Validating File Integrity with Get-File Hash (2024)

Downloading and verifying thata file hasn’t been inadvertently or maliciously changed has been the job of admins for a while.Ideally, to make sure the file you have downloaded isexactly the sameas the source, you would make a byte-to-byte comparison. But that’s not often practical or possible for files you’ve downloaded.

Additionally, that just proves the file you downloaded was the same one that was published. It doesn’t verify the integrity of the file in any way. Totrulyaccomplish this comparison and validation, we can use something known as a hash.

What is a hash?

A hash is a string of characters that is generated by analyzing the bytes of the file using a specific algorithm. This hash value is much smaller than the actual size of the file and is published alongside the file you’re downloading, which allows you to run that same hash algorithm against your downloaded file and verify the hashes match.

There are different algorithms and utilities to generate these hash values. Every algorithm will generate a different hash, but the utility used to generate the hash will always generate the same hash value when you choose the same algorithm.

Powershell cmdlet

Previously you needed a 3rd party tool to do this, but PowerShell provides a handy cmdlet to perform the computations for you. Get-FileHashis the built-in PowerShell cmdlet that can be used to generate a hash value, allowing you to verify against the reference hash. Find more details on the cmdlet and optionshere.

Some vendors publish the information pretty consistently. HPE, for example, tends to include the hash values in the notes and download files. Take a look atthis filefor the ILO 5 firmware update.

See Also
JSON to Table ConverterConvertFrom-Json (Microsoft.PowerShell.Utility) - PowerShellJSON Editor Online: edit JSON, format JSON, query JSONHow to convert command output to the Hashtable format in PowerShell?

You’ll see on the tab “Installation Instruction” that they have the hash/checksum values listed there.

If you download the files, what you’d do from PowerShell is run “Get-FileHash” and specify the path to the file you want to be checked.

PS C:\Down\Blog> Get-FileHash-Path .\cp045967.exe
Algorithm Hash Path
--------- ---- ----
SHA256 82F776A89483EB2192FC41637708A820938B9091D5964530A089092CB64AEBFB C:\Down\Blog\cp045967.exe

You’ll see it generated a hash value of82F776A89483EB2192FC41637708A820938B9091D5964530A089092CB64AEBFB,and you can compare that to the value on the web page and verify it matches.

You can check multiple files, too. If you have downloaded all three files on that page, you can use a wildcard in the path and get them all.

PS C:\Down\Blog> Get-FileHash-Path .\*.* 
Algorithm Hash Path
--------- ---- ----
SHA256 82F776A89483EB2192FC41637708A820938B9091D5964530A089092CB64AEBFB C:\Down\Blog\cp045967.exe
SHA256 71EF16D38226ED06E72B1A87493AA90521D62D18DCF68BB15014C3C1028FBF4C C:\Down\Blog\cp045967_part1.compsig
See Also
ConvertTo-Json (Microsoft.PowerShell.Utility) - PowerShell
SHA256 8B6A297F69E570D72111C076505BFC074AB84B618B9142129CC8746525DE49F6 C:\Down\Blog\cp045967_part2.compsig

Then you can do a comparison of each of those files.

Validating Across Sites

Not all sites will use the default algorithm of SHA256 for computing the hash. Some may have SHA1 or MD5 (shorter keys and faster), and some may have SHA384 or SHA512 (longer keys mean longer compute time, but less likely to get a chance match when it shouldn’t match, not that this very likely with the short keys).

In those cases, when you need to use a non-default algorithm, you run the cmdlet and provide the algorithm as a parameter, as shown below.

PS C:\Down\Blog> Get-FileHash-Path .\*.*-AlgorithmSHA1
Algorithm Hash Path
--------- ---- ----
SHA1 589038C7ED6F0271F16CDCE148534AAAE387BA0B C:\Down\Blog\cp045967.exe
SHA1 BD54FC0333A123F4558ACC5BBF7B6825DC3A45A6 C:\Down\Blog\cp045967_part1.compsig
SHA1 B92AD34D54FFD5C0BE0289EFAAEB0B77F30AB7F1 C:\Down\Blog\cp045967_part2.compsig

This allows you to be flexible and match based on the site’s information.

Here are a few items to be aware of:

  • The larger the file, the longer it takes to compute the hash. For example, 500GB images can take a couple of hours.
  • The hash is based on the contents, not the date/time stamps of the file, etc.
  • For example, if you create a file called “HelloWorld.txt” and put “Hello World” in it, the hash is:
    A591A6D40BF420404A011733CFB7B190D62C65BF0BCDA32B57B277D9AD9F146E
  • If you rename the file to “GoodbyeWorld.txt”, the hash remains the same.
  • If you change the text inside the file to “Goodbye World” and save it, the hash is now:
  • C96724127AF2D6F56BBC3898632B101167242F02519A99E5AB3F1CAB9FF995E7
  • And if I change the text inside the file back to “Hello World”, the hash is back to the original value.

