Page 1 of 1
How to sign off Enigma protected files
Posted: Mon Dec 27, 2021 4:30 pm
by mannishB
Hello everyone,
I need some advice from you as to what procedures on signing off my Enigma Protected files:
1. I'm thinking of using Comodo Code Signing Certificate to sign off my executables
Can someone show where and how can I get this signing , what's the URL ? or website
2. Now is the below procedure correct to use on a Enigma protected exe?
2.1 Compile my codes to an exe file
2.2 Run Enigma protector to protect this exe file to become Enigma Protected exe file
2.3 Do a code signing on this Enigma protected exe file
your advice please? thanks
Re: How to sign off Enigma protected files
Posted: Tue Dec 28, 2021 7:08 am
by Enigma
Hi, your steps are correct, you need to firstly protect the file, secondly digitally sign it.
You can use any code signing certificate for that, we are using this OV certificate:
https://www.ksoftware.net/code-signing-certificates/
When you take certificate in PFK file, you can use signtool.exe with the following command to sign protected file:
signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "
http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
Re: How to sign off Enigma protected files
Posted: Thu Dec 30, 2021 2:51 am
by mannishB
Thanks Enigma
Some more clarifications are needed :
1. when you say
When you take certificate in PFK file
do you mean
When you take certificate in PFX file
?
2. The CERTIFICATE_PASSWORD is the
actual certificate password supplied by CA ?
am I right here ?
3. while "YOUR_WEB_SITE" means the
name of my website ?
what happens if I don't have a website ?
4. And that FILE_TO_SIGN is the
actual executable Enigma protected filename for example "myprogram.exe" ?
am I right here ?
please advise. Thank you
Re: How to sign off Enigma protected files
Posted: Sat Jan 01, 2022 9:40 pm
by mannishB
Hi Enigma
You mentioned
Code: Select all
signtool.exe sign /f "certificate.pfx" /p CERTIFICATE_PASSWORD /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "YOUR_WEB_SITE" /v FILE_TO_SIGN
so for my Enigma protected program
myprog.exe and
my website
"www.mywebsite.com"
and with CA certificate password
myCApwd
then to code sign it will become
Code: Select all
signtool.exe sign /f "certificate.pfx" /p myCApwd /fd sha256 /tr "http://timestamp.digicert.com/" /td sha256 /du "www.mywebsite.com" /v myprog.exe
am I right ? please tell me
Re: How to sign off Enigma protected files
Posted: Wed Jan 05, 2022 11:59 am
by Enigma
Yes, I think you are right, just few comments:
1. if you do not have website, simply remove the following "/du "YOUR_WEB_SITE"" from command line
2. please note, the file should be digitally signed with cetificate issued by authorized agent, not a custom certificate. Juts wondering why you wrote there "CA certificate", CA is a root authority certificate and not the end one provided by Comodo.