Security

Our commitment to security and transparency

Code Signing Certificate

⚠️ Status: Not yet implemented

Currently, BruteFence installers are not digitally signed with a code signing certificate. This may trigger Windows SmartScreen warnings during installation.

Planned: We are working on obtaining an EV Code Signing Certificate (Q1-Q2 2026). This will eliminate SmartScreen warnings and provide instant trust validation.

SHA256 Hash Verification

Until code signing is implemented, we strongly recommend verifying the downloaded file using SHA256 hash comparison.

How to verify:

  1. Download the installer from our website
  2. Copy the SHA256 hash from the download page
  3. Run the PowerShell command below and compare the hashes
Get-FileHash -Algorithm SHA256 .\BruteFence-Setup-v2.10.11.exe

Security Features

  • Local Logging Only: All logs are stored locally on your server, no external data transmission
  • GDPR Compliant: Website analytics (optional, IP hashed) ≠ software telemetry (none). No personal data storage.
  • Secure Updates: HTTPS-only communication for version checks and updates
  • Open Verification: SHA256 hashes publicly available for all releases

Security Contact

Found a security vulnerability? Please report it responsibly to our security team.

support@brutefence.com

Response time: 24-48 hours for security-related issues