The purpose of this blog is to provide examples of commands that attackers would use to retrieve privileged group members in Active Directory Domain Services.