Phase 5
Persistent Access
Persistent Access is about ensuring continued access after the initial entry. The question is not just whether access worked once, but whether it can be repeated or retained reliably and whether the engagement can preserve access beyond the first success through repeatable methods or durable weaknesses.
Techniques
- Card persistence: Cloning or otherwise acquiring access cards that support re-entry.
- Introduced weaknesses: Creating or introducing vulnerabilities that can be relied on later within scope.
- Repeatable entry methods: Establishing a path that can be used again without rebuilding the entire operation from scratch.
Phase Output
- Reliable persistence mechanisms: One or more methods that support repeatable or durable access.
- Repeatability assessment: Whether access should be described as opportunistic, repeatable, or operationally stable.
Transition
Persistent Access ends once continued access is understood well enough to document. The next phase is Exit.