TA002 Resource Development · T002.002 — Technique
Develop or Acquire Exploit Capabilities
Development, purchase, or adaptation of exploit code targeting UAS firmware, autopilot software, GCS applications, or UTM APIs.
Sub-techniques (4)
- MAVLink protocol exploit development
- GCS software vulnerability exploitation
- Firmware extraction and RE toolchain
- UTM API fuzzing and exploitation
Applicable countermeasures
CM-009 UAS Supply Chain Risk Management
Open in the interactive matrix
Component provenance verification, SBOM maintenance, vendor security assessments, and prohibition of high-risk source components.
NIST SP 800-161r1 · NIST SP 800-53 SR-3 · US NDAA Sec. 848 · EU Cyber Resilience Act