EZSignIt

EZSignIt is a free, redistributable signing utility created by Chris Long as an alternative to Microsoft’s SignTool, designed to let developers and system administrators apply Authenticode digital signatures to Windows executables, libraries, installers and scripts without installing the full Windows SDK. Released in a single stable version 4.1, the lightweight command-line application accepts standard timestamp URLs and certificate stores, enabling automated build pipelines, CI/CD workflows, post-compile batch signing, driver packages, PowerShell scripts and portable executables to receive trusted publisher status on Windows. Because EZSignIt is redistributable, independent software vendors can bundle it with their own toolchains or portable toolkits, ensuring every release binary is signed even on clean build agents that lack the heavyweight SDK. The program supports SHA-1 and SHA-256 hashes, dual signing for legacy and modern OS compatibility, and returns the same exit codes as SignTool, allowing existing scripts to swap the executable with no further modification. Typical use cases include nightly builds of open-source projects, game-engine exports, plugin installers, device drivers, and enterprise macros that must pass SmartScreen or AppLocker validation. By removing the dependency on gigabytes of SDK components, EZSignIt simplifies code-signing for small teams, educational environments, and offline secure networks while remaining compliant with Microsoft Authenticode standards. The software is available for free on get.nero.com, with downloads provided via trusted Windows package sources (e.g. winget), always delivering the latest version, and supporting batch installation of multiple applications.

Tags: