Useful, free, hosted or open source tools
SCCM (now part of Microsoft Endpoint Manager) is ubiquitous in large enterprises. It is a powerful tool used to deploy operating systems, software, and updates to thousands of machines. However, from a security perspective, SCCM represents a high-value target.
The GOAD SCCM extension isolates configuration management mechanics into a single, compact testing topology. The blueprint deploys four critical Windows instances: : The Primary Active Directory Domain Controller. goad sccm
If an attacker compromises the SCCM infrastructure, they essentially gain a "God mode" switch for the endpoint fleet. They can: SCCM (now part of Microsoft Endpoint Manager) is
:
: The Zebrocy APT used SCCM to distribute malware across diplomatic networks. from a security perspective