in PFX file
?

2. The CERTIFICATE_PASSWORD is the actual certificate password supplied by CA ?
am I right here ?


3. while "YOUR_WEB_SITE" means the name of my website ?
what happens if I don't have a website ?


4. And that FILE_TO_SIGN is the actual executable Enigma protected filename for example "myprogram.exe" ?
am I right here ?

please advise. Thank you
mannishB
Posts: 3
Joined: Mon Dec 27, 2021 4:05 pm

Re: How to sign off Enigma protected files

Post by mannishB »

Hi Enigma

You mentioned

Code: Select all

signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN



so for my Enigma protected program myprog.exe and
my website "www.mywebsite.com"
and with CA certificate password myCApwd
then to code sign it will become

Code: Select all

signtool.exe sign /f "certificate.pfx" /p myCApwd  /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "www.mywebsite.com" /v myprog.exe

am I right ? please tell me
Enigma
Site Admin
Posts: 2939
Joined: Wed Aug 20, 2008 2:24 pm

Re: How to sign off Enigma protected files

Post by Enigma »

Yes, I think you are right, just few comments:
1. if you do not have website, simply remove the following "/du "YOUR_WEB_SITE"" from command line
2. please note, the file should be digitally signed with cetificate issued by authorized agent, not a custom certificate. Juts wondering why you wrote there "CA certificate", CA is a root authority certificate and not the end one provided by Comodo.
Post Reply