CAPEC攻击模式浏览
Common Attack Pattern Enumeration and Classification(通用攻击模式枚举与分类)- 常见攻击模式的综合字典和分类
总攻击模式数
615
分类数
78
视图数
13
CAPEC攻击模式列表 共 615 条
| CAPEC ID | 名称 | 抽象级别 | 严重程度 | 状态 | 操作 |
|---|---|---|---|---|---|
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs | Standard | High | Draft | 查看详情 |
| CAPEC-2 | Inducing Account Lockout | Standard | Medium | Draft | 查看详情 |
| CAPEC-3 | Using Leading 'Ghost' Character Sequences to Bypass Input Filters | Detailed | Medium | Draft | 查看详情 |
| CAPEC-4 | Using Alternative IP Address Encodings | Detailed | High | Draft | 查看详情 |
| CAPEC-5 | Blue Boxing | Detailed | Very High | Obsolete | 查看详情 |
| CAPEC-6 | Argument Injection | Standard | High | Draft | 查看详情 |
| CAPEC-7 | Blind SQL Injection | Detailed | High | Draft | 查看详情 |
| CAPEC-8 | Buffer Overflow in an API Call | Detailed | High | Draft | 查看详情 |
| CAPEC-9 | Buffer Overflow in Local Command-Line Utilities | Detailed | High | Draft | 查看详情 |
| CAPEC-10 | Buffer Overflow via Environment Variables | Detailed | High | Draft | 查看详情 |
| CAPEC-11 | Cause Web Server Misclassification | Detailed | High | Draft | 查看详情 |
| CAPEC-12 | Choosing Message Identifier | Standard | High | Draft | 查看详情 |
| CAPEC-13 | Subverting Environment Variable Values | Detailed | Very High | Stable | 查看详情 |
| CAPEC-14 | Client-side Injection-induced Buffer Overflow | Detailed | High | Draft | 查看详情 |
| CAPEC-15 | Command Delimiters | Standard | High | Draft | 查看详情 |
| CAPEC-16 | Dictionary-based Password Attack | Detailed | High | Draft | 查看详情 |
| CAPEC-17 | Using Malicious Files | Standard | Very High | Draft | 查看详情 |
| CAPEC-18 | XSS Targeting Non-Script Elements | Detailed | Very High | Draft | 查看详情 |
| CAPEC-19 | Embedding Scripts within Scripts | Standard | High | Stable | 查看详情 |
| CAPEC-20 | Encryption Brute Forcing | Standard | Low | Draft | 查看详情 |