TechAlly Posted May 9, 2017 Share Posted May 9, 2017 Hey all, I'm wondering if anyone has put together a script in Pulseway yet to discover the client's vulnerabilty to the latest Intel ME/AMT Exploit (INTEL-SA-00075 / CVE-2017-5689) Intel provides a scanning tool, but wondering if there is an easy way to automate this scan through pulseway. Thanks -P Link to comment Share on other sites More sharing options...
Administrators Paul Posted May 10, 2017 Administrators Share Posted May 10, 2017 Hi there, You could modify one of the scripts from here: https://forum.pulseway.com/forum/80-powershell to download the zip from a dropbox share link or something similar that's under your control, run it with the following arguments: Intel-SA-00075-console.exe -n -c -f And then simply read the output of the xml into the stdout: Get-Content *.xml You could then check using a regular expression if the content matches a particular string which denotes that a system is affected by the vulnerability and run this command to fail the script so you will know which systems are affected: exit 1 -Paul Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now