Skip to content
ATR-2026-00152highContext Exfiltrationexperimental

Obfuscated Credential Exfiltration via Encoding

Detects attempts to leak credentials using partial obfuscation techniques: AES256() wrapping, hex encoding references, rot13, or "encrypted key" framing that presents real credentials as encrypted data to bypass content filters. Crystallized from 16 partial_obfuscation samples.

嚴重度
high
類別
Context Exfiltration
掃描目標
mcp
作者
ATR Threat Cloud Crystallization

建議回應

alertblock input

參考資料

OWASP Agentic
ASI01:2026 - Agent Behaviour Hijack
OWASP LLM
LLM01:2025 - Prompt Injection
在 GitHub 上查看完整 YAML →

更多 Context Exfiltration 規則

ATR-2026-00020highSystem Prompt and Internal Instruction LeakageATR-2026-00021criticalCredential and Secret Exposure in Agent OutputATR-2026-00075highAgent Memory ManipulationATR-2026-00102highData Exfiltration via Disguised Analytics CollectionATR-2026-00113criticalCredential File Theft from Agent Environment