MyFavMirrors/MeshCentral
1
0
Fork 0
mirror of https://github.com/Ylianst/MeshCentral.git synced 2025-01-24 13:13:13 -05:00
Code Issues Packages Projects Releases Wiki Activity

docs - adding authenticode notes c5315ba0fc

Browse Source
This commit is contained in:
silversword411 2022-08-10 14:05:18 -04:00
parent 730bcb034e
commit b349c599fe
No known key found for this signature in database
GPG Key ID: CF805301BBB8CC0C
1 changed files with 32 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

56
docs/docs/meshcentral/codesigning.md
View File

@ -20,34 +20,42 @@ Usage:
node authenticode.js [command] [options] node authenticode.js [command] [options]
Commands: Commands:
info: Show information about an executable. info: Show information about an executable.
--exe [file] Required executable to view information. --exe [file] Required executable to view information.
--json Show information in JSON format. --json Show information in JSON format.
sign: Sign an executable. sign: Sign an executable.
--exe [file] Required executable to sign. --exe [file] Required executable to sign.
--out [file] Resulting signed executable. --out [file] Resulting signed executable.
--pem [pemfile] Certificate & private key to sign the executable with. --pem [pemfile] Certificate & private key to sign the executable with.
--desc [description] Description string to embbed into signature. --desc [description] Description string to embbed into signature.
--url [url] URL to embbed into signature. --url [url] URL to embbed into signature.
--hash [method] Default is SHA384, possible value: MD5, SHA224, SHA256, SHA384 or SHA512. --hash [method] Default is SHA384, possible value: MD5, SHA224, SHA256, SHA384 or SHA512.
--time [url] The time signing server URL. --time [url] The time signing server URL.
--proxy [url] The HTTP proxy to use to contact the time signing server, must start with http:// --proxy [url] The HTTP proxy to use to contact the time signing server, must start with http://
unsign: Remove the signature from the executable. unsign: Remove the signature from the executable.
--exe [file] Required executable to un-sign. --exe [file] Required executable to un-sign.
--out [file] Resulting executable with signature removed. --out [file] Resulting executable with signature removed.
createcert: Create a code signging self-signed certificate and key. createcert: Create a code signging self-signed certificate and key.
--out [pemfile] Required certificate file to create. --out [pemfile] Required certificate file to create.
--cn [value] Required certificate common name. --cn [value] Required certificate common name.
--country [value] Certificate country name. --country [value] Certificate country name.
--state [value] Certificate state name. --state [value] Certificate state name.
--locality [value] Certificate locality name. --locality [value] Certificate locality name.
--org [value] Certificate organization name. --org [value] Certificate organization name.
--ou [value] Certificate organization unit name. --ou [value] Certificate organization unit name.
--serial [value] Certificate serial number. --serial [value] Certificate serial number.
timestamp: Add a signed timestamp to an already signed executable. timestamp: Add a signed timestamp to an already signed executable.
--exe [file] Required executable to sign. --exe [file] Required executable to sign.
--out [file] Resulting signed executable. --out [file] Resulting signed executable.
--time [url] The time signing server URL. --time [url] The time signing server URL.
--proxy [url] The HTTP proxy to use to contact the time signing server, must start with http:// --proxy [url] The HTTP proxy to use to contact the time signing server, must start with http://
icons: Show the icon resources in the executable.
--exe [file] Input executable.
saveicons: Save an icon group to a .ico file.
--exe [file] Input executable.
--out [file] Resulting .ico file.
--icongroup [groupNumber] Icon groupnumber to save to file.
--removeicongroup [number]
--icon [groupNumber],[filename.ico]
Note that certificate PEM files must first have the signing certificate, Note that certificate PEM files must first have the signing certificate,
followed by all certificates that form the trust chain. followed by all certificates that form the trust chain.