CAPEC - VIEW GRAPH: CAPEC-1000: Mechanism of Attack (Release 2.0)

Home > CAPEC List > VIEW GRAPH: CAPEC-1000: Mechanism of Attack (Release 2.0)

CAPEC List
Full CAPEC Dictionary
Methods of Attack View
Reports

About CAPEC
Documents
Resources

Community
Related Activities
Collaboration List
T-Shirt
Contact Us

News & Events
Calendar
Free Newsletter

Compatibility
Program
Requirements
Participants
Make a Declaration

Search the Site

CAPEC-1000: Mechanism of Attack

Mechanism of Attack

Definition in a New Window

View ID: 1000 (View: Graph)

Status: Draft

View Data

View Structure: Graph

View Objective

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to
HasMember	Category	118	Data Leakage Attacks	Mechanism of Attack1000
HasMember	Category	119	Resource Depletion	Mechanism of Attack1000
HasMember	Category	152	Injection (Injecting Control Plane content through the Data Plane)	Mechanism of Attack1000
HasMember	Category	156	Spoofing	Mechanism of Attack1000
HasMember	Category	172	Time and State Attacks	Mechanism of Attack1000
HasMember	Category	210	Abuse of Functionality	Mechanism of Attack1000
HasMember	Category	223	Probabilistic Techniques	Mechanism of Attack1000
HasMember	Category	225	Exploitation of Authentication	Mechanism of Attack1000
HasMember	Category	232	Exploitation of Privilege/Trust	Mechanism of Attack1000
HasMember	Category	255	Data Structure Attacks	Mechanism of Attack1000
HasMember	Category	262	Resource Manipulation	Mechanism of Attack1000
HasMember	Attack Pattern	286	Network Reconnaissance	Mechanism of Attack1000
HasMember	Attack Pattern	403	Social Engineering Attacks	Mechanism of Attack1000
HasMember	Category	436	Physical Security Attacks	Mechanism of Attack1000
HasMember	Attack Pattern	437	Supply Chain Attacks	Mechanism of Attack1000

	CAPECs in this view		Total CAPECs
Total	412	out of	474
Views	0	out of	6
Categories	19	out of	68
Attack Patterns	400	out of	400

Expand All | Collapse All

1000 - Mechanism of Attack

CategoryData Leakage Attacks - (118)Data Leakage Attacks - (118)

Attack PatternData Excavation Attacks - (116)Data Excavation Attacks - (116)

Attack PatternJSON Hijacking (aka JavaScript Hijacking) - (111)JSON Hijacking (aka JavaScript Hijacking) - (111)

Attack PatternFuzzing for garnering (through web or log) other adjacent user/sensitive data as an authorized system user (overly broad but valid SQL queries) - (261)Fuzzing for garnering (through web or log) other adjacent user/sensitive data as an authorized system user (overly broad but valid SQL queries) - (261)

Attack PatternPadding Oracle Crypto Attack - (463)Padding Oracle Crypto Attack - (463)

Attack PatternCryptanalysis - (97)Cryptanalysis - (97)

Attack PatternGeneric Cross-Browser Cross-Domain Theft - (468)Generic Cross-Browser Cross-Domain Theft - (468)

Attack PatternProbing an Application Through Targeting its Error Reporting - (54)Probing an Application Through Targeting its Error Reporting - (54)

Attack PatternFuzzing for garnering J2EE/.NET-based stack traces, for application mapping - (214)Fuzzing for garnering J2EE/.NET-based stack traces, for application mapping - (214)

Attack PatternFuzzing and observing application log data/errors for application mapping - (215)Fuzzing and observing application log data/errors for application mapping - (215)

Attack PatternData Interception Attacks - (117)Data Interception Attacks - (117)

Attack PatternSniffing Attacks - (157)Sniffing Attacks - (157)

Attack PatternSniffing Information Sent Over Public/multicast Networks - (158)Sniffing Information Sent Over Public/multicast Networks - (158)

Attack PatternPassively Sniff and Capture Application Code Bound for Authorized Client - (65)Passively Sniff and Capture Application Code Bound for Authorized Client - (65)

Attack PatternPassively Sniffing and Capturing Application Code Bound for an Authorized Client During Dynamic Update - (258)Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Dynamic Update - (258)

Attack PatternPassively Sniffing and Capturing Application Code Bound for an Authorized Client During Patching - (259)Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Patching - (259)

Attack PatternPassively Sniffing and Capturing Application Code Bound for an Authorized Client During Initial Distribution - (260)Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Initial Distribution - (260)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

Attack PatternHarvesting Usernames or UserIDs via Application API Event Monitoring - (383)Harvesting Usernames or UserIDs via Application API Event Monitoring - (383)

Attack PatternEvercookie - (464)Evercookie - (464)

CategoryResource Depletion - (119)Resource Depletion - (119)

Attack PatternResource Depletion through Flooding - (125)Resource Depletion through Flooding - (125)

Attack PatternHTTP DoS - (469)HTTP DoS - (469)

Attack PatternResource Depletion through Allocation - (130)Resource Depletion through Allocation - (130)

Attack PatternResource Depletion through DTD Injection in a SOAP Message - (228)Resource Depletion through DTD Injection in a SOAP Message - (228)

Attack PatternHTTP DoS - (469)HTTP DoS - (469)

Attack PatternResource Depletion through Leak - (131)Resource Depletion through Leak - (131)

Attack PatternDenial of Service through Resource Depletion - (227)Denial of Service through Resource Depletion - (227)

Attack PatternViolating Implicit Assumptions Regarding XML Content (aka XML Denial of Service (XDoS)) - (82)Violating Implicit Assumptions Regarding XML Content (aka XML Denial of Service (XDoS)) - (82)

Attack PatternXML Attribute Blowup - (229)XML Attribute Blowup - (229)

Attack PatternXML Parser Attack - (99)XML Parser Attack - (99)

Attack PatternRecursive Payloads Sent to XML Parsers - (230)Recursive Payloads Sent to XML Parsers - (230)

Attack PatternOversized Payloads Sent to XML Parsers - (231)Oversized Payloads Sent to XML Parsers - (231)

CategoryInjection (Injecting Control Plane content through the Data Plane) - (152)Injection (Injecting Control Plane content through the Data Plane) - (152)

CategoryRemote Code Inclusion - (253)Remote Code Inclusion - (253)

Attack PatternServer Side Include (SSI) Injection - (101)Server Side Include (SSI) Injection - (101)

Attack PatternEmail Injection - (134)Email Injection - (134)

Attack PatternUsing Meta-characters in E-mail Headers to Inject Malicious Payloads - (41)Using Meta-characters in E-mail Headers to Inject Malicious Payloads - (41)

Attack PatternParameter Injection - (137)Parameter Injection - (137)

Attack PatternHTTP Parameter Pollution (HPP) - (460)HTTP Parameter Pollution (HPP) - (460)

Attack PatternArgument Injection - (6)Argument Injection - (6)

Attack PatternCommand Delimiters - (15)Command Delimiters - (15)

