Android TV Launcher Pushed to Google Play

Over the past decade, the tech universe has seen two drastic and widely contrasting changes with … more

Cyngn, OnePlus, Micromax – The Legal Battle

Recently, a battle has been waging in India over the rights to distribute the commercial … more

Lean Mean Battery Power Saving App Review

We talk a lot about battery topics here at XDA TV. We talk about everything from Power Banks to USB … more

Android 5.1 Possibly Coming February 2015

Google released Android 5.0 just over a month ago, and since then Lollipop has been trying to … more

Welcome to XDA

Search to go directly to your device's forum

Register an account

Unlock full posting privileges

Ask a question

No registration required
Post Reply

delcert - Sign strip tool

OP deepred

10th August 2008, 02:21 PM   |  #1  
OP Junior Member
Thanks Meter: 4
 
7 posts
Join Date:Joined: Jan 2006
Hi,

here is a small tool that strips (removes) digital sign (Authenticode) from PE executable files like *.exe, *.dll, *.mui, etc. On error HRESULT is returned, i.e. 0x00000005 means that file is readonly.
Code:
C:\[snip]>delcert.exe OEM\OEMOpera\OperaWM.exe

Target file(s): OEM\OEMOpera\OperaWM.exe

Stripping file: C:\[snip]\OEM\OEMOpera\OperaWM.exe.
Succeeded.

C:\[snip]>delcert.exe OEM\OEM_Lang_0409\*.mui

Target file(s): OEM_Lang_0409\*.mui

Stripping file: C:\[snip]\OEM\OEM_Lang_0409\aboutprop.dll.0409.mui.
Succeeded.

Stripping file: C:\[snip]\OEM\OEM_Lang_0409\BKLBrightness.dll.0409.mui.
Succeeded.
Source is included. You may need to install Visual Studio 2008 C++ Runtime before running.
Attached Files
File Type: zip delcert.zip - [Click for QR Code] (10.2 KB, 3178 views)
The Following 4 Users Say Thank You to deepred For This Useful Post: [ View ]
6th December 2008, 06:01 AM   |  #2  
Da_G's Avatar
Moderator Emeritus / Senior Recognized Developer
Flag Riverside, CA
Thanks Meter: 1,533
 
3,298 posts
Join Date:Joined: Aug 2007
Donate to Me
More
I can't believe no one posted thanks for this :P I just used it recently and it worked a charm! So, thanks! Appreciate your work.
6th June 2009, 01:50 AM   |  #3  
cmylxgo's Avatar
Senior Member
Thanks Meter: 2,025
 
1,672 posts
Join Date:Joined: Feb 2007
Quote:
Originally Posted by deepred

Hi,

here is a small tool that strips (removes) digital sign (Authenticode) from PE executable files like *.exe, *.dll, *.mui, etc. On error HRESULT is returned, i.e. 0x00000005 means that file is readonly.

Code:
C:\[snip]>delcert.exe OEM\OEMOpera\OperaWM.exe

Target file(s): OEM\OEMOpera\OperaWM.exe

Stripping file: C:\[snip]\OEM\OEMOpera\OperaWM.exe.
Succeeded.

C:\[snip]>delcert.exe OEM\OEM_Lang_0409\*.mui

Target file(s): OEM_Lang_0409\*.mui

Stripping file: C:\[snip]\OEM\OEM_Lang_0409\aboutprop.dll.0409.mui.
Succeeded.

Stripping file: C:\[snip]\OEM\OEM_Lang_0409\BKLBrightness.dll.0409.mui.
Succeeded.
Source is included. You may need to install Visual Studio 2008 C++ Runtime before running.

Thanks for this...it fixed and issue I had when trying to remove a cert with another tool.
6th June 2009, 06:42 PM   |  #4  
Senior Member
Flag Brattleboro, VT
Thanks Meter: 82
 
560 posts
Join Date:Joined: Mar 2008
Donate to Me
More
This sounds really interesting, however I was wondering what it can be used for? the certificates usully just provide authentication. Can this be used to bypass protection methods, or what are some real world examples of usage?
7th June 2009, 10:57 AM   |  #5  
OP Junior Member
Thanks Meter: 4
 
7 posts
Join Date:Joined: Jan 2006
You're right, authenticode provides input data for Windows Mobile (originally Windows CE) policy mechanism which decides then if it is allowed to run the file or not. I used it to strip authenticode from OEM files taken from HTC devices before signing them with my own certificate (I usually sign files in my cooked ROMs). I.e. if file is already signed you can't sign it with another certificate until old one is removed.
Due to the fact that certificates are asymmetric you can sign files only with private certificates. That's why I use my own certificates.
To bypass the protection you need to get some how the private part and sign you file with it. Or you can just disable the security policy that enforces file origin check.
22nd October 2010, 01:42 AM   |  #6  
Junior Member
Thanks Meter: 0
 
1 posts
Join Date:Joined: Oct 2010
Thumbs up
Thanks a lot for your work! Your neat little tool is just what I was looking for to be able to sign a Flash projector with my own certificate.
24th October 2010, 02:29 AM   |  #7  
Member
Thanks Meter: 0
 
34 posts
Join Date:Joined: Aug 2006
Thanks
Works beautifully when other tools didn't.
26th November 2010, 07:43 PM   |  #8  
WarlockW's Avatar
Recognized Contributor
Flag Minnesota
Thanks Meter: 639
 
1,239 posts
Join Date:Joined: Dec 2007
More
Red face Works beautifully when other tools didn't ! Is Right !
Works beautifully when other tools didn't ! Is Right !

Worked Great Thanks - Just What I was Looking For !!!!!

7th October 2014, 06:37 AM   |  #9  
Junior Member
Thanks Meter: 0
 
1 posts
Join Date:Joined: Jul 2014
Thumbs up Still working in Windows 8.1
Still working in Windows 8.1
It's great because I can remove the cert from bit torrent and any other group policy blocked programs on my school laptop
10th October 2014, 09:11 PM   |  #10  
Junior Member
Thanks Meter: 0
 
7 posts
Join Date:Joined: Jul 2011
More
Great and awsome tool, this can be an asset for very good "hacks"

Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes