This is my solution for the first hands-on Exercise

Enumerating Users

Get-ADUser -Filter * -Properties SamAccountName,Description,DoesNotRequirePreAuth,ServicePrincipalNames,MemberOf,TrustedForDelegation,TrustedToAuthForDelegation,SID,BadLogonCount,pwdLastSet,logoncount

Now let’s see if there where something interesting in the users.

Notice that we found a user that has the DoesNotRequirePreAuth Flag set to true which means that the user is ASREP Rostable

Enumerating Computers

Get-ADComputer -Filter * -Properties *

Enumerating Domain Admins

Get-ADGroupMember -Identity 'Domain Admins' -Recursive

Enumerating Enterprise Admins

Get-ADGroupMember -Identity 'Enterprise Admins' -Recursive