The Agent Skills Directory

[COMMAND_EXECUTION]: The skill's documentation provides specific command-line instructions for executing powerful security tools including Nmap for discovery, Metasploit for exploitation of vulnerabilities like EternalBlue (MS17-010), and Impacket for lateral movement via PsExec.
[DATA_EXFILTRATION]: The workflow describes methods for retrieving sensitive data from target systems, specifically extracting local administrator password hashes via Meterpreter's hashdump command and capturing NTLM authentication traffic using Responder.
[EXTERNAL_DOWNLOADS]: The skill relies on several external security frameworks and libraries (Metasploit, Impacket, CrackMapExec, Responder) which must be present on the host system. These are standard, well-known tools in the security industry.
[SAFE]: The included scripts/agent.py script uses the Impacket library to perform programmatic SMB enumeration. It checks for SMB signing requirements and null session support, which are standard security validation steps. The code is transparent and contains no hidden or malicious behaviors.

exploiting-smb-vulnerabilities-with-metasploit