velociraptor icon indicating copy to clipboard operation
velociraptor copied to clipboard

Published 20 hours ago verified publisher icon Velocidex

Add Authenticode to Windows.Sys.Drivers/RunningDrivers

Open ecapuano opened this issue 2 years ago • 0 comments

A very useful datapoint for running drivers is signing status. Consider adding Authenticode metadata for the binary in PathName in the results of Windows.Sys.Drivers/RunningDrivers

ecapuano avatar Jul 06 '22 18:07 ecapuano