AI Agent Threat Matrix
Matrix/Reconnaissance/T-1001
T-1001observed

Endpoint Enumeration

Discover exposed API endpoints, health checks, and information disclosure routes on target agents

Tactic

Reconnaissance (Stage 1)

Map the target agent's attack surface, capabilities, and behavioral boundaries

Attack Class

RETROACTIVE-PRIV

Exploiting previously granted access or cached credentials to gain unauthorized capabilities

Evidence

observed

Confirmed in real-world production systems or internet-wide exposure assessments.

DVAA Validation

All agents expose /health and /info

Detection (HackMyAgent)

WEBEXPOSE-001WEBEXPOSE-002MCP-011
npx hackmyagent secure --ci

Defense (OASB Controls)

OASB 1.1OASB 1.2OASB 1.3OASB 1.4OASB 10.5

How to Cite

AI Agent Threat Matrix T-1001 (Endpoint Enumeration). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-1001
← Back to Matrix