PowerShell Authenticode Signatures and trust…
The cool thing about the way authenticode signatures are implemented is that even if a script is signed with a self-issued certificate, you can still tell if the script has been tampered with… Check this out: [1]:ls SCRIPTS:\UnknownCert\Sample*.ps1,SCRIPTS:\TrustedCert\Sample*.ps1 | gas Directory: SCRIPTS:\UnknownCert\ SignerCertificate Status Path ————————- ——— —— 0DA3A2A2189CD74AE371E6C57504FEB9A59BB22E UnknownError Sample.ps1 0DA3A2A2189CD74AE371E6C57504FEB9A59BB22E HashMismatch SampleBAD.ps1 Directory: [...]
Code Signing with OpenSSL and PowerShell
One of the major security features of PowerShell is the support for code signing of scripts, so that you can set an execution policy that requires scripts to be signed before they can be run. Of course, it goes a bit further than that. When a script has been signed by a certificate with a [...]