SharpSCCM is a post-exploitation device designed to leverage Microsoft Endpoint Configuration Supervisor (a.okay.a. ConfigMgr, previously SCCM) for lateral motion and credential gathering with out requiring entry to the SCCM administration console GUI.
SharpSCCM was initially created to execute person looking and lateral motion capabilities ported from PowerSCCM (by @harmj0y, @jaredcatkinson, @enigma0x3, and @mattifestation) and now accommodates further performance to assemble credentials and abuse newly found assault primitives for coercing NTLM authentication in SCCM websites the place computerized site-wide consumer push set up is enabled.
Please go to the wiki for documentation detailing how one can construct and use SharpSCCM.
Creator
Chris Thompson is the first writer of this challenge. Duane Michael (@subat0mik) and Evan McBroom (@mcbroom_evan) are energetic contributors as nicely. Please be happy to succeed in out on Twitter (@_Mayyhem) with questions, concepts for enhancements, and so on., and on GitHub with points and pull requests.
Warning
This device was written as a proof of idea in a lab setting and has not been completely examined. There are many unfinished bits, horrible error dealing with, and capabilities I could by no means full. Please watch out and use at your personal threat.