AI Agent Threat Matrix
Matrix/Collection/T-7001
T-7001validated

File System Enumeration

Enumerate and read files from the agent's accessible file system via path traversal or tool access

Tactic

Collection (Stage 7)

Gather and stage data from databases, file systems, and APIs

Attack Class

NEMO-SANDBOX-ESCAPE

Breaking out of agent sandbox restrictions to access the underlying file system or OS

Evidence

validated

Reproduced in controlled lab environment (DVAA) with documented steps.

DVAA Validation

ToolBot path traversal

Detection (HackMyAgent)

IO-001IO-002IO-003IO-004
npx hackmyagent secure --ci

Defense (OASB Controls)

OASB 4.1OASB 4.2OASB 4.3OASB 4.4

How to Cite

AI Agent Threat Matrix T-7001 (File System Enumeration). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-7001
← Back to Matrix