CAPEC-387: Navigation Remapping To Propagate Malicious Content

攻击模式描述

An adversary manipulates either egress or ingress data from a client within an application framework in order to change the content of messages and thereby circumvent the expected application logic.

前提条件

• Targeted software is utilizing application framework APIs

所需资源

• A software program that allows the use of adversary-in-the-middle communications between the client and server, such as a man-in-the-middle proxy.