Welcome to The Cert Graveyard
The Cert Graveyard is a centralized place to document the abuse of code-signing certificates.
This website provides a database that volunteers can contribute to. Volunteers are also able to view previously reported certificates and query the database.
If you are new to code-signing certificate abuse, check out the Training or Research resources available on this website.
If you are ready to contribute, you can Register for an account. Once you have an account, you can Submit the SHA256 hash of a signed file. The website requires that the signed file is on VirusTotal, MalwareBazaar, or UnpacMe. File can also be reported using certReport (which generates reports and has an option to report to The Cert Graveyard).
- certReport can be installed using pip: `pip install certReport`