focused tool to search and audit msDS-AllowedToActOnBehalfOfOtherIdentity attributes in Active Directory — detecting RBCD misconfigurations, Kerberos delegation risks, and privilege escalation paths.
csharp active-directory cybersecurity kerberos security-tools windows-security identity-access-management ad-security identity-security rbcd delegation-audit directory-audit rbcd-audit-tool kerberos-delegation-audit allowedtoact-inspector ad-delegation-review search-rbcd rbcd-discovery-tool msds-allowedtoact-audit
-
Updated
Jun 1, 2026 - C#