From f6bfcd4e52eb3fc1ad50b73c46f1aa11b54eb9f6 Mon Sep 17 00:00:00 2001
From: Michael Haag
 <“mike@redcanary.com  git config --global user.name “Michael Haag>
Date: Tue, 21 Nov 2017 12:17:55 -0800
Subject: [PATCH] Discovery.bat - add

Added sc.exe query line
---
 Windows/Payloads/Discovery.bat | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Windows/Payloads/Discovery.bat b/Windows/Payloads/Discovery.bat
index c2038750..8c51854a 100644
--- a/Windows/Payloads/Discovery.bat
+++ b/Windows/Payloads/Discovery.bat
@@ -8,6 +8,7 @@ net config workstation
 net accounts
 net accounts /domain
 net view
+sc query
 reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows"
 reg query HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
 reg query HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce