CAPEC攻击模式浏览
Common Attack Pattern Enumeration and Classification(通用攻击模式枚举与分类)- 常见攻击模式的综合字典和分类
总攻击模式数
615
分类数
78
视图数
13
CAPEC攻击模式列表 共 615 条
| CAPEC ID | 名称 | 抽象级别 | 严重程度 | 状态 | 操作 |
|---|---|---|---|---|---|
| CAPEC-41 | Using Meta-characters in E-mail Headers to Inject Malicious Payloads | Detailed | High | Draft | 查看详情 |
| CAPEC-42 | MIME Conversion | Detailed | High | Draft | 查看详情 |
| CAPEC-43 | Exploiting Multiple Input Interpretation Layers | Detailed | High | Draft | 查看详情 |
| CAPEC-44 | Overflow Binary Resource File | Detailed | Very High | Draft | 查看详情 |
| CAPEC-45 | Buffer Overflow via Symbolic Links | Detailed | High | Draft | 查看详情 |
| CAPEC-46 | Overflow Variables and Tags | Detailed | High | Draft | 查看详情 |
| CAPEC-47 | Buffer Overflow via Parameter Expansion | Detailed | High | Draft | 查看详情 |
| CAPEC-48 | Passing Local Filenames to Functions That Expect a URL | Standard | High | Draft | 查看详情 |
| CAPEC-49 | Password Brute Forcing | Standard | High | Draft | 查看详情 |
| CAPEC-50 | Password Recovery Exploitation | Standard | High | Draft | 查看详情 |
| CAPEC-51 | Poison Web Service Registry | Detailed | Very High | Draft | 查看详情 |
| CAPEC-52 | Embedding NULL Bytes | Detailed | High | Draft | 查看详情 |
| CAPEC-53 | Postfix, Null Terminate, and Backslash | Detailed | High | Draft | 查看详情 |
| CAPEC-54 | Query System for Information | Standard | Low | Draft | 查看详情 |
| CAPEC-55 | Rainbow Table Password Cracking | Detailed | Medium | Draft | 查看详情 |
| CAPEC-56 | DEPRECATED: Removing/short-circuiting 'guard logic' | Standard | - | Deprecated | 查看详情 |
| CAPEC-57 | Utilizing REST's Trust in the System Resource to Obtain Sensitive Data | Detailed | Very High | Draft | 查看详情 |
| CAPEC-58 | Restful Privilege Elevation | Detailed | High | Draft | 查看详情 |
| CAPEC-59 | Session Credential Falsification through Prediction | Detailed | High | Draft | 查看详情 |
| CAPEC-60 | Reusing Session IDs (aka Session Replay) | Detailed | High | Draft | 查看详情 |