Resource Development

Info

ID: ATA-002
Attack Stage: Pre-Intrusion
MITRE tactic: TA0042

Resource Development consists of techniques adversaries employ to build or acquire the tools, infrastructure, and malicious artifacts needed for later intrusion. In an application context, this may involve publishing trojanized libraries to package registries, crafting counterfeit API client SDKs, provisioning attacker-controlled container images, or registering domains to host payloads and command-and-control (C2) endpoints. Effective resource preparation enables scalable, repeatable attacks against cloud services, CI/CD pipelines, and application runtimes.