Commando VM v2.0 – 基于Windows的渗透测试工具包

Commando VM

CommandoVM 是一个完全可定制的，基于Windows的安全发行版，用于渗透测试和红队测试。在2019年3月28日发布了首个版本《火眼Windows渗透工具包 – CommandoVM》，现在，2.0版本来了。

Windows渗透工具包

Commando VM安装与使用

项目地址：https://github.com/fireeye/commando-vm

与1.0版本安装方法相同不赘述，请查看上一篇文章，或直接看项目帮助。

Commando VM渗透测试工具清单

Active Directory Tools

• Remote Server Administration Tools (RSAT)
• SQL Server Command Line Utilities
• Sysinternals

Command & Control

• Covenant
• PoshC2
• WMImplant
• WMIOps

Developer Tools

• Dep
• Git
• Go
• Java
• Python 2
• Python 3 (default)
• Ruby
• Ruby Devkit
• Visual Studio 2017 Build Tools (Windows 10)
• Visual Studio Code

Docker

• Amass
• SpiderFoot

Evasion

• CheckPlease
• Demiguise
• DefenderCheck
• DotNetToJScript
• Invoke-CradleCrafter
• Invoke-DOSfuscation
• Invoke-Obfuscation
• Invoke-Phant0m
• Not PowerShell (nps)
• PS>Attack
• PSAmsi
• Pafishmacro
• PowerLessShell
• PowerShdll
• StarFighters

Exploitation

• ADAPE-Script
• API Monitor
• CrackMapExec
• CrackMapExecWin
• DAMP
• EvilClippy
• Exchange-AD-Privesc
• FuzzySec's PowerShell-Suite
• FuzzySec's Sharp-Suite
• Generate-Macro
• GhostPack
  • Rubeus
  • SafetyKatz
  • Seatbelt
  • SharpDPAPI
  • SharpDump
  • SharpRoast
  • SharpUp
  • SharpWMI
• GoFetch
• Impacket
• Invoke-ACLPwn
• Invoke-DCOM
• Invoke-PSImage
• Invoke-PowerThIEf
• Juicy Potato
• Kali Binaries for Windows
• LuckyStrike
• MetaTwin
• Metasploit
• Mr. Unikod3r's RedTeamPowershellScripts
• NetshHelperBeacon
• Nishang
• Orca
• PSReflect
• PowerLurk
• PowerPriv
• PowerSploit
• PowerUpSQL
• PrivExchange
• RottenPotatoNG
• Ruler
• SharpClipHistory
• SharpExchangePriv
• SharpExec
• SpoolSample
• SharpSploit
• UACME
• impacket-examples-windows
• vssown
• Vulcan

Information Gathering

• ADACLScanner
• ADExplorer
• ADOffline
• ADRecon
• BloodHound
• dnsrecon
• FOCA
• Get-ReconInfo
• GoBuster
• GoWitness
• NetRipper
• Nmap
• PowerView
  • Dev branch included
• SharpHound
• SharpView
• SpoolerScanner
• Watson

Kali Linux

• kali-linux-default
• kali-linux-xfce
• VcXsrv

Networking Tools

• Citrix Receiver
• OpenVPN
• Proxycap
• PuTTY
• Telnet
• VMWare Horizon Client
• VMWare vSphere Client
• VNC-Viewer
• WinSCP
• Windump
• Wireshark

Password Attacks

• ASREPRoast
• CredNinja
• DomainPasswordSpray
• DSInternals
• Get-LAPSPasswords
• Hashcat
• Internal-Monologue
• Inveigh
• Invoke-TheHash
• KeeFarce
• KeeThief
• LAPSToolkit
• MailSniper
• Mimikatz
• Mimikittenz
• RiskySPN
• SessionGopher

Reverse Engineering

• DNSpy
• Flare-Floss
• ILSpy
• PEview
• Windbg
• x64dbg

Utilities

• 7zip
• Adobe Reader
• AutoIT
• Cmder
• CyberChef
• Explorer Suite
• Gimp
• Greenshot
• Hashcheck
• Hexchat
• HxD
• Keepass
• MobaXterm
• Mozilla Thunderbird
• Neo4j Community Edition
• Notepad++
• Pidgin
• Process Hacker 2
• SQLite DB Browser
• Screentogif
• Shellcode Launcher
• Sublime Text 3
• TortoiseSVN
• VLC Media Player
• Winrar
• yEd Graph Tool

Vulnerability Analysis

• AD Control Paths
• Egress-Assess
• Grouper2
• NtdsAudit
• PwndPasswordsNTLM
• zBang

Web Applications

• Burp Suite
• Fiddler
• Firefox
• OWASP Zap
• Subdomain-Bruteforce
• Wfuzz

Wordlists

• FuzzDB
• PayloadsAllTheThings
• SecLists
• Probable-Wordlists
• RobotsDisallowed