Tardis Posted August 12, 2014 Share Posted August 12, 2014 (edited) Thanks Tlem, Thats the one I used NET Framework 2.0 maybe that's why its not working correctly the file names are different due to the file name need changing I will re run this bit again .. If you want to make your selfcert, you can extract these files too : FL_makecert_exe_____X86.3643236F_FC70_11D3_A536_0090278A1BB8 and rename it makecert.exe FL_cert2spc_exe_____X86.3643236F_FC70_11D3_A536_0090278A1BB8 and rename it cert2spc.exe FL_certmgr_exe_____X86.3643236F_FC70_11D3_A536_0090278A1BB8 and rename it certmgr.exe I do have my Cert though the problems now is signing the exe . Edited August 12, 2014 by Tardis Link to comment Share on other sites More sharing options...
Tardis Posted August 13, 2014 Share Posted August 13, 2014 I found this and may be helpful and it works on my exe is now signed signtool.exe sign /p "PASSWORD" /v /f "MY-PFX.pfx" -t "http://timestamp.verisign.com/scripts/timstamp.dll" "MY-EXE.exe" BUT the UAC still says UNKNOWN publisher Need a Please Link to comment Share on other sites More sharing options...
Administrators Jon Posted August 13, 2014 Administrators Share Posted August 13, 2014 It's a real certificate from an external CA, right? Deployment Blog: https://www.autoitconsulting.com/site/blog/ SCCM SDK Programming: https://www.autoitconsulting.com/site/sccm-sdk/ Link to comment Share on other sites More sharing options...
Tardis Posted August 14, 2014 Share Posted August 14, 2014 No its my own and I added to my trust list I think I understand now why need pay $$ to get one from CA - No problem at least it works Link to comment Share on other sites More sharing options...
mLipok Posted May 15, 2020 Share Posted May 15, 2020 (edited) I modified this script. Here is my result: expandcollapse popup#AutoIt3Wrapper_Run_AU3Check=Y #AutoIt3Wrapper_Au3Check_Parameters=-d -w 1 -w 2 -w 3 -w 4 -w 5 -w 6 -w 7 #AutoIt3Wrapper_UseX64=N ; CAPICOM is a 32-bit only component ;~ https://www.autoitscript.com/forum/topic/129720-digital-signatures-and-timestamp-with-ssl-certificates ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/signer-options ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/capicom-certificate-include-option Global Const $CAPICOM_CERTIFICATE_INCLUDE_CHAIN_EXCEPT_ROOT = 0 ; Saves all certificates in the chain with the exception of the root entity. Global Const $CAPICOM_CERTIFICATE_INCLUDE_WHOLE_CHAIN = 1 ; Saves the complete certificate chain. Global Const $CAPICOM_CERTIFICATE_INCLUDE_END_ENTITY_ONLY = 2 ; Saves only the end entity certificate. _Example() Exit 0 Func _Example() Local $s_FileFullPath_ToSign If $CmdLine[0] < 1 Then $s_FileFullPath_ToSign = FileSaveDialog('Select File', @ScriptDir, "All (*.*)") Else $s_FileFullPath_ToSign = $CmdLine[1] EndIf _SignFile($s_FileFullPath_ToSign, "CERTIFICATE.pfx", 'PASSWORD', 'SOME DESCRIPTION') EndFunc ;==>_Example Func _SignFile($s_FileFullPath_ToSign, $s_FileFullPath_Certificat, $s_Password, $s_Description = '') ConsoleWrite("> Signing file with this following parameters:" & @CRLF) ConsoleWrite("> 1= " & $s_FileFullPath_ToSign & @CRLF) If Not FileExists($s_FileFullPath_ToSign) Then ConsoleWrite("! NOT EXIST" & @CRLF) Exit 1 EndIf ConsoleWrite("> 2= " & $s_FileFullPath_Certificat & @CRLF) If Not FileExists($s_FileFullPath_Certificat) Then ConsoleWrite("! NOT EXIST" & @CRLF) Exit 2 EndIf ConsoleWrite("> 3= " & StringLen($s_Password) & @CRLF) ConsoleWrite("> 4= " & $s_Description & @CRLF) Local $oError = ObjEvent("AutoIt.Error", _COM_ErrorHandler_for_Signer) ; Initialize Error Handler #forceref $oError ; Create COM objects ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/signedcode Local $oSignerCode = ObjCreate("CAPICOM.SignedCode.1") ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/signedcode-signer ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/signer Local $oSigner = ObjCreate("CAPICOM.Signer.1") ; Load certificate - Who Is Signing $oSigner.Load($s_FileFullPath_Certificat, $s_Password) ; https://docs.microsoft.com/en-us/windows/win32/seccrypto/signer-options ; $oSigner.Options = $CAPICOM_CERTIFICATE_INCLUDE_CHAIN_EXCEPT_ROOT #Region - Sign it $oSignerCode.FileName = $s_FileFullPath_ToSign If $s_Description = Default Then $s_Description = InputBox("Description", "Add a Description.. EX.. My Project Name v.01") If Not $s_Description = "" Then $oSignerCode.Description = $s_Description $oSignerCode.Sign($oSigner) ; TimeStampIt $oSignerCode.Timestamp("http://timestamp.verisign.com/scripts/timestamp.dll") #EndRegion - Sign it ; CleanUp - Clear Memory $oSignerCode = "" $oSigner = "" EndFunc ;==>_SignFile Func _COM_ErrorHandler_for_Signer(ByRef $oError) Local $HexNumber = Hex($oError.number, 8) ConsoleWrite("! " & "Signer intercept COM Error" & @CRLF) ConsoleWrite("! " & " $oError.description is: " & @TAB & $oError.description & @CRLF) ConsoleWrite("! " & " $oError.windescription:" & @TAB & $oError.windescription & @CRLF) ConsoleWrite("! " & " $oError.number is: " & @TAB & $HexNumber & @CRLF) ConsoleWrite("! " & " $oError.lastdllerror is: " & @TAB & $oError.lastdllerror & @CRLF) ConsoleWrite("! " & " $oError.scriptline is: " & @TAB & $oError.scriptline & @CRLF) ConsoleWrite("! " & " $oError.source is: " & @TAB & $oError.source & @CRLF) ConsoleWrite("! " & " $oError.helpfile is: " & @TAB & $oError.helpfile & @CRLF) ConsoleWrite("! " & " $oError.helpcontext is: " & @TAB & $oError.helpcontext & @CRLF) Exit 20 EndFunc ;==>_COM_ErrorHandler_for_Signer EDIT 1: I just tried this on second computer (latop), and I get into trouble. So I also read:https://docs.microsoft.com/en-us/windows/win32/seccrypto/getting-ready-to-use-capicom And if you get (just like I on my laptop) Quote $oError.windescription: Nieprawidłowy ciąg klasy. $oError.number is: 800401F3 or: Quote $oError.windescription: Klasa niezarejestrowana. $oError.number is: 80040154 To fix this you should download: Platform SDK Redistributable: CAPICOMhttps://www.microsoft.com/en-us/download/details.aspx?id=25281 And register: regsvr32 "c:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 SDK\Lib\X86\capicom.dll" EDIT 2: according to: https://docs.microsoft.com/en-us/windows/win32/seccrypto/getting-ready-to-use-capicom Quote CAPICOM is a 32-bit only component so the script must use 32Bit AutoIt so I added: #AutoIt3Wrapper_UseX64=N Edited May 16, 2020 by mLipok Danyfirex 1 Signature beginning:* Please remember: "AutoIt"..... * Wondering who uses AutoIt and what it can be used for ? * Forum Rules ** ADO.au3 UDF * POP3.au3 UDF * XML.au3 UDF * IE on Windows 11 * How to ask ChatGPT for AutoIt Code * for other useful stuff click the following button: Spoiler Any of my own code posted anywhere on the forum is available for use by others without any restriction of any kind. My contribution (my own projects): * Debenu Quick PDF Library - UDF * Debenu PDF Viewer SDK - UDF * Acrobat Reader - ActiveX Viewer * UDF for PDFCreator v1.x.x * XZip - UDF * AppCompatFlags UDF * CrowdinAPI UDF * _WinMergeCompare2Files() * _JavaExceptionAdd() * _IsBeta() * Writing DPI Awareness App - workaround * _AutoIt_RequiredVersion() * Chilkatsoft.au3 UDF * TeamViewer.au3 UDF * JavaManagement UDF * VIES over SOAP * WinSCP UDF * GHAPI UDF - modest begining - comunication with GitHub REST API * ErrorLog.au3 UDF - A logging Library * Include Dependency Tree (Tool for analyzing script relations) * Show_Macro_Values.au3 * My contribution to others projects or UDF based on others projects: * _sql.au3 UDF * POP3.au3 UDF * RTF Printer - UDF * XML.au3 UDF * ADO.au3 UDF * SMTP Mailer UDF * Dual Monitor resolution detection * * 2GUI on Dual Monitor System * _SciLexer.au3 UDF * SciTE - Lexer for console pane * Useful links: * Forum Rules * Forum etiquette * Forum Information and FAQs * How to post code on the forum * AutoIt Online Documentation * AutoIt Online Beta Documentation * SciTE4AutoIt3 getting started * Convert text blocks to AutoIt code * Games made in Autoit * Programming related sites * Polish AutoIt Tutorial * DllCall Code Generator * Wiki: * Expand your knowledge - AutoIt Wiki * Collection of User Defined Functions * How to use HelpFile * Good coding practices in AutoIt * OpenOffice/LibreOffice/XLS Related: WriterDemo.au3 * XLS/MDB from scratch with ADOX IE Related: * How to use IE.au3 UDF with AutoIt v3.3.14.x * Why isn't Autoit able to click a Javascript Dialog? * Clicking javascript button with no ID * IE document >> save as MHT file * IETab Switcher (by LarsJ ) * HTML Entities * _IEquerySelectorAll() (by uncommon) * IE in TaskScheduler * IE Embedded Control Versioning (use IE9+ and HTML5 in a GUI) * PDF Related: * How to get reference to PDF object embeded in IE * IE on Windows 11 * I encourage you to read: * Global Vars * Best Coding Practices * Please explain code used in Help file for several File functions * OOP-like approach in AutoIt * UDF-Spec Questions * EXAMPLE: How To Catch ConsoleWrite() output to a file or to CMD *I also encourage you to check awesome @trancexx code: * Create COM objects from modules without any demand on user to register anything. * Another COM object registering stuff * OnHungApp handler * Avoid "AutoIt Error" message box in unknown errors * HTML editor * winhttp.au3 related : * https://www.autoitscript.com/forum/topic/206771-winhttpau3-download-problem-youre-speaking-plain-http-to-an-ssl-enabled-server-port/ "Homo sum; humani nil a me alienum puto" - Publius Terentius Afer"Program are meant to be read by humans and only incidentally for computers and execute" - Donald Knuth, "The Art of Computer Programming" , be and \\//_. Anticipating Errors : "Any program that accepts data from a user must include code to validate that data before sending it to the data store. You cannot rely on the data store, ...., or even your programming language to notify you of problems. You must check every byte entered by your users, making sure that data is the correct type for its field and that required fields are not empty." Signature last update: 2023-04-24 Link to comment Share on other sites More sharing options...
boomingranny Posted April 20, 2021 Share Posted April 20, 2021 http://timestamp.verisign.com/scripts/timestamp.dll Isn't working for timestamping for me anymore. Error information: "SignerTimeStamp() failed." (-2147012867/0x80072efd) Is anyone else having the same issue? Or is it a firewall/proxy issue at my end? Link to comment Share on other sites More sharing options...
mLipok Posted April 20, 2021 Share Posted April 20, 2021 https://stackoverflow.com/questions/9714798/http-timestamp-verisign-com-scripts-timstamp-dll-not-available Quote Honestly, I would just try again. But you can use any of the following: http://timestamp.globalsign.com/scripts/timstamp.dll, http://timestamp.comodoca.com/authenticode, or http://www.startssl.com/timestamp. http://timestamp.sectigo.com or Quote Try these servers http://tsa.starfieldtech.com http://timestamp.globalsign.com/scripts/timstamp.dll http://timestamp.comodoca.com/authenticode http://www.startssl.com/timestamp http://timestamp.verisign.com/scripts/timstamp.dll http://timestamp.sectigo.com Signature beginning:* Please remember: "AutoIt"..... * Wondering who uses AutoIt and what it can be used for ? * Forum Rules ** ADO.au3 UDF * POP3.au3 UDF * XML.au3 UDF * IE on Windows 11 * How to ask ChatGPT for AutoIt Code * for other useful stuff click the following button: Spoiler Any of my own code posted anywhere on the forum is available for use by others without any restriction of any kind. My contribution (my own projects): * Debenu Quick PDF Library - UDF * Debenu PDF Viewer SDK - UDF * Acrobat Reader - ActiveX Viewer * UDF for PDFCreator v1.x.x * XZip - UDF * AppCompatFlags UDF * CrowdinAPI UDF * _WinMergeCompare2Files() * _JavaExceptionAdd() * _IsBeta() * Writing DPI Awareness App - workaround * _AutoIt_RequiredVersion() * Chilkatsoft.au3 UDF * TeamViewer.au3 UDF * JavaManagement UDF * VIES over SOAP * WinSCP UDF * GHAPI UDF - modest begining - comunication with GitHub REST API * ErrorLog.au3 UDF - A logging Library * Include Dependency Tree (Tool for analyzing script relations) * Show_Macro_Values.au3 * My contribution to others projects or UDF based on others projects: * _sql.au3 UDF * POP3.au3 UDF * RTF Printer - UDF * XML.au3 UDF * ADO.au3 UDF * SMTP Mailer UDF * Dual