Attack PatternOS Command Injection - (88)OS Command Injection - (88)

Attack PatternManipulating Input to File System Calls - (76)Manipulating Input to File System Calls - (76)

Attack PatternReflection Injection - (138)Reflection Injection - (138)

Attack PatternCode Inclusion - (175)Code Inclusion - (175)

Attack PatternReverse Engineer an Executable to Expose Assumed Hidden Functionality or Content - (190)Reverse Engineer an Executable to Expose Assumed Hidden Functionality or Content - (190)

Attack PatternRead Sensitive Strings Within an Executable - (191)Read Sensitive Strings Within an Executable - (191)

Attack PatternPHP Local File Inclusion - (252)PHP Local File Inclusion - (252)

Attack PatternLocal Code Inclusion - (251)Local Code Inclusion - (251)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternFlash Injection - (182)Flash Injection - (182)

Attack PatternCross-Site Scripting Using Flash - (246)Cross-Site Scripting Using Flash - (246)

Attack PatternResource Injection - (240)Resource Injection - (240)

Attack PatternCode Injection - (241)Code Injection - (241)

Attack PatternFile System Function Injection, Content Based - (23)File System Function Injection, Content Based - (23)

Attack PatternGeneric Cross-Browser Cross-Domain Theft - (468)Generic Cross-Browser Cross-Domain Theft - (468)

Attack PatternScript Injection - (242)Script Injection - (242)

Attack PatternEmbedding Scripts in Nonscript Elements - (18)Embedding Scripts in Nonscript Elements - (18)

Attack PatternCross Site Scripting through Log Files - (106)Cross Site Scripting through Log Files - (106)

Attack PatternCross-Site Scripting in Error Pages - (198)Cross-Site Scripting in Error Pages - (198)

Attack PatternCross-Site Scripting Using MIME Type Mismatch - (209)Cross-Site Scripting Using MIME Type Mismatch - (209)

Attack PatternCross-Site Scripting in Attributes - (243)Cross-Site Scripting in Attributes - (243)

Attack PatternCross-Site Scripting Using Doubled Characters, e.g. %3C%3Cscript - (245)Cross-Site Scripting Using Doubled Characters, e.g. %3C%3Cscript - (245)

Attack PatternCross-Site Scripting Using Flash - (246)Cross-Site Scripting Using Flash - (246)

Attack PatternCross-Site Scripting with Masking through Invalid Characters in Identifiers - (247)Cross-Site Scripting with Masking through Invalid Characters in Identifiers - (247)

Attack PatternEmbedding Scripts in HTTP Query Strings - (32)Embedding Scripts in HTTP Query Strings - (32)

Attack PatternEmbedding Script (XSS ) in HTTP Headers - (86)Embedding Script (XSS ) in HTTP Headers - (86)

Attack PatternCross Site Tracing - (107)Cross Site Tracing - (107)

Attack PatternXSS in IMG Tags - (91)XSS in IMG Tags - (91)

Attack PatternEmbedding Scripts within Scripts - (19)Embedding Scripts within Scripts - (19)

Attack PatternFile System Function Injection, Content Based - (23)File System Function Injection, Content Based - (23)

Attack PatternUsing Meta-characters in E-mail Headers to Inject Malicious Payloads - (41)Using Meta-characters in E-mail Headers to Inject Malicious Payloads - (41)

Attack PatternSimple Script Injection - (63)Simple Script Injection - (63)

Attack PatternCross Site Scripting through Log Files - (106)Cross Site Scripting through Log Files - (106)

Attack PatternEmbedding Scripts in Nonscript Elements - (18)Embedding Scripts in Nonscript Elements - (18)

Attack PatternCross Site Scripting through Log Files - (106)Cross Site Scripting through Log Files - (106)

Attack PatternCross-Site Scripting in Error Pages - (198)Cross-Site Scripting in Error Pages - (198)

Attack PatternCross-Site Scripting Using MIME Type Mismatch - (209)Cross-Site Scripting Using MIME Type Mismatch - (209)

Attack PatternCross-Site Scripting in Attributes - (243)Cross-Site Scripting in Attributes - (243)

Attack PatternCross-Site Scripting Using Doubled Characters, e.g. %3C%3Cscript - (245)Cross-Site Scripting Using Doubled Characters, e.g. %3C%3Cscript - (245)

Attack PatternCross-Site Scripting Using Flash - (246)Cross-Site Scripting Using Flash - (246)

Attack PatternCross-Site Scripting with Masking through Invalid Characters in Identifiers - (247)Cross-Site Scripting with Masking through Invalid Characters in Identifiers - (247)

Attack PatternEmbedding Scripts in HTTP Query Strings - (32)Embedding Scripts in HTTP Query Strings - (32)

Attack PatternEmbedding Script (XSS ) in HTTP Headers - (86)Embedding Script (XSS ) in HTTP Headers - (86)

Attack PatternCross Site Tracing - (107)Cross Site Tracing - (107)

Attack PatternXSS in IMG Tags - (91)XSS in IMG Tags - (91)

Attack PatternUser-Controlled Filename - (73)User-Controlled Filename - (73)

Attack PatternCommand Injection - (248)Command Injection - (248)

Attack PatternCommand Line Execution through SQL Injection - (108)Command Line Execution through SQL Injection - (108)

Attack PatternExpanding Control over the Operating System from the Database - (470)Expanding Control over the Operating System from the Database - (470)

Attack PatternCommand Delimiters - (15)Command Delimiters - (15)

Attack PatternOS Command Injection - (88)OS Command Injection - (88)

Attack PatternIMAP/SMTP Command Injection - (183)IMAP/SMTP Command Injection - (183)

Attack PatternCharacter Injection - (249)Character Injection - (249)

Attack PatternManipulating Writeable Terminal Devices - (40)Manipulating Writeable Terminal Devices - (40)

Attack PatternXML Injection - (250)XML Injection - (250)

Attack PatternXPath Injection - (83)XPath Injection - (83)

Attack PatternXQuery Injection - (84)XQuery Injection - (84)

Attack PatternDTD Injection in a SOAP Message - (254)DTD Injection in a SOAP Message - (254)

Attack PatternAnalog In-band Switching Signals (aka Blue Boxing) - (5)Analog In-band Switching Signals (aka Blue Boxing) - (5)

Attack PatternSQL Injection - (66)SQL Injection - (66)

Attack PatternObject Relational Mapping Injection - (109)Object Relational Mapping Injection - (109)

Attack PatternSQL Injection through SOAP Parameter Tampering - (110)SQL Injection through SOAP Parameter Tampering - (110)

Attack PatternExpanding Control over the Operating System from the Database - (470)Expanding Control over the Operating System from the Database - (470)

Attack PatternBlind SQL Injection - (7)Blind SQL Injection - (7)

Attack PatternSQL Injection through SOAP Parameter Tampering - (110)SQL Injection through SOAP Parameter Tampering - (110)

CategorySpoofing - (156)Spoofing - (156)

Attack PatternContent Spoofing - (148)Content Spoofing - (148)