You can generate a file and put the same text in your file, and get the same hash value, as noted above. Hashes are computed based on the contents to ensure their integrity. If you change the “Hello World” to “Hello world” (lowercase w on “world), you’ll see that you get a completely different hash.

Large Files

Aside from basic sanity checks to make sure your downloads from sites are matching what they should be, using a hash is handy for validating large copies.

For example, I had a fairly large file transfer occur where there was a network hiccup during the transfer. The transfer auto-resumed, but I wasn’t confident that there wasn’t any corruption due to the network glitch. I computed the hash on both the source and destination to validate no issues with the file and thus was able to save an hour of time I would have spent re-downloading a file when it wasn’t necessary.

Validate Against Tampering

Another purpose of this might be to help ensure files weren’t tampered with. While you may have good security in place, there’s always some way that someone can get to files they shouldn’t.

If you want to ensure files weren’t modified at all, you can document the results of computation against all the files to a text file and put that in another alternate location or on immutable storage. Then whenever you need to do validation, you can run another computation against those files and verify nothing has changed. This is perfect for the person that is extremely paranoid within your organization.

Leveraging the PowerShellcmdletGet-FileHashcan bringreassurance that your files were transferred properly and match the published source.

Do you still have questions? Check out more of our IT Tips, or let us know by reaching out to talk to an expert. We are here to help!

Validating File Integrity with Get-File Hash (2024)

FAQs

How to validate file integrity? ›

Steps to check and verify file integrity
  1. Based on a comparison of file names, do all the expected files show up?
  2. Do the files have the same checksum?
  3. Is the metadata identical? Or does it differ only where required, like accommodating differences in repositories?
Mar 9, 2022

Read On
How do I validate a file hash? ›

You can use Windows Powershell to calculate the SHA-256 checksum for a file.
  1. Open Windows Powershell. ...
  2. Type Get-FileHash followed by a space.
  3. Drag the downloaded ZIP file onto the Windows Powershell window after the Get-FileHash command. ...
  4. Press Enter. ...
  5. Compare the calculated hash value with the original hash value.

Discover More Details
How do you check integrity hash? ›

Verifying a Hash

Data can be compared to a hash value to determine its integrity. Usually, data is hashed at a certain time and the hash value is protected in some way. At a later time, the data can be hashed again and compared to the protected value. If the hash values match, the data has not been altered.

Continue Reading
Which hash algorithm is best for file integrity? ›

SHA-256 is one of the hashing algorithms that's part of the SHA-2 family (patented under a royalty-free U.S. patent 6829355). It's the most widely used and best hashing algorithm, often in conjunction with digital signatures, for: Authentication and encryption protocols, like TLS, SSL, SSH, and PGP.

See Details
How to run a file integrity check? ›

In the command prompt window, type SFC /scannow and press Enter . The system file checker utility checks the integrity of Windows system files and repairs them if required. After the process is complete, reboot the computer.

Find Out More
What is the most common technique used for checking file integrity? ›

Checksums are one of the most common techniques and methods used for this purpose. Checksums are calculated from data sets using algorithms. In addition to serving as an identifier, it is also used to verify the integrity of the data. To demonstrate this technique, let's consider the example of a file transfer.

Tell Me More
How to get a hash value for a file? ›

If you download the files, what you'd do from PowerShell is run “Get-FileHash” and specify the path to the file you want to be checked. You'll see it generated a hash value of 82F776A89483EB2192FC41637708A820938B9091D5964530A089092CB64AEBFB, and you can compare that to the value on the web page and verify it matches.

Show Me More
What is a hash validation? ›

Where is that “trusted mechanic” when it comes to software installation or file downloads? The answer is hash validation. A hash value is a digital fingerprint (a checksum) created by performing a mathematical operation (a hash function) on the data comprising a computer program or other digital file.

Explore More
Which one way hash is used to verify the integrity of data? ›

Hashing is a one-way process that turns data into a fixed-length hash value using a hash function. The primary goal of hashing is to ensure data integrity and validate the original data. Hash functions are intended to be fast and efficient, generating unique hash values for each input.

Continue Reading
What is get FileHash? ›

Description. The Get-FileHash cmdlet computes the hash value for a file by using a specified hash algorithm. A hash value is a unique value that corresponds to the content of the file.

Show Me More

What is an integrity hash? ›

Note: An integrity value's "hash" part is, strictly speaking, a cryptographic digest formed by applying a particular hash function to some input (for example, a script or stylesheet file). But it's common to use the shorthand "hash" to mean cryptographic digest, so that's what's used in this article.

Read The Full Story
How to check file integrity using MD5? ›

Solution:
  1. Open the Windows command line. Press Windows + R, type cmd and press Enter. ...
  2. Go to the folder that contains the file whose MD5 checksum you want to check and verify. Command: Type cd followed by the path to the folder. ...
  3. Type the command below: certutil -hashfile <file> MD5. ...
  4. Press Enter.
Jul 9, 2024

See Details
What is the best checksum for files? ›

SHA512 is currently a good bet. It is possible, and often sensible, to use multiple algorithms. For example, you might compute both MD5 and SHA256 for your files.

