| ID | Name |
|---|---|
| ATAGS-T1116.001 | SAML Tokens |
| ATAGS-T1116.002 | Web Cookies |
Threat Actors may forge web cookies that can be used to gain access to web applications or Internet services. Web applications and services (hosted in cloud SaaS environments or on-premise servers) often use session cookies to authenticate and authorize user access.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.