Attack PatternChecksum Spoofing - (145)Checksum Spoofing - (145)

Attack PatternFake the Source of Data - (194)Fake the Source of Data - (194)

Attack PatternSpoofing of UDDI/ebXML Messages - (218)Spoofing of UDDI/ebXML Messages - (218)

Attack PatternLeveraging/Manipulating Configuration File Search Paths - (38)Leveraging/Manipulating Configuration File Search Paths - (38)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternIdentity Spoofing (Impersonation) - (151)Identity Spoofing (Impersonation) - (151)

Attack PatternPrincipal Spoofing - (195)Principal Spoofing - (195)

Attack PatternCreate Malicious Client - (202)Create Malicious Client - (202)

Attack PatternClient-Server Protocol Manipulation - (220)Client-Server Protocol Manipulation - (220)

Attack PatternHTTP Request Splitting - (105)HTTP Request Splitting - (105)

Attack PatternMalicious Automated Software Update - (187)Malicious Automated Software Update - (187)

Attack PatternHTTP Response Smuggling - (273)HTTP Response Smuggling - (273)

Attack PatternHTTP Verb Tampering - (274)HTTP Verb Tampering - (274)

Attack PatternEmbedding Scripts in HTTP Query Strings - (32)Embedding Scripts in HTTP Query Strings - (32)

Attack PatternHTTP Request Smuggling - (33)HTTP Request Smuggling - (33)

Attack PatternHTTP Response Splitting - (34)HTTP Response Splitting - (34)

Attack PatternEmbedding Script (XSS ) in HTTP Headers - (86)Embedding Script (XSS ) in HTTP Headers - (86)

Attack PatternCross Site Tracing - (107)Cross Site Tracing - (107)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternExternal Entity Attack - (221)External Entity Attack - (221)

Attack PatternCreating a Rogue Certificate Authority Certificate - (459)Creating a Rogue Certificate Authority Certificate - (459)

Attack PatternPharming - (89)Pharming - (89)

Attack PatternMan in the Middle Attack - (94)Man in the Middle Attack - (94)

Attack PatternApplication API Message Manipulation via Man-in-the-Middle - (384)Application API Message Manipulation via Man-in-the-Middle - (384)

Attack PatternTransaction or Event Tampering via Application API Manipulation - (385)Transaction or Event Tampering via Application API Manipulation - (385)

Attack PatternApplication API Navigation Remapping - (386)Application API Navigation Remapping - (386)

Attack PatternNavigation Remapping To Propagate Malicoius Content - (387)Navigation Remapping To Propagate Malicoius Content - (387)

Attack PatternApplication API Button Hijacking - (388)Application API Button Hijacking - (388)

Attack PatternContent Spoofing Via Application API Manipulation - (389)Content Spoofing Via Application API Manipulation - (389)

Attack PatternLeveraging Active Man in the Middle Attacks to Bypass Single Origin Policy - (466)Leveraging Active Man in the Middle Attacks to Bypass Single Origin Policy - (466)

Attack PatternUtilizing REST's Trust in the System Resource to Register Man in the Middle - (57)Utilizing REST's Trust in the System Resource to Register Man in the Middle - (57)

Attack PatternPhishing - (98)Phishing - (98)

Attack PatternMobile Phishing (aka MobPhishing) - (164)Mobile Phishing (aka MobPhishing) - (164)

Attack PatternAction Spoofing - (173)Action Spoofing - (173)

Attack PatternClickjacking - (103)Clickjacking - (103)

Attack PatternFlash File Overlay - (181)Flash File Overlay - (181)

CategoryTime and State Attacks - (172)Time and State Attacks - (172)

Attack PatternForced Deadlock - (25)Forced Deadlock - (25)

Attack PatternLeveraging Race Conditions - (26)Leveraging Race Conditions - (26)

Attack PatternLeveraging Race Conditions via Symbolic Links - (27)Leveraging Race Conditions via Symbolic Links - (27)

Attack PatternLeveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions - (29)Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions - (29)

Attack PatternLeveraging Race Conditions via Symbolic Links - (27)Leveraging Race Conditions via Symbolic Links - (27)

Attack PatternLeveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions - (29)Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions - (29)

Attack PatternLeveraging Race Conditions via Symbolic Links - (27)Leveraging Race Conditions via Symbolic Links - (27)

Attack PatternManipulating User State - (74)Manipulating User State - (74)

Attack PatternBypassing of Intermediate Forms in Multiple-Form Sets - (140)Bypassing of Intermediate Forms in Multiple-Form Sets - (140)

CategoryAbuse of Functionality - (210)Abuse of Functionality - (210)

CategoryFunctionality Misuse - (212)Functionality Misuse - (212)

Attack PatternManipulating hidden fields to change the normal flow of transactions (eShoplifting) - (162)Manipulating hidden fields to change the normal flow of transactions (eShoplifting) - (162)

Attack PatternInducing Account Lockout - (2)Inducing Account Lockout - (2)

Attack PatternPassword Recovery Exploitation - (50)Password Recovery Exploitation - (50)

CategoryAbuse of Communication Channels - (216)Abuse of Communication Channels - (216)

Attack PatternChoosing a Message/Channel Identifier on a Public/Multicast Channel - (12)Choosing a Message/Channel Identifier on a Public/Multicast Channel - (12)

Attack PatternExploiting Incorrectly Configured SSL Security Levels - (217)Exploiting Incorrectly Configured SSL Security Levels - (217)

Attack PatternAPI Abuse/Misuse - (113)API Abuse/Misuse - (113)

Attack PatternLocate and Exploit Test APIs - (121)Locate and Exploit Test APIs - (121)

Attack PatternProgramming to included script-based APIs - (160)Programming to included script-based APIs - (160)

Attack PatternDiscovering, querying, and finally calling micro-services, such as w/ AJAX - (179)Discovering, querying, and finally calling micro-services, such as w/ AJAX - (179)

Attack PatternLeveraging web tools (e.g. Mozilla's GreaseMonkey, Firebug) to change application behavior - (211)Leveraging web tools (e.g. Mozilla's GreaseMonkey, Firebug) to change application behavior - (211)

Attack PatternUsing Unpublished Web Service APIs - (36)Using Unpublished Web Service APIs - (36)

Attack PatternTry All Common Application Switches and Options - (133)Try All Common Application Switches and Options - (133)

Attack PatternSoftware Integrity Attacks - (184)Software Integrity Attacks - (184)

Attack PatternJSON Hijacking (aka JavaScript Hijacking) - (111)JSON Hijacking (aka JavaScript Hijacking) - (111)

Attack PatternMalicious Software Download - (185)Malicious Software Download - (185)

Attack PatternMalicious Software Update - (186)Malicious Software Update - (186)

Attack PatternMalicious Automated Software Update - (187)Malicious Automated Software Update - (187)

Attack PatternRemoving Important Functionality from the Client - (207)Removing Important Functionality from the Client - (207)

Attack PatternRemoving/short-circuiting 'guard logic' - (56)Removing/short-circuiting 'guard logic' - (56)

