'How can I compare a file's SHA256 hash in PowerShell to a known value?

If I've downloaded a file with a known SHA256 hash, how can I use PowerShell to check that the file matches the expected hash?

Solution 1:^[1]

The Get-FileHash cmdlet computes hashes for files, and SHA256 is its default hash algorithm.

To compute the hash of a file:

Get-FileHash .\path\to\foo.zip

This produces something like:

Algorithm       Hash                                                                   Path
---------       ----                                                                   ----
SHA256          15DC0502666851226F1D9C0FE352CCAF0FFDEFF2350B6D2D08A90FCD1F610A10       C:\Users\me\path\to\foo.zip

To compare to the known value, extract the computed hash value alone from the output of Get-FileHash, then compare it to the expected value as a (quoted) string literal. Conveniently this comparison appears to be case-insensitive

(Get-FileHash .\path\to\foo.zip).Hash -eq "15dc0502666851226f1d9c0fe352ccaf0ffdeff2350b6d2d08a90fcd1f610a10"

True

...or if you've got the expected hash in a file, say expected-hash.sha256

(Get-FileHash '.\path\to\foo.zip').Hash -eq (Get-Content .\expected-hash.sha256)

True

Solution 2:^[2]

How about:

Compare-Object -ReferenceObject (Get-Content -Path <path/to/hash-file>) -DifferenceObject (Get-FileHash <path/to/test-file> -Algorithm SHA512)

Where <path/to/hash-file> should be replaced with the path to a file containing the expected hash and <path/to/test-file> should be replaced with the file to thest the hash against.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution	Source
Solution 1	InteXX
Solution 2	Breit

'How can I compare a file's SHA256 hash in PowerShell to a known value?

Solution 1:[1]

Solution 2:[2]

Sources

Related Questions

Solution 1:^[1]

Solution 2:^[2]