gMSA data are not parsed

[GeisericII]

Hello, first and foremost, thans for this awesome tool! I wanted to point out that currently gMSA passwords cannot be retrieved by powerview.py and also, ACLs are not parsed. Please see attached screenshots:

Setting user "levi" to be allowed to read gMSA passwords:

No ACLs over the gMSA

Moreover, by looking at the gMSA individually, there is no property that specifies who is allowed to read the gMSA pw.

I think being able to find relevant gMSA ACLs and being able to retrieve password could be a great addition to the tool. Cheers!

[aniqfakhrul]

Hi, can you try using -GMSAPassword option under Get-DomainComputer module if can successfully parsed the values. If it works, i will probably add parsing function embedded in Get-DomainComputer by default.

[aniqfakhrul]

Howdy! we have added new module Get-GMSA as an alias of Get-DomainGMSA to parse the dacl of each gmsa objects. Feel free to try it out and let us know it goes. Much appreaciated

[GeisericII]

Tried and it works wonders! Thanks the awesome work!