Attack PatternRemoval of filters: Input filters, output filters, data masking - (200)Removal of filters: Input filters, output filters, data masking - (200)

Attack PatternRemoving/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements - (208)Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements - (208)

Attack PatternSubversion of authorization checks: cache filtering, programmatic security, etc. - (239)Subversion of authorization checks: cache filtering, programmatic security, etc. - (239)

Attack PatternDirectory Traversal - (213)Directory Traversal - (213)

Attack PatternAnalytic Attacks - (281)Analytic Attacks - (281)

CategoryFingerprinting - (224)Fingerprinting - (224)

Attack PatternLifting Sensitive Data from the Client - (167)Lifting Sensitive Data from the Client - (167)

Attack PatternLifting Data Embedded in Client Distributions - (37)Lifting Data Embedded in Client Distributions - (37)

Attack PatternLifting cached, sensitive data embedded in client distributions (thick or thin) - (204)Lifting cached, sensitive data embedded in client distributions (thick or thin) - (204)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternPassively Sniff and Capture Application Code Bound for Authorized Client - (65)Passively Sniff and Capture Application Code Bound for Authorized Client - (65)

Attack PatternReverse Engineering - (188)Reverse Engineering - (188)

Attack PatternSoftware Reverse Engineering - (189)Software Reverse Engineering - (189)

Attack PatternReverse Engineer an Executable to Expose Assumed Hidden Functionality or Content - (190)Reverse Engineer an Executable to Expose Assumed Hidden Functionality or Content - (190)

Attack PatternRead Sensitive Strings Within an Executable - (191)Read Sensitive Strings Within an Executable - (191)

Attack PatternPHP Local File Inclusion - (252)PHP Local File Inclusion - (252)

Attack PatternProtocol Reverse Engineering - (192)Protocol Reverse Engineering - (192)

Attack PatternCryptanalysis - (97)Cryptanalysis - (97)

Attack PatternSocket Capable Browser Plugins Result In Transparent Proxy Abuse - (465)Socket Capable Browser Plugins Result In Transparent Proxy Abuse - (465)

Attack PatternPassing Local Filenames to Functions That Expect a URL - (48)Passing Local Filenames to Functions That Expect a URL - (48)

Attack PatternProbing an Application Through Targeting its Error Reporting - (54)Probing an Application Through Targeting its Error Reporting - (54)

Attack PatternFuzzing for garnering J2EE/.NET-based stack traces, for application mapping - (214)Fuzzing for garnering J2EE/.NET-based stack traces, for application mapping - (214)

Attack PatternFuzzing and observing application log data/errors for application mapping - (215)Fuzzing and observing application log data/errors for application mapping - (215)

Attack PatternForceful Browsing - (87)Forceful Browsing - (87)

Attack PatternDetect Unpublicised Web Pages - (143)Detect Unpublicised Web Pages - (143)

Attack PatternDetect Unpublicised Web Services - (144)Detect Unpublicised Web Services - (144)

Attack PatternWSDL Scanning - (95)WSDL Scanning - (95)

CategoryProbabilistic Techniques - (223)Probabilistic Techniques - (223)

Attack PatternBrute Force - (112)Brute Force - (112)

Attack PatternEncryption Brute Forcing - (20)Encryption Brute Forcing - (20)

Attack PatternCryptanalysis - (97)Cryptanalysis - (97)

Attack PatternPassword Brute Forcing - (49)Password Brute Forcing - (49)

Attack PatternDictionary-based Password Attack - (16)Dictionary-based Password Attack - (16)

Attack PatternRainbow Table Password Cracking - (55)Rainbow Table Password Cracking - (55)

Attack PatternTry Common(default) Usernames and Passwords - (70)Try Common(default) Usernames and Passwords - (70)

Attack PatternScreen Temporary Files for Sensitive Information - (155)Screen Temporary Files for Sensitive Information - (155)

Attack PatternFuzzing - (28)Fuzzing - (28)

Attack PatternManipulating Opaque Client-based Data Tokens - (39)Manipulating Opaque Client-based Data Tokens - (39)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

CategoryExploitation of Authentication - (225)Exploitation of Authentication - (225)

Attack PatternAuthentication Abuse - (114)Authentication Abuse - (114)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternAuthentication Bypass - (115)Authentication Bypass - (115)

Attack PatternCalling Signed Code From Another Language Within A Sandbox Allow This - (237)Calling Signed Code From Another Language Within A Sandbox Allow This - (237)

Attack PatternWeb Services API Signature Forgery Leveraging Hash Function Extension Weakness - (461)Web Services API Signature Forgery Leveraging Hash Function Extension Weakness - (461)

Attack PatternExploitation of Session Variables, Resource IDs and other Trusted Credentials - (21)Exploitation of Session Variables, Resource IDs and other Trusted Credentials - (21)

Attack PatternSession Sidejacking - (102)Session Sidejacking - (102)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

Attack PatternReusing Session IDs (aka Session Replay) - (60)Reusing Session IDs (aka Session Replay) - (60)

Attack PatternSession Fixation - (61)Session Fixation - (61)

Attack PatternCross Site Request Forgery (aka Session Riding) - (62)Cross Site Request Forgery (aka Session Riding) - (62)

Attack PatternCross Site Identification - (467)Cross Site Identification - (467)

CategoryExploitation of Privilege/Trust - (232)Exploitation of Privilege/Trust - (232)

CategoryPrivilege Escalation - (233)Privilege Escalation - (233)

Attack PatternCross Zone Scripting - (104)Cross Zone Scripting - (104)

Attack PatternAccessing, Modifying or Executing Executable Files - (17)Accessing, Modifying or Executing Executable Files - (17)

Attack PatternRestful Privilege Elevation - (58)Restful Privilege Elevation - (58)

Attack PatternManipulating Writeable Configuration Files - (75)Manipulating Writeable Configuration Files - (75)

Attack PatternExploitation of Authorization - (122)Exploitation of Authorization - (122)

Attack PatternAccessing Functionality Not Properly Constrained by ACLs - (1)Accessing Functionality Not Properly Constrained by ACLs - (1)

Attack PatternAccessing, Modifying or Executing Executable Files - (17)Accessing, Modifying or Executing Executable Files - (17)

Attack PatternRestful Privilege Elevation - (58)Restful Privilege Elevation - (58)

Attack PatternExploiting Trust in Client (aka Make the Client Invisible) - (22)Exploiting Trust in Client (aka Make the Client Invisible) - (22)

Attack PatternLifting Sensitive Data from the Client - (167)Lifting Sensitive Data from the Client - (167)

Attack PatternLifting Data Embedded in Client Distributions - (37)Lifting Data Embedded in Client Distributions - (37)

Attack PatternLifting cached, sensitive data embedded in client distributions (thick or thin) - (204)Lifting cached, sensitive data embedded in client distributions (thick or thin) - (204)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternPassively Sniff and Capture Application Code Bound for Authorized Client - (65)Passively Sniff and Capture Application Code Bound for Authorized Client - (65)

