Deconstructing RACF in z/OS and uncovering security issues | Securelist

This article delves into the Resource Access Control Facility (RACF) security package for IBM z/OS mainframes. It explores RACF’s internal architecture, database structure, and the relationships between users, resources, and datasets. The article also introduces racfudit, a utility for offline analysis of the RACF database, enabling identification of potential privilege escalation paths.