New to CAPEC? Start Here
 
Understanding how the adversary operates is essential to effective cybersecurity. CAPEC™ helps by providing a comprehensive dictionary of known patterns of attack employed by adversaries to exploit known weaknesses in cyber-enabled capabilities. It can be used by analysts, developers, testers, and educators to advance community understanding and enhance defenses.

CAPEC List Quick Access
View CAPEC


Search CAPEC

Total Attack Patterns: 555
New to CAPEC

New to CAPEC?

Common Attack Pattern Enumerations and Classifications (CAPEC™) can be overwhelming to someone new to cyber-attack patterns. This page offers tips on how to familiarize yourself with what CAPEC has to offer, before more fully exploring this extensive knowledge base.
Community Engagement
Rest API Working Group
 Join the CWE/CAPEC Rest API WG
User Experience Working Group
 Join the CWE/CAPEC UX WG
CWE/CAPEC Board
 Read the meeting minutes

To get involved, contact us
CAPEC News




More >>
More information is available — Please select a different filter.
Page Last Updated or Reviewed: September 28, 2022
 

Use of the Common Attack Pattern Enumeration and Classification (CAPEC), and the associated references from this website are subject to the Terms of Use. CAPEC is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2007–2022, The MITRE Corporation. CAPEC and the CAPEC logo are trademarks of The MITRE Corporation.