gMSA account
If you have a read permission, you can decrypt Group Managed Services Account (gMSA) password.
https://www.thehacker.recipes/ad/movement/dacl/readgmsapassword
In Bloodhound, you see ReadGMSAPassword in 'First Degree Object Control' in a Group or User like below.
Last updated