CAPEC-300: Port Scanning

Standard Stable 严重程度: Low

CAPEC版本: 3.9

更新日期: 2023-01-24

攻击模式描述

An adversary uses a combination of techniques to determine the state of the ports on a remote target. Any service or application available for TCP or UDP networking will have a port open for communications over the network.

前提条件

The adversary requires logical access to the target's network in order to carry out this type of attack.

所需资源

The adversary requires a network mapping/scanning tool, or must conduct socket programming on the command line. Packet injection tools are also useful for this purpose. Depending upon the method used it may be necessary to sniff the network in order to see the response.

后果影响

影响范围: Confidentiality

技术影响: Other

影响范围: Confidentiality Access Control Authorization

技术影响: Bypass Protection Mechanism

分类映射

分类名称	条目ID	条目名称
ATTACK	1046	Network Service Scanning

关键信息

CAPEC ID: CAPEC-300

抽象级别: Standard

状态: Stable

典型严重程度: Low

CAPEC-300: Port Scanning

攻击模式描述

前提条件

所需资源

后果影响

分类映射

关键信息

相关攻击模式

相关CWE弱点

CAPEC-300: Port Scanning

攻击模式描述

前提条件

所需资源

后果影响

分类映射

关键信息

相关攻击模式

ChildOf CAPEC-169

相关CWE弱点