Get More Info Here
What is the difference between hash and checksum? ›

A hash value remains unchanged from the time it is created and is considered an "electronic fingerprint" of a file. A cryptographic checksum is assigned to a file and is used to verify that the data in that file has not been tampered with or manipulated, possibly by a malicious entity.

Continue Reading
What hash to use for checksum? ›

Finally, we can use several hashing algorithms to implement checksumming processes, such as: MD5: an algorithm that computes 128-bit hash codes appropriate to check data integrity. The RFC1321 describes MD5. SHA-1: a strategy that generates a 160-bit hash code that we can use for checksumming.

View More
How do I verify integrity of system files? ›

The sfc /scannow command will scan all protected system files, and replace corrupted files with a cached copy that is located in a compressed folder at %WinDir%\System32\dllcache. The %WinDir% placeholder represents the Windows operating system folder.

View Details
How do you verify data integrity? ›

Now, let's look at a few simple data integrity tests you could do.
  1. Check for missing values. ...
  2. Check for duplicate orders. ...
  3. Check for negative quantities. ...
  4. Check for future orders. ...
  5. Referential integrity. ...
  6. Check for duplicate emails. ...
  7. Temporal integrity.
Jan 19, 2024

See More
How do I verify integrity of local files? ›

Steam
  1. Open your Game Library on Steam.
  2. Right-click on your game.
  3. Select Properties from the menu.
  4. In the Properties menu, select 'Local Files' from the left-hand panel.
  5. On the Local Files page, select 'Verify integrity of game files'
  6. Steam will then verify your files. ...
  7. Once Steam is finished, a box like this will appear.

Learn More
What is integrity validation? ›

Description Data Integrity is the assurance that information is unchanged from its source, and has not been accidentally or maliciously modified, altered or destroyed. Validation is the tests and evaluations used to determine compliance with security specifications and requirements.

Discover More Details
Top Articles
What should I do if I don’t hear back after a job application?
Verification code validation - BB Americas Bank
Craigslist Warren Michigan Free Stuff
The 10 Best Restaurants In Freiburg Germany
T Mobile Rival Crossword Clue
PontiacMadeDDG family: mother, father and siblings
Culver's Flavor Of The Day Wilson Nc
2022 Apple Trade P36
Giovanna Ewbank Nua
Orlando Arrest and Public Records | Florida.StateRecords.org
Why Is Stemtox So Expensive
Palace Pizza Joplin
Amelia Bissoon Wedding
People Portal Loma Linda
The fabulous trio of the Miller sisters
Bridge.trihealth
Evil Dead Rise Showtimes Near Regal Sawgrass & Imax
[PDF] PDF - Education Update - Free Download PDF
12 Facts About John J. McCloy: The 20th Century’s Most Powerful American?
Bidevv Evansville In Online Liquid
Www Pointclickcare Cna Login
Smartfind Express Login Broward
Striffler-Hamby Mortuary - Phenix City Obituaries
The Monitor Recent Obituaries: All Of The Monitor's Recent Obituaries
Used Safari Condo Alto R1723 For Sale
Justin Mckenzie Phillip Bryant
One Credit Songs On Touchtunes 2022
Kvoa Tv Schedule
Eleceed Mangaowl
The best Verizon phones for 2024
Stafford Rotoworld
Blasphemous Painting Puzzle
T&Cs | Hollywood Bowl
M Life Insider
Kutty Movie Net
Ghareeb Nawaz Texas Menu
Citizens Bank Park - Clio
Fatal Accident In Nashville Tn Today
Gas Buddy Il
Ssc South Carolina
Arch Aplin Iii Felony
Gw2 Support Specter
Hdmovie2 Sbs
Dayton Overdrive
Wood River, IL Homes for Sale & Real Estate
Egg Inc Wiki
Used Sawmill For Sale - Craigslist Near Tennessee
Coleman Funeral Home Olive Branch Ms Obituaries
What Is The Gcf Of 44J5K4 And 121J2K6
Round Yellow Adderall
Bomgas Cams
Att Corporate Store Location
Latest Posts
Tenant Insurance Edmonton | BrokerLink
What Is a Processed Food?
Article information

Author: Fr. Dewey Fisher

Last Updated:

Views: 6038

Rating: 4.1 / 5 (62 voted)

Reviews: 93% of readers found this page helpful

Author information

Name: Fr. Dewey Fisher

Birthday: 1993-03-26

Address: 917 Hyun Views, Rogahnmouth, KY 91013-8827

Phone: +5938540192553

Job: Administration Developer

Hobby: Embroidery, Horseback riding, Juggling, Urban exploration, Skiing, Cycling, Handball

Introduction: My name is Fr. Dewey Fisher, I am a powerful, open, faithful, combative, spotless, faithful, fair person who loves writing and wants to share my knowledge and understanding with you.