Attacks and threats

Agent kill chain

An agent kill chain is a sequence of individually plausible tool calls that together carry out an attack, such as reading a secret and then sending it out.

Definition

What is an agent kill chain?

Borrowed from intrusion analysis, a kill chain describes an attack as a series of steps. For agents, no single tool call may look alarming on its own: reading a config file is normal, and making an HTTP request is normal. The attack lives in the sequence, read the secret, then exfiltrate it, which only reveals itself when the calls are correlated.

Catching kill chains means looking beyond one call at a time. Correlating an agent's actions across a run surfaces the dangerous pattern, lets a control plane block or hold a later step based on an earlier one, and turns a scatter of low-signal events into a single, explainable incident.

FAQ

Common questions.

Why isn't scoring one tool call at a time enough?

Because each step of a kill chain can look benign in isolation. The risk emerges from the order and combination of calls, so you need to correlate an agent's actions across the whole run to see it.

Govern the actions, not just the vocabulary

AxioRank scores every tool call your agents make for leaked secrets, PII, destructive operations, and prompt injection, checks it against your policy, and proves it in a tamper-evident audit log. Start free, no card.