T-7004validated
Memory Dump
Dump the agent's memory store to extract stored data, credentials, and conversation history
Tactic
Collection (Stage 7)
Gather and stage data from databases, file systems, and APIs
Attack Class
MEM-POISON
Injecting malicious entries into agent persistent memory to maintain control across sessions
Evidence
validated
Reproduced in controlled lab environment (DVAA) with documented steps.
DVAA Validation
MemoryBot memory dump
Detection (HackMyAgent)
MEM-001MEM-002MEM-003MEM-004MEM-005
npx hackmyagent secure --ciDefense (OASB Controls)
OASB 4.1OASB 4.2OASB 4.3OASB 4.4
How to Cite
AI Agent Threat Matrix T-7004 (Memory Dump). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-7004