Attack PatternCreate Malicious Client - (202)Create Malicious Client - (202)

Attack PatternRemoving Important Functionality from the Client - (207)Removing Important Functionality from the Client - (207)

Attack PatternRemoving/short-circuiting 'guard logic' - (56)Removing/short-circuiting 'guard logic' - (56)

Attack PatternRemoval of filters: Input filters, output filters, data masking - (200)Removal of filters: Input filters, output filters, data masking - (200)

Attack PatternRemoving/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements - (208)Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements - (208)

Attack PatternSubversion of authorization checks: cache filtering, programmatic security, etc. - (239)Subversion of authorization checks: cache filtering, programmatic security, etc. - (239)

Attack PatternClient-Server Protocol Manipulation - (220)Client-Server Protocol Manipulation - (220)

Attack PatternHTTP Request Splitting - (105)HTTP Request Splitting - (105)

Attack PatternMalicious Automated Software Update - (187)Malicious Automated Software Update - (187)

Attack PatternHTTP Response Smuggling - (273)HTTP Response Smuggling - (273)

Attack PatternHTTP Verb Tampering - (274)HTTP Verb Tampering - (274)

Attack PatternEmbedding Scripts in HTTP Query Strings - (32)Embedding Scripts in HTTP Query Strings - (32)

Attack PatternHTTP Request Smuggling - (33)HTTP Request Smuggling - (33)

Attack PatternHTTP Response Splitting - (34)HTTP Response Splitting - (34)

Attack PatternEmbedding Script (XSS ) in HTTP Headers - (86)Embedding Script (XSS ) in HTTP Headers - (86)

Attack PatternCross Site Tracing - (107)Cross Site Tracing - (107)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternManipulating Opaque Client-based Data Tokens - (39)Manipulating Opaque Client-based Data Tokens - (39)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

Attack PatternManipulating User-Controlled Variables - (77)Manipulating User-Controlled Variables - (77)

Attack PatternBuffer Overflow via Environment Variables - (10)Buffer Overflow via Environment Variables - (10)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternBuffer Overflow in Local Command-Line Utilities - (9)Buffer Overflow in Local Command-Line Utilities - (9)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternSubverting Environment Variable Values - (13)Subverting Environment Variable Values - (13)

Attack PatternLeveraging/Manipulating Configuration File Search Paths - (38)Leveraging/Manipulating Configuration File Search Paths - (38)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternManipulating Input to File System Calls - (76)Manipulating Input to File System Calls - (76)

Attack PatternMan in the Middle Attack - (94)Man in the Middle Attack - (94)

Attack PatternApplication API Message Manipulation via Man-in-the-Middle - (384)Application API Message Manipulation via Man-in-the-Middle - (384)

Attack PatternTransaction or Event Tampering via Application API Manipulation - (385)Transaction or Event Tampering via Application API Manipulation - (385)

Attack PatternApplication API Navigation Remapping - (386)Application API Navigation Remapping - (386)

Attack PatternNavigation Remapping To Propagate Malicoius Content - (387)Navigation Remapping To Propagate Malicoius Content - (387)

Attack PatternApplication API Button Hijacking - (388)Application API Button Hijacking - (388)

Attack PatternContent Spoofing Via Application API Manipulation - (389)Content Spoofing Via Application API Manipulation - (389)

Attack PatternLeveraging Active Man in the Middle Attacks to Bypass Single Origin Policy - (466)Leveraging Active Man in the Middle Attacks to Bypass Single Origin Policy - (466)

Attack PatternUtilizing REST's Trust in the System Resource to Register Man in the Middle - (57)Utilizing REST's Trust in the System Resource to Register Man in the Middle - (57)

Attack PatternHijacking a privileged process - (234)Hijacking a privileged process - (234)

Attack PatternHijacking a Privileged Thread of Execution - (30)Hijacking a Privileged Thread of Execution - (30)

Attack PatternImplementing a callback to system routine (old AWT Queue) - (235)Implementing a callback to system routine (old AWT Queue) - (235)

Attack PatternCatching exception throw/signal from privileged block - (236)Catching exception throw/signal from privileged block - (236)

Attack PatternSubvert Code-signing Facilities - (68)Subvert Code-signing Facilities - (68)

Attack PatternLifting signing key and signing malicious code from a production environment - (206)Lifting signing key and signing malicious code from a production environment - (206)

Attack PatternCalling Signed Code From Another Language Within A Sandbox Allow This - (237)Calling Signed Code From Another Language Within A Sandbox Allow This - (237)

Attack PatternUsing URL/codebase / G.A.C. (code source) to convince sandbox of privilege - (238)Using URL/codebase / G.A.C. (code source) to convince sandbox of privilege - (238)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

CategoryData Structure Attacks - (255)Data Structure Attacks - (255)

Attack PatternBuffer Attacks - (123)Buffer Attacks - (123)

Attack PatternOverflow Buffers - (100)Overflow Buffers - (100)

Attack PatternBuffer Overflow via Environment Variables - (10)Buffer Overflow via Environment Variables - (10)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternBuffer Overflow in Local Command-Line Utilities - (9)Buffer Overflow in Local Command-Line Utilities - (9)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternClient-side Injection-induced Buffer Overflow - (14)Client-side Injection-induced Buffer Overflow - (14)

Attack PatternFilter Failure through Buffer Overflow - (24)Filter Failure through Buffer Overflow - (24)

Attack PatternSOAP Array Overflow - (256)SOAP Array Overflow - (256)

Attack PatternMIME Conversion - (42)MIME Conversion - (42)

Attack PatternOverflow Binary Resource File - (44)Overflow Binary Resource File - (44)

Attack PatternBuffer Overflow via Symbolic Links - (45)Buffer Overflow via Symbolic Links - (45)

Attack PatternOverflow Variables and Tags - (46)Overflow Variables and Tags - (46)

Attack PatternBuffer Overflow via Parameter Expansion - (47)Buffer Overflow via Parameter Expansion - (47)

Attack PatternString Format Overflow in syslog() - (67)String Format Overflow in syslog() - (67)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternBuffer Overflow in an API Call - (8)Buffer Overflow in an API Call - (8)

Attack PatternClient-side Injection-induced Buffer Overflow - (14)Client-side Injection-induced Buffer Overflow - (14)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternBuffer Overflow in Local Command-Line Utilities - (9)Buffer Overflow in Local Command-Line Utilities - (9)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternAbuse of transaction data strutcture - (257)Abuse of transaction data strutcture - (257)

Attack PatternAttack through Shared Data - (124)Attack through Shared Data - (124)

Attack PatternInteger Attacks - (128)Integer Attacks - (128)

Attack PatternForced Integer Overflow - (92)Forced Integer Overflow - (92)

Attack PatternPointer Attack - (129)Pointer Attack - (129)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

CategoryResource Manipulation - (262)Resource Manipulation - (262)

Attack PatternInput Data Manipulation - (153)Input Data Manipulation - (153)

Attack PatternManipulate Canonicalization - (266)Manipulate Canonicalization - (266)

