Techniquecredential-accessATLAS

AML.T0090OS Credential Dumping

What it is

Adversaries may extract credentials from OS caches, application memory, or other sources on a compromised system. Credentials are often in the form of a hash or clear text, and can include usernames and passwords, application tokens, or other authentication keys. Credentials can be used to perform [Lateral Movement](/tactics/AML.TA0015) to access other AI services such as AI agents, LLMs, or AI inference APIs. Credentials could also give an adversary access to other software tools and data sources that are part of the AI DevOps lifecycle.

References

  1. https://atlas.mitre.org/techniques/AML.T0090

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS
Exploitation for Credential Access
ATLAS
Credentials from AI Agent Configuration
ATLAS
AI Agent Tool Credential Harvesting
ATLAS
Unsecured Credentials
ATLAS tactic
Credential Access
ATLAS
Use Alternate Authentication Material
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.