Hello everyone,
I need some advice from you as to what procedures on signing off my Enigma Protected files:
1. I'm thinking of using Comodo Code Signing Certificate to sign off my executables
Can someone show where and how can I get this signing , what's the URL ? or website
2. Now is the below procedure correct to use on a Enigma protected exe?
2.1 Compile my codes to an exe file
2.2 Run Enigma protector to protect this exe file to become Enigma Protected exe file
2.3 Do a code signing on this Enigma protected exe file
your advice please? thanks
How to sign off Enigma protected files
Re: How to sign off Enigma protected files
Hi, your steps are correct, you need to firstly protect the file, secondly digitally sign it.
You can use any code signing certificate for that, we are using this OV certificate: https://www.ksoftware.net/code-signing-certificates/
When you take certificate in PFK file, you can use signtool.exe with the following command to sign protected file:
signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
You can use any code signing certificate for that, we are using this OV certificate: https://www.ksoftware.net/code-signing-certificates/
When you take certificate in PFK file, you can use signtool.exe with the following command to sign protected file:
signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
Re: How to sign off Enigma protected files
Thanks Enigma
Some more clarifications are needed :
1. when you say
2. The CERTIFICATE_PASSWORD is the actual certificate password supplied by CA ?
am I right here ?
3. while "YOUR_WEB_SITE" means the name of my website ?
what happens if I don't have a website ?
4. And that FILE_TO_SIGN is the actual executable Enigma protected filename for example "myprogram.exe" ?
am I right here ?
please advise. Thank you
Some more clarifications are needed :
1. when you say
do you meanWhen you take certificate in PFK file
?When you take certificate in PFX file
2. The CERTIFICATE_PASSWORD is the actual certificate password supplied by CA ?
am I right here ?
3. while "YOUR_WEB_SITE" means the name of my website ?
what happens if I don't have a website ?
4. And that FILE_TO_SIGN is the actual executable Enigma protected filename for example "myprogram.exe" ?
am I right here ?
please advise. Thank you
Re: How to sign off Enigma protected files
Hi Enigma
You mentioned
so for my Enigma protected program myprog.exe and
my website "www.mywebsite.com"
and with CA certificate password myCApwd
then to code sign it will become
am I right ? please tell me
You mentioned
Code: Select all
signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
so for my Enigma protected program myprog.exe and
my website "www.mywebsite.com"
and with CA certificate password myCApwd
then to code sign it will become
Code: Select all
signtool.exe sign /f "certificate.pfx" /p myCApwd /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "www.mywebsite.com" /v myprog.exe
Re: How to sign off Enigma protected files
Yes, I think you are right, just few comments:
1. if you do not have website, simply remove the following "/du "YOUR_WEB_SITE"" from command line
2. please note, the file should be digitally signed with cetificate issued by authorized agent, not a custom certificate. Juts wondering why you wrote there "CA certificate", CA is a root authority certificate and not the end one provided by Comodo.
1. if you do not have website, simply remove the following "/du "YOUR_WEB_SITE"" from command line
2. please note, the file should be digitally signed with cetificate issued by authorized agent, not a custom certificate. Juts wondering why you wrote there "CA certificate", CA is a root authority certificate and not the end one provided by Comodo.