Projects / OpenSSL-based signcode utility

OpenSSL-based signcode utility

OpenSSL-based signcode utility is a utility that performs Authenticode signing of EXE/CAB/MSI files. It also supports timestamping (Authenticode and RFC3161).


Recent releases

  •  12 Mar 2013 07:02

    Release Notes: This release added support for signing MSI files. The correct PE checksum is now calculated instead of setting it to 0. Support for RFC3161 timestamping was added (-ts option) along with support for extracting, removing, and verifying signatures of PE files. A problem with not being able to decode timestamps with no newlines was fixed. Support for reading keys from PVK files was added (requires OpenSSL 1.0.0 or later). Certificates can now be read from PEM files. The -spc option was renamed to -certs (the old option name is still valid).

    •  12 Aug 2011 12:33

      Release Notes: An improved build system. Support for reading cert+key from a PKCS12 file. Support for reading a key from a PEM file. Support for SHA-1/SHA-256 (the default hash is now SHA-1). A flag for commercial signing (the default is individual).

      •  31 Jan 2008 16:24

        Release Notes: A padding problem was fixed. Signing of already signed files is allowed. Ryan Rubley's PVK-to-DER guide was added into the README.

        •  21 Jan 2005 22:43

          Release Notes: Autoconf support and some documentation.

          •  19 Jan 2005 18:13

            No changes have been submitted for this release.


            Project Spotlight


            A Fluent OpenStack client API for Java.


            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.