AI Agent Threat Matrix
Matrix/Lateral Movement/T-5005
T-5005validatedactive

Database Pivoting

Pivot through database connections accessible via agent tools to reach new data stores

Tactic

Lateral Movement (Stage 5)

Pivot from compromised agent to connected services or other agents

Attack Class

MCP-EXPLOIT

Attacking Model Context Protocol server configurations, tool registrations, and inter-server trust

Evidence

validated

Reproduced in controlled lab environment (DVAA) with documented steps.

DVAA Validation

DataBot SQL injection pivot

Honeypot Coverage (AgentPwn)

Out of scope

Not observable via content-side honeypot interaction. HackMyAgent or DVAA cover this where applicable.

DVAA covers this; not a content-side honeypot signal.

Detection (HackMyAgent)

Live2 live · 0 queued
MCP-001MCP-011
npx hackmyagent secure --ciLive = check implemented in hackmyagent; queued = declared, not yet implemented

Defense (OASB Controls)

Live9 live · 0 queued
OASB 10.1OASB 10.2OASB 10.3OASB 10.4OASB 10.5OASB 7.1OASB 7.2OASB 7.3OASB 7.4
Live = documented at oasb.ai; queued = declared, not yet documented

How to Cite

AI Agent Threat Matrix T-5005 (Database Pivoting). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-5005
← Back to Matrix