Why Isn't PowerShell.exe Authenticode Signed?

1.0PowerShell Teamhttps://devblogs.microsoft.com/powershellSteve Leehttps://devblogs.microsoft.com/powershell/author/slee/Why Isn't PowerShell.exe Authenticode Signed? - PowerShell Teamrich600338<blockquote class="wp-embedded-content" data-secret="4t4c1zN0w9"><a href="https://devblogs.microsoft.com/powershell/why-isnt-powershell-exe-authenticode-signed/">Why Isn’t PowerShell.exe Authenticode Signed?</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://devblogs.microsoft.com/powershell/why-isnt-powershell-exe-authenticode-signed/embed/#?secret=4t4c1zN0w9" width="600" height="338" title="“Why Isn’t PowerShell.exe Authenticode Signed?” — PowerShell Team" data-secret="4t4c1zN0w9" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script type="text/javascript"> /* <![CDATA[ */ /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); //# sourceURL=https://devblogs.microsoft.com/powershell/wp-includes/js/wp-embed.min.js /* ]]> */ </script> https://devblogs.microsoft.com/powershell/wp-content/uploads/sites/30/2018/09/Powershell_256.png256256This question came up on our internal forum last week, and Jeffrey, knowing of my sharp wit and keen hand for prose, asked me to blog about the answer. So here goes: It is Authenticode signed. Just in a special way. The Windows PowerShell update packages each contain a catalog (.cat) file, which has a […]