issues
search
MaulingMonkey
/
firehazard
Unopinionated low level API bindings focused on soundness, safety, and stronger types over raw FFI.
Other
8
stars
0
forks
source link
Research: Code signing & enforcement
#19
Open
MaulingMonkey
opened
2 years ago
MaulingMonkey
commented
2 years ago
Notes:
You previously used signtool on appx junk
VS auto-generates a cert for debug appx files and signs with it IIRC? Strongly recommend reusing that. Or am I getting confused with nVidia Tegra Android stuff?
procmon
to see what VS does?
If generating my own junk, expire certs aggressively.
References:
CertMgr
MakeCert Test Certificate
SetReg
MakeCat
SignTool
SignTool.exe Examples
Sign an app package using SignTool
Notes:
procmon
to see what VS does?References: