WebClient service

This script works with webclientservicescanner and lets you scan a whole list of systems (from a text file). This is handy for when you don't want to scan huge subnet ranges and already have a list of IPs/hosts you want to scan.

The script will prompt you for domain, user, password, input text file and a file to dump results to.

import subprocess

# Prompt for user inputs
domain = input("Enter the domain name: ")
username = input("Enter the username: ")
password = input("Enter the password: ")
input_file = input("Enter the path to the input file containing hostnames: ")
output_file = input("Enter the path to the output file: ")

# Read the hostnames from the input file
with open(input_file, 'r') as file:
    hostnames = [line.strip() for line in file.readlines()]

# Open the output file for writing
with open(output_file, 'w') as outfile:
    for hostname in hostnames:
        command = f"webclientservicescanner {domain}/{username}:'{password}'@{hostname}"
        print(f"Running command for {hostname}...")
        outfile.write(f"Results for {hostname}:\n")
        try:
            result = subprocess.run(command, shell=True, capture_output=True, text=True, check=True)
            # Print and write the output to the file
            print(result.stdout)
            outfile.write(result.stdout)
        except subprocess.CalledProcessError as e:
            # Print and write the error to the file
            print(e.stderr)
            outfile.write(e.stderr)
        print("-" * 50)
        outfile.write("\n" + "-"*50 + "\n")

After you get your output file written, do a little awk magic to extract just the hostnames (alphbetized) of the machines running WebClient service:

grep "RUNNING" output.txt | awk -F '[][]' '{print $2}' | sort > webclient-running.txt