Probe and check coverage aligned to AML
T0055 (Unsecured Credentials).
MITRE ATLAS / AML.T0055
AML.T0055: Unsecured Credentials
Extract API keys / credentials embedded in prompts or system messages.
Last reviewed June 2026
Problem
The gap AML.T0055 closes
Unsecured Credentials sits in the credential access surface, and MITRE ATLAS rates it high. Extract API keys / credentials embedded in prompts or system messages. For teams shipping LLM and agentic features, a control like this is only as good as the evidence that it was actually tested - an unverified control is a finding waiting for an auditor.
How Penaxtra approaches it
How Penaxtra delivers AML.T0055
Penaxtra maps its probe families to this ATLAS technique, so adversarial activity matching unsecured credentials surfaces as a finding carrying the AML.T0055 technique identifier - ready for ATT&CK-style threat tracking and reporting. Every relevant finding is created with the MITRE ATLAS AML.T0055 identifier already attached, so it lands in the audit-evidence pack mapped to the control rather than as a screenshot someone has to translate later. Where the same weakness touches another framework, the cross-framework overlap means one finding satisfies several control cells at once.
Technical capabilities
AML.T0055 capabilities
Findings tagged with the MITRE ATLAS AML
T0055 control identifier.
Severity context (MITRE ATLAS rates this high)
Cross-framework overlap so one finding maps to several control cells
PDF and JSON audit-evidence export with the control id attached
Compliance mapping
AML.T0055 compliance mapping
Findings for AML.T0055 carry the MITRE ATLAS AML.T0055 identifier and cross-map to the related controls in the other five frameworks Penaxtra covers.
FAQ
Frequently asked
What is AML.T0055 (Unsecured Credentials)?
Extract API keys / credentials embedded in prompts or system messages. It is part of MITRE ATLAS, rated high.
How does Penaxtra test for AML.T0055?
Penaxtra maps its probe families to this ATLAS technique, so adversarial activity matching unsecured credentials surfaces as a finding carrying the AML.T0055 technique identifier - ready for ATT&CK-style threat tracking and reporting.
Does a finding for AML.T0055 help with an audit?
Yes. Each finding is tagged with the MITRE ATLAS AML.T0055 control identifier and exported in the PDF and JSON evidence pack, so it maps straight onto the auditor control list instead of needing manual translation.
Request a demo
Scoped walkthrough of the MITRE ATLAS / AML.T0055 surface against your environment. No credit card.