forked from WithSecureLabs/Jamf-Attack-Toolkit
-
Notifications
You must be signed in to change notification settings - Fork 0
/
JamfDumper.py
executable file
·75 lines (56 loc) · 2.79 KB
/
JamfDumper.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
import xmltodict
import requests
import os
import xml.dom.minidom
from base64 import b64encode
from getpass import getpass
url = input("[?] JSS URL (https://blah.jamfcloud.com): ")
username = input("[?] JSS Username: ")
password = getpass("[?] JSS Password: ")
auth_string = "%s:%s" % (username, password)
auth = "Basic %s" % b64encode(auth_string.encode("utf-8")).decode("utf-8")
api_url = "%s/JSSResource" % url
try:
os.mkdir(url)
except:
pass
#################################################################################################################################################
#///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////#
#################################################################################################################################################
def dump(friendly_name, name, item_list, item):
print("\n")
print("#"*(len(friendly_name) + 4))
print("# %s #" % friendly_name)
print("#"*(len(friendly_name) + 4))
print("\n")
try:
os.mkdir("%s/%s" % (url, friendly_name))
except:
pass
r = requests.get("%s/%s" % (api_url, name), headers={ "Authorization": auth })
if r.status_code != 200:
print(r)
print(r.text)
raise Exception("An error occured. Request didn't return a 200")
# Iterate and Print
for item in xmltodict.parse(r.text)[item_list][item]:
if os.path.exists("%s/%s/%s" % (url, friendly_name, item['id'])):
print("%s already exists... skipping." % item['id'])
continue
print("%s - %s" % (item['id'], item['name']))
r = requests.get(api_url + "/%s/id/%s" % (name, item['id']), headers={ "Authorization": auth })
if r.status_code != 200:
print(r)
print(r.text)
raise Exception("An error occured. Request didn't return a 200")
dom = xml.dom.minidom.parseString(r.text)
pretty_xml = dom.toprettyxml()
with open("%s/%s/%s" % (url, friendly_name, item['id']), "w") as f:
f.write(pretty_xml)
#################################################################################################################################################
#///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////#
#################################################################################################################################################
if __name__ == '__main__':
dump("Policies", "policies", "policies", "policy")
dump("XAs", "computerextensionattributes", "computer_extension_attributes", "computer_extension_attribute")
dump("Scripts", "scripts", "scripts", "script")