This tool makes enumerating a box running TeamCity Server after successful exploitation easier.
It is meant to be ran locally on a target machine for example after a successful exploitation of CVE-2023-42793.
$ git clone https://github.com/brun0ne/teamcity-enum
$ cd teamcity-enum
$ bash teamcity-enum.sh- finds the TeamCity buildserver data
- finds the database configuration
- attempts to extract the user table from a
hsqldbdatabase (if used) - finds and lists all files in
pluginDatadirectories
This tool makes use of hsqldb.jar and sqltool.jar by hsqldb.