CAPEC攻击模式浏览
Common Attack Pattern Enumeration and Classification(通用攻击模式枚举与分类)- 常见攻击模式的综合字典和分类
总攻击模式数
615
分类数
78
视图数
13
CAPEC攻击模式列表 共 615 条
| CAPEC ID | 名称 | 抽象级别 | 严重程度 | 状态 | 操作 |
|---|---|---|---|---|---|
| CAPEC-61 | Session Fixation | Detailed | High | Draft | 查看详情 |
| CAPEC-62 | Cross Site Request Forgery | Standard | Very High | Draft | 查看详情 |
| CAPEC-63 | Cross-Site Scripting (XSS) | Standard | Very High | Draft | 查看详情 |
| CAPEC-64 | Using Slashes and URL Encoding Combined to Bypass Validation Logic | Detailed | High | Draft | 查看详情 |
| CAPEC-65 | Sniff Application Code | Detailed | High | Draft | 查看详情 |
| CAPEC-66 | SQL Injection | Standard | High | Draft | 查看详情 |
| CAPEC-67 | String Format Overflow in syslog() | Detailed | Very High | Draft | 查看详情 |
| CAPEC-68 | Subvert Code-signing Facilities | Standard | Very High | Draft | 查看详情 |
| CAPEC-69 | Target Programs with Elevated Privileges | Standard | Very High | Draft | 查看详情 |
| CAPEC-70 | Try Common or Default Usernames and Passwords | Detailed | High | Draft | 查看详情 |
| CAPEC-71 | Using Unicode Encoding to Bypass Validation Logic | Detailed | High | Draft | 查看详情 |
| CAPEC-72 | URL Encoding | Detailed | High | Draft | 查看详情 |
| CAPEC-73 | User-Controlled Filename | Standard | High | Draft | 查看详情 |
| CAPEC-74 | Manipulating State | Meta | High | Stable | 查看详情 |
| CAPEC-75 | Manipulating Writeable Configuration Files | Standard | Very High | Draft | 查看详情 |
| CAPEC-76 | Manipulating Web Input to File System Calls | Detailed | Very High | Draft | 查看详情 |
| CAPEC-77 | Manipulating User-Controlled Variables | Standard | Very High | Draft | 查看详情 |
| CAPEC-78 | Using Escaped Slashes in Alternate Encoding | Detailed | High | Draft | 查看详情 |
| CAPEC-79 | Using Slashes in Alternate Encoding | Detailed | High | Draft | 查看详情 |
| CAPEC-80 | Using UTF-8 Encoding to Bypass Validation Logic | Detailed | High | Draft | 查看详情 |