SeeYouCM-Thief
- Thiru T
- Nov 23, 2024
- 1 min read
Simple tool to automatically download and parse configuration files from Cisco phone systems searching for SSH credentials.
Will also optionally enumerate active directory users from the UDS API.
Install:
git clone https://github.com/trustedsec/SeeYouCM-Thief
python3 -m pip install -r requirements.txtUsage:
# Enumerate Active Directory users from the UDS api on the CUCM
./thief.py -H <CUCM server> --userenum
# Without specifying a phone IP address the script will attempt to download every config in the listing.
./thief.py -H <Cisco CUCM Server> [--verbose]
# Parse the web interface for the CUCM address and will do a reverse lookup for other phones in the same subnet.
./thief.py --phone <Cisco IP Phoner> [--verbose]
# Specify a subnet to scan with reverse lookups.
./thief.py --subnet <subnet to scan> [--verbose]
Comments