9 Digital Signature – Authenticode Verification

For Windows users, it is common practice to install anti-virus software, update systems regularly, choose the source of downloads carefully, and double-check that applications are digitally signed by reputable technology companies. However, are these security practices really enough to keep hackers at bay? This chapter may give readers a very different perspective. In this chapter, we will learn about Windows Authenticode specification, reverse-engineering the signature verification function, WinVerifyTrust, and how to hijack well-known digital signatures.

This chapter is based on the public presentation Subverting Trust in Windows given by Matt Graeber, a security researcher at Specter Ops, at ...

Get Windows APT Warfare now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Windows APT Warfare by Sheng-Hao Ma, Ziv Chang, Federico Maggi

9

Digital Signature – Authenticode Verification

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly