Code Monkey home page Code Monkey logo

gh0stsign's Introduction

gh0stsign

Thick Client Digital Signature Checking Tool

Overview

gh0stsign is a command-line tool designed to check the digital signatures of files within a specified directory or a single file. It helps users identify whether files have valid digital signatures or are unsigned. The tool is cross-platform and can be used on both Windows and Linux operating systems.

Requirements

  • For Windows: Ensure you have the sigcheck utility available in your system's PATH. You can download it from Sysinternals Suite: https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite
  • For Linux: Ensure you have the codesign utility available in your system's PATH. This utility is typically included in the osslsigncode package. Install it using your package manager if needed.

Features

  • Check the digital signatures of individual files or all files within a directory.
  • Cross-platform support for both Windows and Linux.
  • Option to enable verbose mode to display detailed verification information.
  • Generate a detailed findings report containing verification results.
  • Display detailed findings including signature status, verification output, signer, digest algorithm, and timestamp (on Windows).

Getting Started

  1. Clone this repository or download the gh0stsign.py script.
  2. Install the required dependencies using pip install -r requirements.txt.
  3. Run the script using the command: python gh0stsign.py

Usage

  1. Run the script: python gh0stsign.py
  2. Enter the path to a single file or a directory when prompted.
  3. Choose whether to enable verbose mode to see detailed verification information (optional).
  4. The tool will display the findings and generate a detailed findings report.

Example

To check the digital signatures of a single file: python gh0stsign.py /path/to/single/file.exe - Windows python3 gh0stsign.py /path/to/single/file.exe - Linux

To check the digital signatures of files within a directory: python gh0stsign.py /path/to/directory/ - Windows python3 gh0stsign.py /path/to/directory/ - Linux

Report

After running the tool, a detailed findings report will be generated. The report will include information about each file's status, verification output, and a summary of signed and unsigned files.

The default report filename is gh0stsign_findings_report.txt, but you can provide a custom name when prompted.

Author

Created by: gh0stsh3ll5619 GitHub: gh0stsh3ll5619

License

This project is licensed under the MIT License.

gh0stsign's People

Contributors

gh0stsh3ll56 avatar dependabot[bot] avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.