Add a new idea Subscribe
Status Future consideration
Categories Large environment needs
Created by Scott Erickson
Created on Oct 2, 2023

RELATED IDEAS

Add file hash information to portal website for downloads

Enterprise organizations commonly need to independently verify that the hash of the file download from a vendor matches a known good hash. This is to know for sure that nothing has been tampered with in transit. It would be great to add a column on portal.recastsoftware.com to each download specifying the hash of the file.

Product Right Click Tools
  • Attach files
  • Admin
    Nash Pherson
    Nov 3, 2025

    Here is a PowerShell example for validating a Recast download was properly signed by us and the thumbprint hash matches:

    Example for version 5.9.2504 and earlier:

    $sig = Get-AuthenticodeSignature '.\Recast Console Extension.msi'

    If ($sig.status -eq 'Valid' -and $sig.SignerCertificate.Thumbprint -eq "A3D5EDE96EAEECD4E18D953123A9D75ECDCD8096") {

            Return $true

         } else { 

            Return $false

         }

    Example for version 5.9.2505 and later:

    $sig = Get-AuthenticodeSignature '.\Recast Console Extension.msi'

    If ($sig.status -eq 'Valid' -and $sig.SignerCertificate.Thumbprint -eq "5F503B4667889944234BDD808AE38689A892F1F4") {

            Return $true

         } else { 

            Return $false

         }
    3 replies
  • Admin
    Nash Pherson
    Oct 30, 2025

    Rather than just publishing individual file hashes, we now recommend and document that customers validate the authenticode signature here:
    https://docs.recastsoftware.com/help/right-click-tools-validate-authenticode-signature-with-powershell

    Reply
  • +4