Skip to main content

sccmhunter.py

A rad tool for hunting SCCM!

Enumerate SCCM config, enumerate remote hosts SMB shares, signing status, and SQL service status

sccmhunter.py find -u lowpriv -p 'JingleAllTheWay!' -d schwarzenegger.com -dc-ip 10.0.5.5

SOMETHING HERE ABOUT THE SMB COMMAND? CHECK AD

View all the enumeration info you have after doing the "find" command

sccmhunter.py show --all

Relay from an HTTP endpoint

sccmhunter.py http -u lowpriv -p 'JingleAllTheWay!' -d schwarzenegger.com -dc-ip 10.0.5.5 -ldaps -auto

Enumerate SCCM config, enumerate remote hosts SMB shares, signing status, and SQL service status
View all the enumeration info you have after doing the "find" command
Relay from an HTTP endpoint