---
type: "term"
title: "Attack Step"
description: "A single attacker action or event that exploits exactly one generic vulnerability in a specific context."
resource: "tlctc:term:attack-step"
tags:
  - "glossary"
---
# Attack Step

A single attacker action or event that exploits exactly **one generic vulnerability** in a specific context. Each Attack Step MUST map to exactly one TLCTC cluster (per Axiom VI).

**Reference:** §4.2.2 (Global Definitions), §4.2.8 (Minimal Classification Procedure)