Monitor resolution detection * * 2GUI on Dual Monitor System * _SciLexer.au3 UDF * SciTE - Lexer for console pane * Useful links: * Forum Rules * Forum etiquette * Forum Information and FAQs * How to post code on the forum * AutoIt Online Documentation * AutoIt Online Beta Documentation * SciTE4AutoIt3 getting started * Convert text blocks to AutoIt code * Games made in Autoit * Programming related sites * Polish AutoIt Tutorial * DllCall Code Generator * Wiki: * Expand your knowledge - AutoIt Wiki * Collection of User Defined Functions * How to use HelpFile * Good coding practices in AutoIt * OpenOffice/LibreOffice/XLS Related: WriterDemo.au3 * XLS/MDB from scratch with ADOX IE Related: * How to use IE.au3 UDF with AutoIt v3.3.14.x * Why isn't Autoit able to click a Javascript Dialog? * Clicking javascript button with no ID * IE document >> save as MHT file * IETab Switcher (by LarsJ ) * HTML Entities * _IEquerySelectorAll() (by uncommon) * IE in TaskScheduler * IE Embedded Control Versioning (use IE9+ and HTML5 in a GUI) * PDF Related: * How to get reference to PDF object embeded in IE * IE on Windows 11 * I encourage you to read: * Global Vars * Best Coding Practices * Please explain code used in Help file for several File functions * OOP-like approach in AutoIt * UDF-Spec Questions * EXAMPLE: How To Catch ConsoleWrite() output to a file or to CMD *I also encourage you to check awesome @trancexx code: * Create COM objects from modules without any demand on user to register anything. * Another COM object registering stuff * OnHungApp handler * Avoid "AutoIt Error" message box in unknown errors * HTML editor * winhttp.au3 related : * https://www.autoitscript.com/forum/topic/206771-winhttpau3-download-problem-youre-speaking-plain-http-to-an-ssl-enabled-server-port/ "Homo sum; humani nil a me alienum puto" - Publius Terentius Afer"Program are meant to be read by humans and only incidentally for computers and execute" - Donald Knuth, "The Art of Computer Programming" , be and \\//_. Anticipating Errors : "Any program that accepts data from a user must include code to validate that data before sending it to the data store. You cannot rely on the data store, ...., or even your programming language to notify you of problems. You must check every byte entered by your users, making sure that data is the correct type for its field and that required fields are not empty." Signature last update: 2023-04-24 Link to comment Share on other sites More sharing options...
youtuber Posted April 22, 2021 Share Posted April 22, 2021 @mLipok I can't not download sdk for use capicom.dll https://www.microsoft.com/en-us/download/details.aspx?id=25281 Couldn't find an alternative microsoft official download address Link to comment Share on other sites More sharing options...
argumentum Posted April 22, 2021 Share Posted April 22, 2021 I believe the file is in that zip. Follow the link to my code contribution ( and other things too ). FAQ - Please Read Before Posting. Link to comment Share on other sites More sharing options...
youtuber Posted April 22, 2021 Share Posted April 22, 2021 @argumentum It is giving this error for me how can I fix it? Error information: "SignerTimeStamp() failed." (-2147024895/0x80070001) SignTool Error: An error occurred while attempting to timestamp: C:\Users\USER\Desktop\CertSigner[2016.07.01b]\Test.exe SignTool Error: An unexpected internal error has occurred. https://prnt.sc/11w8ii1 Link to comment Share on other sites More sharing options...
argumentum Posted April 22, 2021 Share Posted April 22, 2021 wow, I see it too on my side. Have not used this in a while. I'd have to "get into it" but don't have the time to investigate. At least it has the file you were trying to get. Maybe is just the servers. I'll try a new server from mLipok's list use this url: http://timestamp.digicert.com/scripts/timestamp.dll I recompiled with the above replacing the old one and it worked youtuber 1 Follow the link to my code contribution ( and other things too ). FAQ - Please Read Before Posting. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now