How do I verify in .NET a file's signature if it is stored in system's catalogs store

Asked Aug 20 '19 at 11:43

Active Aug 21 '19 at 05:46

Viewed 189 times

For embedded signatures I can use X509Certificate.CreateFromSignedFile to extract the certificate.

What is the .Net way to extract the certificate for a file in the system's store?

X509Certificate.CreateFromSignedFile is throwing exception for those file!

edited Aug 21 '19 at 05:46

asked Aug 20 '19 at 11:43

mohit kumar

Why do you have a file in the System Store? Why not just the Certificate. – jdweng Aug 20 '19 at 12:04
@jdweng i m validating some files which are in c:\windows\system32 . They are signed but dont have embedded digital signature. How to extract certificate for those file – mohit kumar Aug 20 '19 at 12:18
Can't you use X509Certificate.CreateFromSignedFile? – jdweng Aug 20 '19 at 13:00
@jdweng no that is not working – mohit kumar Aug 20 '19 at 14:13
Why? May be the certificate is bad. – jdweng Aug 20 '19 at 14:15
its Microsoft file. using sigcheck/signtool its showing certificate – mohit kumar Aug 20 '19 at 14:23
The signtool is doing the CreateFromSignedFile and showing valid signature. You just have a file and must run create the signature from the file. – jdweng Aug 20 '19 at 14:29
@jdweng with sigcheck also its showing – mohit kumar Aug 20 '19 at 14:38
file is signed and have a certificate in its catalog. how can i use that certificate? – mohit kumar Aug 20 '19 at 14:40
See following : https://stackoverflow.com/questions/1205295/get-list-of-certificates-from-the-certificate-store-in-c-sharp – jdweng Aug 20 '19 at 14:52
What command are you running that you can’t replicate? What is its output? Both of these, together, will greatly inform the proper answer. (Please edit them into the question) – bartonjs Aug 20 '19 at 23:05

0 Answers0