search

mbrg / genai-attacks

A knowledge source about TTPs used to target GenAI-based systems, copilots and agents
https://ttps.ai
10 stars 0 forks source link

Add reconnaissance entries #38

Closed AvishaiEZen closed 1 week ago

AvishaiEZen commented 1 week ago

Add reconnaissance entries

zenityinbar commented 1 week ago

@AvishaiEZen I'll add the "Discover Topic names" and maybe also "whoami" style recon.

AvishaiEZen commented 1 week ago

@zenityinbar I'm planning on adding the following (we'll discuss further offline, this might change):

  1. Active scanning (e.g. as in Copilot Hunter for MSFT APIs according to known patterns)
  2. List your docs (e.g., fuzzing for AI systems Knowledge)
  3. Search closed sources (e.g., backlinks search engines)
  4. Search open sources (e.g., PublicWWW, Google)
  5. Gather platform information (e.g., discovering tenant, envs, prefixes, which can be used for later recon + as in Copilot Hunter)
mbrg commented 1 week ago

Check out the SaaS recon tactic for ref https://github.com/pushsecurity/saas-attacks

AvishaiEZen commented 1 week ago

As discussed offline with Inbar, creating sub-issues to handle entries separately.