One way to perform code signatures is to use the SignTool command line tool. This is part of the Windows 10 Software Development Kit (SDK).
If you want to use the tool on a system without having to install Visual Studio or the Windows SDK, you can proceed as follows.
Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem, has already proven itself in countless companies around the world and is available under a free license. It can downloaded via GitHub and can be used free of charge. Professional maintenance is also offered.
First of all, the Windows SDK can be downloaded as an ISO file. The ISO file can then be opened with Windows Explorer. The required files can then be obtained from the "Installers" folder.
The following files are required:
- Windows SDK Signing Tools-x86_en-us.msi
- 4c3ef4b2b1dc72149f979f4243d2accf.cab
- 685f3d4691f444bc382762d603a99afc.cab
- e5c4b31ff9997ac5603f4f28cd7df602.cab
- e98fa5eb5fee6ce17a7a69d585870b7c.cab
Afterwards SignTool can be installed by executing the MSI file (Windows SDK Signing Tools-x86_en-us.msi).
The SignTool is then located in the following location in the subfolder for the respective CPU architecture:
C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86
Related links:
External sources
- How to install SignTool.exe for Windows 10 (Stackoverflow.com)
- SignTool.exe (Sign Tool) (Microsoft)
- Sign an app package using SignTool (Microsoft)
English 
Deutsch