Exetools  

Go Back   Exetools > General > General Discussion
Reload this Page Signing a Windows Kernel driver without using Microsoft
Register Forum Rules FAQ Calendar

Notices

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #2  
Old 01-26-2023, 12:15
Elisa3167 Elisa3167 is offline
Friend
  
Join Date: Dec 2022
Posts: 4
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 1
Thanks Rcvd at 10 Times in 3 Posts
Elisa3167 Reputation: 0
After you get a WHQL certificate, you have to add SHA-256 /fd 256, /td 256 and external timestamp to the command-line.

If you don't add an external timestamp, the codesign is considered "no-good" so you must add /tr.

Example:
signtool.exe sign /v /n "YourDrivername" /fd sha256 /td sha256 /tr http://timestamp.example.com/rfc3161 DriverFile.sys

Assuming you have a smartcard and smartcard reader, you have to sign-in to the smartcard device, then sign the EXE.

If you have a laptop, you need carry a mobile smartcard reader.

Advice.
Carry the smartcard around with you... Don't leave it for someone to take it...
Reply With Quote
The Following 3 Users Say Thank You to Elisa3167 For This Useful Post:
niculaita (01-27-2023), Stingered (01-26-2023), tonyweb (01-29-2023)
 

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Disable PatchGuard & Driver Signing Fyyre x64 OS 61 04-21-2025 02:12
Patching in your own kernel signing certificate tame_mpeg General Discussion 11 09-28-2024 02:11
Hades:Windows kernel driver lets reverse engineers monitor user and kernel mode code sh3dow Source Code 0 05-12-2016 03:15
Driver Signing on x64 Windows _MAX_ x64 OS 7 10-22-2012 15:47


All times are GMT +8. The time now is 21:50.

Aaron's homepage - Top

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( Since 1998 )