Attack PatternCause Web Server Misclassification - (11)Cause Web Server Misclassification - (11)

Attack PatternResource Location Attacks - (154)Resource Location Attacks - (154)

CategoryPath Traversal - (126)Path Traversal - (126)

Attack PatternUsing Slashes and URL Encoding Combined to Bypass Validation Logic - (64)Using Slashes and URL Encoding Combined to Bypass Validation Logic - (64)

Attack PatternUsing Escaped Slashes in Alternate Encoding - (78)Using Escaped Slashes in Alternate Encoding - (78)

Attack PatternUsing Slashes in Alternate Encoding - (79)Using Slashes in Alternate Encoding - (79)

Attack PatternUsing Slashes and URL Encoding Combined to Bypass Validation Logic - (64)Using Slashes and URL Encoding Combined to Bypass Validation Logic - (64)

Attack PatternUsing Escaped Slashes in Alternate Encoding - (78)Using Escaped Slashes in Alternate Encoding - (78)

Attack PatternCommon resource location exploration - (150)Common resource location exploration - (150)

Attack PatternExplore for predictable temporary file names - (149)Explore for predictable temporary file names - (149)

Attack PatternLeveraging/Manipulating Configuration File Search Paths - (38)Leveraging/Manipulating Configuration File Search Paths - (38)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternInfrastructure Manipulation - (161)Infrastructure Manipulation - (161)

Attack PatternPharming - (89)Pharming - (89)

Attack PatternFile Manipulation - (165)File Manipulation - (165)

Attack PatternCause Web Server Misclassification - (11)Cause Web Server Misclassification - (11)

Attack PatternAccessing, Modifying or Executing Executable Files - (17)Accessing, Modifying or Executing Executable Files - (17)

Attack PatternCreate files with the same name as files protected with a higher classification - (177)Create files with the same name as files protected with a higher classification - (177)

Attack PatternFile System Function Injection, Content Based - (23)File System Function Injection, Content Based - (23)

Attack PatternForce Use of Corrupted Files - (263)Force Use of Corrupted Files - (263)

Attack PatternLeverage Executable Code in Nonexecutable Files - (35)Leverage Executable Code in Nonexecutable Files - (35)

Attack PatternOverflow Binary Resource File - (44)Overflow Binary Resource File - (44)

Attack PatternUser-Controlled Filename - (73)User-Controlled Filename - (73)

Attack PatternVariable Manipulation - (171)Variable Manipulation - (171)

Attack PatternForce the System to Reset Values - (166)Force the System to Reset Values - (166)

Attack PatternEnvironment variable manipulation - (264)Environment variable manipulation - (264)

Attack PatternSubverting Environment Variable Values - (13)Subverting Environment Variable Values - (13)

Attack PatternLeveraging/Manipulating Configuration File Search Paths - (38)Leveraging/Manipulating Configuration File Search Paths - (38)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternManipulating Input to File System Calls - (76)Manipulating Input to File System Calls - (76)

Attack PatternGlobal variable manipulation - (265)Global variable manipulation - (265)

Attack PatternManipulating User-Controlled Variables - (77)Manipulating User-Controlled Variables - (77)

Attack PatternBuffer Overflow via Environment Variables - (10)Buffer Overflow via Environment Variables - (10)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternBuffer Overflow in Local Command-Line Utilities - (9)Buffer Overflow in Local Command-Line Utilities - (9)

Attack PatternTarget Programs with Elevated Privileges - (69)Target Programs with Elevated Privileges - (69)

Attack PatternSubverting Environment Variable Values - (13)Subverting Environment Variable Values - (13)

Attack PatternLeveraging/Manipulating Configuration File Search Paths - (38)Leveraging/Manipulating Configuration File Search Paths - (38)

Attack PatternDLL Search Order Hijacking - (471)DLL Search Order Hijacking - (471)

Attack PatternManipulating Input to File System Calls - (76)Manipulating Input to File System Calls - (76)

Attack PatternConfiguration/Environment manipulation - (176)Configuration/Environment manipulation - (176)

Attack PatternManipulate Application Registry Values - (203)Manipulate Application Registry Values - (203)

Attack PatternManipulating Writeable Configuration Files - (75)Manipulating Writeable Configuration Files - (75)

Attack PatternBlock Access to Libraries - (96)Block Access to Libraries - (96)

Attack PatternAbuse of transaction data strutcture - (257)Abuse of transaction data strutcture - (257)

Attack PatternAudit Log Manipulation - (268)Audit Log Manipulation - (268)

Attack PatternWeb Logs Tampering - (81)Web Logs Tampering - (81)

Attack PatternLog Injection-Tampering-Forging - (93)Log Injection-Tampering-Forging - (93)

Attack PatternCross Site Scripting through Log Files - (106)Cross Site Scripting through Log Files - (106)

Attack PatternRegistry Manipulation - (269)Registry Manipulation - (269)

Attack PatternCraft a Maliciously Misconfigured Registry - (270)Craft a Maliciously Misconfigured Registry - (270)

Attack PatternPoison Web Service Registry - (51)Poison Web Service Registry - (51)

Attack PatternSchema Poisoning - (271)Schema Poisoning - (271)

Attack PatternXML Schema Poisoning - (146)XML Schema Poisoning - (146)

Attack PatternProtocol Manipulation - (272)Protocol Manipulation - (272)

CategoryWeb Services Protocol Manipulation - (278)Web Services Protocol Manipulation - (278)

Attack PatternExternal Entity Attack - (201)External Entity Attack - (201)

Attack PatternSoap Manipulation - (279)Soap Manipulation - (279)

Attack PatternDTD Injection in a SOAP Message - (254)DTD Injection in a SOAP Message - (254)

Attack PatternSOAP Parameter Tampering - (280)SOAP Parameter Tampering - (280)

Attack PatternSQL Injection through SOAP Parameter Tampering - (110)SQL Injection through SOAP Parameter Tampering - (110)

Attack PatternWindows ::DATA Alternate Data Stream - (168)Windows ::DATA Alternate Data Stream - (168)

Attack PatternClient-Server Protocol Manipulation - (220)Client-Server Protocol Manipulation - (220)

Attack PatternHTTP Request Splitting - (105)HTTP Request Splitting - (105)

Attack PatternMalicious Automated Software Update - (187)Malicious Automated Software Update - (187)

Attack PatternHTTP Response Smuggling - (273)HTTP Response Smuggling - (273)

Attack PatternHTTP Verb Tampering - (274)HTTP Verb Tampering - (274)

Attack PatternEmbedding Scripts in HTTP Query Strings - (32)Embedding Scripts in HTTP Query Strings - (32)

Attack PatternHTTP Request Smuggling - (33)HTTP Request Smuggling - (33)

Attack PatternHTTP Response Splitting - (34)HTTP Response Splitting - (34)

Attack PatternEmbedding Script (XSS ) in HTTP Headers - (86)Embedding Script (XSS ) in HTTP Headers - (86)

