T-5006validated
Internal API Discovery
Discover and access internal APIs from the agent's network position
Tactic
Lateral Movement (Stage 5)
Pivot from compromised agent to connected services or other agents
Attack Class
MCP-EXPLOIT
Attacking Model Context Protocol server configurations, tool registrations, and inter-server trust
Evidence
validated
Reproduced in controlled lab environment (DVAA) with documented steps.
DVAA Validation
network scanning from agent
Detection (HackMyAgent)
NET-001NET-002NET-003
npx hackmyagent secure --ciDefense (OASB Controls)
OASB 10.1OASB 10.2OASB 10.3OASB 10.4OASB 10.5OASB 7.1OASB 7.2OASB 7.3OASB 7.4
How to Cite
AI Agent Threat Matrix T-5006 (Internal API Discovery). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-5006