AML.T0095.000Code Repositories

Adversaries may search public code repositories for information about a victim or victim system that can be used during targeting. Victims may store code or artifacts related to their AI systems in repositories on various third-party websites such as GitHub, GitLab, SourceForge, and BitBucket. Adversaries may search code repositories of common AI tools, frameworks, models, or agentic systems that are used--but not owned--by the victim. Public code repositories can often be a source of various information about victims, such as commonly used AI frameworks, libraries, models, datasets, agents, and agent tools, as well as the names of employees. Adversaries may also identify more sensitive data, including accidentally leaked credentials or API keys (ex: [Credentials from AI Agent Configuration](/techniques/AML.T0083)). Information from these sources may reveal opportunities for other forms of [Reconnaissance](/tactics/AML.TA0002) (ex: [Gather RAG-Indexed Targets](/techniques/AML.T0064)), establishing operational resources (ex: [Acquire Public AI Artifacts](/techniques/AML.T0002)), [Discovery](/tactics/AML.TA0008) (ex: [Discover AI Agent Configuration](/techniques/AML.T0084)) and/or [Initial Access](/tactics/AML.TA0004) (ex: [Valid Accounts](/techniques/AML.T0012) or [Phishing](/techniques/AML.T0052)).