Attack PatternCross Site Tracing - (107)Cross Site Tracing - (107)

Attack PatternReflection Attack in Authentication Protocol - (90)Reflection Attack in Authentication Protocol - (90)

Attack PatternInter-component Protocol Manipulation - (276)Inter-component Protocol Manipulation - (276)

Attack PatternData Interchange Protocol Manipulation - (277)Data Interchange Protocol Manipulation - (277)

Attack PatternAccessing/Intercepting/Modifying HTTP Cookies - (31)Accessing/Intercepting/Modifying HTTP Cookies - (31)

CategoryPhysical Security Attacks - (436)Physical Security Attacks - (436)

Attack PatternBypassing Physical Security of Systems or Facilities - (390)Bypassing Physical Security of Systems or Facilities - (390)

Attack PatternBypassing Physical Locks - (391)Bypassing Physical Locks - (391)

Attack PatternLock Bumping - (392)Lock Bumping - (392)

Attack PatternLock Picking - (393)Lock Picking - (393)

Attack PatternUsing a Snap Gun Lock to Force a Lock - (394)Using a Snap Gun Lock to Force a Lock - (394)

Attack PatternBypassing Electronic Locks and Access Controls - (395)Bypassing Electronic Locks and Access Controls - (395)

Attack PatternBypassing Card or Badge-Based Systems - (396)Bypassing Card or Badge-Based Systems - (396)

Attack PatternCloning Magnetic Strip Cards - (397)Cloning Magnetic Strip Cards - (397)

Attack PatternMagnetic Strip Card Brute Force Attacks - (398)Magnetic Strip Card Brute Force Attacks - (398)

Attack PatternCloning RFID Cards or Chips - (399)Cloning RFID Cards or Chips - (399)

Attack PatternRFID Chip Deactivation or Destruction - (400)RFID Chip Deactivation or Destruction - (400)

Attack PatternHacking Hardware Devices or Components - (401)Hacking Hardware Devices or Components - (401)

Attack PatternBypassing ATA Password Security - (402)Bypassing ATA Password Security - (402)

Attack PatternNetwork Reconnaissance - (286)Network Reconnaissance - (286)

Attack PatternInfrastructure-based footprinting - (289)Infrastructure-based footprinting - (289)

Attack PatternScanning for Devices, Systems, or Routes - (309)Scanning for Devices, Systems, or Routes - (309)

Attack PatternEnumerate Mail Exchange (MX) Records - (290)Enumerate Mail Exchange (MX) Records - (290)

Attack PatternDNS Zone Transfers - (291)DNS Zone Transfers - (291)

Attack PatternHost Discovery - (292)Host Discovery - (292)

Attack PatternICMP Echo Request Ping - (285)ICMP Echo Request Ping - (285)

DeprecatedICMP Echo Request Ping - (288)ICMP Echo Request Ping - (288)

Attack PatternICMP Address Mask Request - (294)ICMP Address Mask Request - (294)

Attack PatternICMP Timestamp Request - (295)ICMP Timestamp Request - (295)

Attack PatternICMP Information Request - (296)ICMP Information Request - (296)

Attack PatternTCP ACK Ping - (297)TCP ACK Ping - (297)

Attack PatternUDP Ping - (298)UDP Ping - (298)

Attack PatternTCP SYN Ping - (299)TCP SYN Ping - (299)

Attack PatternTraceroute Route Enumeration - (293)Traceroute Route Enumeration - (293)

Attack PatternScanning for Vulnerable Software - (310)Scanning for Vulnerable Software - (310)

Attack PatternPort Scanning - (300)Port Scanning - (300)

Attack PatternTCP SYN Scan - (287)TCP SYN Scan - (287)

Attack PatternTCP Connect Scan - (301)TCP Connect Scan - (301)

Attack PatternTCP FIN scan - (302)TCP FIN scan - (302)

Attack PatternTCP Xmas Scan - (303)TCP Xmas Scan - (303)

Attack PatternTCP Null Scan - (304)TCP Null Scan - (304)

Attack PatternTCP ACK Scan - (305)TCP ACK Scan - (305)

Attack PatternTCP Window Scan - (306)TCP Window Scan - (306)

Attack PatternTCP RPC Scan - (307)TCP RPC Scan - (307)

Attack PatternUDP Scan - (308)UDP Scan - (308)

Attack PatternFingerprinting Remote Operating Systems - (311)Fingerprinting Remote Operating Systems - (311)

Attack PatternActive OS Fingerprinting - (312)Active OS Fingerprinting - (312)

Attack PatternIP Fingerprinting Probes - (314)IP Fingerprinting Probes - (314)

Attack PatternIP ID Sequencing Probe - (317)IP ID Sequencing Probe - (317)

Attack PatternIP 'ID' Echoed Byte-Order Probe - (318)IP 'ID' Echoed Byte-Order Probe - (318)

Attack PatternIP (DF) 'Don't Fragment Bit' Echoing Probe - (319)IP (DF) 'Don't Fragment Bit' Echoing Probe - (319)

Attack PatternTCP/IP Fingerprinting Probes - (315)TCP/IP Fingerprinting Probes - (315)

Attack PatternTCP Timestamp Probe - (320)TCP Timestamp Probe - (320)

Attack PatternTCP Sequence Number Probe - (321)TCP Sequence Number Probe - (321)

Attack PatternTCP (ISN) Greatest Common Divisor Probe - (322)TCP (ISN) Greatest Common Divisor Probe - (322)

Attack PatternTCP (ISN) Counter Rate Probe - (323)TCP (ISN) Counter Rate Probe - (323)

Attack PatternTCP (ISN) Sequence Predictability Probe - (324)TCP (ISN) Sequence Predictability Probe - (324)

Attack PatternTCP Congestion Control Flag (ECN) Probe - (325)TCP Congestion Control Flag (ECN) Probe - (325)

Attack PatternTCP Initial Window Size Probe - (326)TCP Initial Window Size Probe - (326)

Attack PatternTCP Options Probe - (327)TCP Options Probe - (327)

Attack PatternTCP 'RST' Flag Checksum Probe - (328)TCP 'RST' Flag Checksum Probe - (328)

Attack PatternICMP Fingerprinting Probes - (316)ICMP Fingerprinting Probes - (316)

Attack PatternICMP Error Message Quoting Probe - (329)ICMP Error Message Quoting Probe - (329)

Attack PatternICMP Error Message Echoing Integrity Probe - (330)ICMP Error Message Echoing Integrity Probe - (330)

Attack PatternICMP IP Total Length Field Probe - (331)ICMP IP Total Length Field Probe - (331)

Attack PatternICMP IP 'ID' Field Error Message Probe - (332)ICMP IP 'ID' Field Error Message Probe - (332)

Attack PatternPassive OS Fingerprinting - (313)Passive OS Fingerprinting - (313)

Attack PatternSocial Engineering Attacks - (403)Social Engineering Attacks - (403)

Attack PatternSocial Information Gathering Attacks - (404)Social Information Gathering Attacks - (404)

