This is a non-IMPACT record, meaning that access to the data is not controlled by IMPACT. For access, see the directions below.

This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.


Commando VM
External Tool
External Data Source
52 (lowest rank is 52)

Category & Restrictions

cyber defense, penetration testing


Complete Mandiant Offensive VM (Commando VM), the first full Windows-based penetration testing virtual machine distribution.

Born from our popular FLARE VM that focuses on reverse engineering and malware analysis, the Complete Mandiant Offensive VM ("Commando VM") comes with automated scripts to help build penetration testing environment and ease the process of VM provisioning and deployment.

Penetration testers commonly use their own variants of Windows machines when assessing Active Directory environments. Commando VM was designed specifically to be the go-to platform for performing these internal penetration tests. The benefits of using a Windows machine include native support for Windows and Active Directory, using your VM as a staging area for C2 frameworks, browsing shares more easily (and interactively), and using tools such as PowerView and BloodHound without having to worry about placing output files on client assets.

Commando VM uses Boxstarter, Chocolatey, and MyGet packages to install all of the software, and delivers many tools and utilities to support penetration testing. This list includes more than 140 tools, including:

Remote Server Administration Tools

With such versatility, Commando VM aims to be the de facto Windows machine for every penetration tester and red teamer. For the blue teamers reading this, don't worry, we've got full blue team support as well! The versatile tool sets included in Commando VM provide blue teams with the tools necessary to audit their networks and improve their detection capabilities. With a library of offensive tools, it makes it easy for blue teams to keep up with offensive tooling and attack trends.

Additional Details

vm, commando, commando vm, 1351, external data source, corporation, inferlink, inferlink corporation, source, external, penetration, windows, offensive, testing, machine, complete, mandiant, based, distribution, virtual, tools, blue, support, teams, active, worry, directory, flare, software, frameworks, versatility, tester, variants, utilities, remote, output, wireshark, myget, easily, nmap, trends, browsing, python, boxstarter, analysis, packages, easy, c2, provide, install, server, tooling, internal, other, powerview, focuses, facto, networks, shares, covenant, library, native, audit, attack, popular, deployment, include, detection, malware, x64dbg, sets, teamer, born, team, reverse, 140, automated, suite, de, environments, administration, placing, red, assets, assessing, hashcat, interactively, testers, including, commonly, includes, engineering, list, tool, tests, improve, files, dont, benefits, ease, weve, platform, bloodhound, chocolatey, client, provisioning, scripts, mimikatz, designed, staging, included, teamers, process, aims, capabilities, performing, reading, versatile, environment, build, sysinternals, machines, delivers, burp