Identify and map users with dangerous rights to other users in Active Directory to analyze security risks and privilege escalation paths.
Route all owned & enabled user(s) with Dangerous Rights to user(s)
| Name | Required | Description | Default |
|---|---|---|---|
| domain | Yes |
Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?
No annotations are provided, so the description carries full burden. It mentions 'Route' but doesn't disclose behavioral traits such as whether this is a read-only query or a destructive operation, what permissions are required, how results are returned, or any rate limits. The term 'Dangerous Rights' is undefined, leaving critical security implications unclear.
Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.
Is the description appropriately sized, front-loaded, and free of redundancy?
The description is a single, compact sentence with no wasted words, but it's overly terse and lacks necessary detail. While structurally simple, it under-specifies key aspects, making it less helpful than a more informative yet concise description would be.
Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.
Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?
Given the complexity implied by 'Dangerous Rights' and routing operations, with no annotations, no output schema, and 0% schema description coverage, the description is incomplete. It doesn't explain the tool's behavior, output format, or security context, leaving significant gaps for an AI agent to understand and use it correctly.
Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.
Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?
Schema description coverage is 0%, with one parameter ('domain') undocumented in both schema and description. The description adds no meaning about parameters—it doesn't explain what 'domain' represents, its format, or how it influences the routing. This fails to compensate for the low coverage, leaving the parameter's purpose ambiguous.
Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.
Does the description clearly state what the tool does and how it differs from similar tools?
The description states the action ('Route') and target ('all owned & enabled user(s) with Dangerous Rights to user(s)'), but it's vague about what 'Route' means operationally. It doesn't clearly distinguish from sibling tools like 'route_owned_users_dangerous_rights_to_any' or 'route_non_privileged_users_with_dangerous_rights_to_users', leaving ambiguity about scope and differentiation.
Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.
Does the description explain when to use this tool, when not to, or what alternatives exist?
No guidance is provided on when to use this tool versus alternatives. With many sibling tools involving routing and dangerous rights, the description lacks context about prerequisites, target audience, or specific scenarios where this tool is preferred over others like 'route_azure_users_with_dangerous_rights_to_users'.
Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/stevenyu113228/BloodHound-MCP'
If you have feedback or need assistance with the MCP directory API, please join our Discord server