Attack PatternSocial Information Gathering via Research - (405)Social Information Gathering via Research - (405)

Attack PatternSocial Information Gathering via Dumpster Diving - (406)Social Information Gathering via Dumpster Diving - (406)

Attack PatternSocial Information Gathering via Pretexting - (407)Social Information Gathering via Pretexting - (407)

Attack PatternPretexting via Customer Service - (412)Pretexting via Customer Service - (412)

Attack PatternPretexting via Tech Support - (413)Pretexting via Tech Support - (413)

Attack PatternPretexting via Delivery Person - (414)Pretexting via Delivery Person - (414)

Attack PatternPretexting via Phone - (415)Pretexting via Phone - (415)

Attack PatternInformation Gathering from Traditional Sources - (408)Information Gathering from Traditional Sources - (408)

Attack PatternCross Site Identification - (467)Cross Site Identification - (467)

Attack PatternInformation Gathering from Non-Traditional Sources - (409)Information Gathering from Non-Traditional Sources - (409)

Attack PatternInformation Elicitation via Social Engineering - (410)Information Elicitation via Social Engineering - (410)

Attack PatternSocial Information Gathering via Pretexting - (407)Social Information Gathering via Pretexting - (407)

Attack PatternPretexting via Customer Service - (412)Pretexting via Customer Service - (412)

Attack PatternPretexting via Tech Support - (413)Pretexting via Tech Support - (413)

Attack PatternPretexting via Delivery Person - (414)Pretexting via Delivery Person - (414)

Attack PatternPretexting via Phone - (415)Pretexting via Phone - (415)

Attack PatternTarget Influence via Social Engineering - (416)Target Influence via Social Engineering - (416)

Attack PatternTarget Influence via Perception of Reciprocation - (417)Target Influence via Perception of Reciprocation - (417)

Attack PatternTarget Influence via Perception of Obligation - (418)Target Influence via Perception of Obligation - (418)

Attack PatternTarget Influence via Perception of Concession - (419)Target Influence via Perception of Concession - (419)

Attack PatternTarget Influence via Perception of Scarcity - (420)Target Influence via Perception of Scarcity - (420)

Attack PatternTarget Influence via Perception of Authority - (421)Target Influence via Perception of Authority - (421)

Attack PatternTarget Influence via Perception of Commitment and Consistency - (422)Target Influence via Perception of Commitment and Consistency - (422)

Attack PatternTarget Influence via Perception of Liking - (423)Target Influence via Perception of Liking - (423)

Attack PatternTarget Influence via Perception of Consensus or Social Proof - (424)Target Influence via Perception of Consensus or Social Proof - (424)

Attack PatternTarget Influence via Framing - (425)Target Influence via Framing - (425)

Attack PatternTarget Influence via Manipulation of Incentives - (426)Target Influence via Manipulation of Incentives - (426)

Attack PatternTarget Influence via Psychological Principles - (427)Target Influence via Psychological Principles - (427)

Attack PatternTarget Influence via Modes of Thinking - (428)Target Influence via Modes of Thinking - (428)

Attack PatternTarget Influence via Eye Cues - (429)Target Influence via Eye Cues - (429)

Attack PatternTarget Influence via Micro-Expressions - (430)Target Influence via Micro-Expressions - (430)

Attack PatternTarget Influence via Neuro-Linguistic Programming (NLP) - (431)Target Influence via Neuro-Linguistic Programming (NLP) - (431)

Attack PatternTarget Influence via Voice in NLP - (432)Target Influence via Voice in NLP - (432)

Attack PatternTarget Influence via The Human Buffer Overflow - (433)Target Influence via The Human Buffer Overflow - (433)

Attack PatternTarget Influence via Interview and Interrogation - (434)Target Influence via Interview and Interrogation - (434)

Attack PatternTarget Influence via Instant Rapport - (435)Target Influence via Instant Rapport - (435)

Attack PatternSupply Chain Attacks - (437)Supply Chain Attacks - (437)

Attack PatternIntegrity Modification/Manipulation During Manufacture - (438)Integrity Modification/Manipulation During Manufacture - (438)

Attack PatternIntegrity Modification during Distribution - (439)Integrity Modification during Distribution - (439)

Attack PatternIntegrity Modification During Deployed Use - (440)Integrity Modification During Deployed Use - (440)

Attack PatternMalicious Logic Inserted Into Product - (441)Malicious Logic Inserted Into Product - (441)

Attack PatternMalicious Logic Inserted Into Product Software - (442)Malicious Logic Inserted Into Product Software - (442)

Attack PatternMalicious Logic Inserted Into Product Software by Authorized Developer - (443)Malicious Logic Inserted Into Product Software by Authorized Developer - (443)

Attack PatternMalicious Logic Insertion into Product Software via Externally Manipulated Component - (444)Malicious Logic Insertion into Product Software via Externally Manipulated Component - (444)

Attack PatternMalicious Logic Insertion into Product Software via Configuration Management Manipulation - (445)Malicious Logic Insertion into Product Software via Configuration Management Manipulation - (445)

Attack PatternMalicious Logic Insertion into Product Software via Inclusion of 3rd Party Component Dependency - (446)Malicious Logic Insertion into Product Software via Inclusion of 3rd Party Component Dependency - (446)

Attack PatternMalicious Logic Insertion into Product Software during Update - (447)Malicious Logic Insertion into Product Software during Update - (447)

Attack PatternMalware Infection into Product Software - (448)Malware Infection into Product Software - (448)

Attack PatternMalware Propagation via USB Stick - (449)Malware Propagation via USB Stick - (449)

Attack PatternMalware Propagation via USB U3 Autorun - (450)Malware Propagation via USB U3 Autorun - (450)

Attack PatternMalware Propagation via Infected Peripheral Device - (451)Malware Propagation via Infected Peripheral Device - (451)

Attack PatternMalicious Logic Insertion into Product Hardware - (452)Malicious Logic Insertion into Product Hardware - (452)

Attack PatternMalicious Logic Insertion via Counterfeit Hardware - (453)Malicious Logic Insertion via Counterfeit Hardware - (453)

Attack PatternModification of Existing Components with Counterfeit Hardware - (454)Modification of Existing Components with Counterfeit Hardware - (454)

Attack PatternMalicious Logic Insertion via Inclusion of Counterfeit Hardware Components - (455)Malicious Logic Insertion via Inclusion of Counterfeit Hardware Components - (455)

Attack PatternMalicious Logic Insertion into Product Memory - (456)Malicious Logic Insertion into Product Memory - (456)

Attack PatternUSB Memory Attacks - (457)USB Memory Attacks - (457)

Attack PatternFlash Memory Attacks - (458)Flash Memory Attacks - (458)

Page Last Updated: April 25, 2013


	CAPEC is co-sponsored by the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2007 - 2013, The MITRE Corporation. CAPEC and the CAPEC logo are trademarks of The MITRE Corporation. Contact capec@mitre.org for more information.	Privacy policy Terms of use Contact us

Common Attack Pattern Enumeration and Classification

CAPEC-1000: Mechanism of Attack