T-1006observedactive
Agent Card Discovery
Discover A2A agent cards to map agent identities, capabilities, and trust relationships
Tactic
Reconnaissance (Stage 1)
Map the target agent's attack surface, capabilities, and behavioral boundaries
Attack Class
AGENT-IMPERSONATE
Impersonating trusted agents or administrative roles to gain unauthorized access
Evidence
observed
Confirmed in real-world production systems or internet-wide exposure assessments.
DVAA Validation
Orchestrator /a2a/agent-card
Honeypot Coverage (AgentPwn)
Queued
In scope for honeypot observation; trap page or telemetry hook not yet built.
Pwnagent fake-agent network is queued; see /pwnagent.
Detection (HackMyAgent)
Queued0 live · 2 queued
A2A-001A2A-002
npx hackmyagent secure --ciLive = check implemented in hackmyagent; queued = declared, not yet implementedDefense (OASB Controls)
Live4 live · 0 queued
How to Cite
AI Agent Threat Matrix T-1006 (Agent Card Discovery). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-1006