Validate signature on EXE with CertGetCertificateChain
- by cobaia
I would like to verify a signed executable.  The requirement is to validate that the executable itself is valid and where it came from (probably from the subject of the cert).  The cert type is PKCS.
I found a similar posting here,
http://stackoverflow.com/questions/301024/validate-authenticode-signature-on-exe-c-without-capicom
The Microsoft documentation, among others, appears to point to CertGetCertificateChain, but the examples tend to work with certificates that are in a store.  Does anyone know how to validate a signed executable using CertGetCertificateChain and related API's?