Skip to main content
v1.5.0 Now Available • Windows 10/11 Native

Securely Sign & Distribute Windows Software

Code Signing Toolkit is a powerful desktop application for developers and software publishers. Create code signing certificates, sign Windows executables (EXE), DLLs, and MSI installers—all offline, secure, and without relying on cloud services.

Code Signing Toolkit Pro Application Window
# Sign your executable with timestamping
signtool sign /f "codesign.pfx" /p "••••••••" \
  /fd SHA256 /tr http://timestamp.digicert.com \
  /td SHA256 "my_app.exe"

# Or use the GUI: drag, drop, sign ✓
Windows 10/11
RFC 3161 Timestamping
Offline-First • No Cloud

Everything You Need to Sign Code

Built with Python, cryptography, and modern Tkinter UI principles. Works offline. No telemetry.

Free

Self-Signed Certificates

Generate 4096-bit RSA .pfx certificates with custom CN, Org, and validity period. Exportable and PKCS#12 compliant.

Free

Drag & Drop Signing

Drop your .exe, .dll, or .msi into the signing zone. One click signs with RFC 3161 timestamping via signtool.exe.

Pro

Trusted Store Auto-Install

Automatically install certificates to Windows Trusted Root & Trusted Publishers stores (requires admin).

Free

Smart Signtool Detection

Auto-detects signtool.exe across Windows SDK, Visual Studio, and App Certification Kit paths.

Pro

Batch Signing & CI/CD Export

Sign entire folders at once. Export ready-to-use GitHub Actions or Azure DevOps pipeline configs.

Free

HSM / Token Compatible

Use hardware tokens or HSMs by providing the certificate thumbprint. Supports all CSP/KSP providers.

From Certificate to Signed Binary in 3 Steps

No cloud dependencies. No account required. Just download and run.

Generate Certificate

Fill in Common Name and Organization. Click "Generate" to create a secure .pfx file locally.

Drag & Drop to Sign

Drop your executable into the signing zone. The app constructs and executes the signtool command with timestamping.

Activate Pro (Optional)

Unlock batch signing, CI/CD exports, and trusted store auto-installation with a one-time $29 license.

Simple, Transparent Pricing

Free for development. Pro for production and commercial distribution.

Free Tier

$0 / forever
  • Single file signing
  • Self-signed certificates
  • RFC 3161 timestamping
  • HSM / token support
  • Personal & educational use
  • Community support
Download Free

🔐 Need a Production Certificate?

Self-signed certs are for development only. For public distribution, get a CA-issued code signing certificate:

Download & Install

Standalone executable. No installer required. No admin rights needed for Free tier.

Code Signing Toolkit Pro v1.5.0

Windows 10/11 • 64-bit • Standalone .exe

📦 15.1 MB 🔐 SHA256 Verified 🗓️ May 2026
View checksum a3f5c8d9e2b1... (full SHA256 in download package)
↓ Download .exe

💡 First run? The app will auto-detect signtool.exe. If missing, install Windows SDK or VS Build Tools.

Frequently Asked Questions

Yes. Code Signing Toolkit Pro is built specifically for Windows 10/11 (64-bit) and integrates directly with Windows SDK signtool.exe and Windows Certificate Stores. Linux/macOS support is not planned due to platform-specific signing APIs.
Pro licenses are cryptographically bound to your machine's CPU ID + MAC address hash using HMAC-SHA256. The license key contains a signed payload that validates against your hardware fingerprint at activation. You may request one (1) transfer per 12-month period for hardware failures or major upgrades by contacting support.
No. Self-signed certificates are intended for development, testing, and internal distribution only. Public software distribution requires a certificate from a trusted Certificate Authority (CA) like DigiCert or Sectigo to avoid SmartScreen warnings and ensure user trust.
The app auto-detects standard paths (Windows SDK 10+, Visual Studio 2017-2022, App Certification Kit). If detection fails, you can manually browse to signtool.exe. Install Windows SDK 10+ or VS Build Tools if missing. The app provides direct download links for convenience.
The complete End User License Agreement (EULA) is included in the software download as LICENSE AGREEMENT.txt. Key terms: no reverse engineering, no key sharing, commercial use requires Pro license, and developers assume all liability for misuse.
No. The application works entirely offline. No telemetry, no analytics, no cloud dependencies. Your certificates, keys, and signed files never leave your machine unless you explicitly export or email them.