CAPEC
Select a CAPEC to see all CVEs that are vulnerable to it.
| ID | Object Name↑ | Stix Type | Type | ||
|---|---|---|---|---|---|
| CAPEC-597 | Absolute Path Traversal | attack-pattern | Technique | ||
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs | attack-pattern | Technique | ||
| CAPEC-31 | Accessing/Intercepting/Modifying HTTP Cookies | attack-pattern | Technique | ||
| CAPEC-575 | Account Footprinting | attack-pattern | Technique | ||
| CAPEC-173 | Action Spoofing | attack-pattern | Technique | ||
| CAPEC-312 | Active OS Fingerprinting | attack-pattern | Technique | ||
| CAPEC-563 | Add Malicious File to Shared Webroot | attack-pattern | Technique | ||
| CAPEC-649 | Adding a Space to a File Extension | attack-pattern | Technique | ||
| CAPEC-662 | Adversary in the Browser (AiTB) | attack-pattern | Technique | ||
| CAPEC-94 | Adversary in the Middle (AiTM) | attack-pattern | Technique | ||
| CAPEC-85 | AJAX Footprinting | attack-pattern | Technique | ||
| CAPEC-669 | Alteration of a Software Update | attack-pattern | Technique | ||
| CAPEC-638 | Altered Component Firmware | attack-pattern | Technique | ||
| CAPEC-532 | Altered Installed BIOS | attack-pattern | Technique | ||
| CAPEC-635 | Alternative Execution Due to Deceptive Filenames | attack-pattern | Technique | ||
| CAPEC-490 | Amplification | attack-pattern | Technique | ||
| CAPEC-621 | Analysis of Packet Timing and Sizes | attack-pattern | Technique | ||
| CAPEC-501 | Android Activity Hijack | attack-pattern | Technique | ||
| CAPEC-499 | Android Intent Intercept | attack-pattern | Technique | ||
| CAPEC-388 | Application API Button Hijacking | attack-pattern | Technique | ||
| CAPEC-384 | Application API Message Manipulation via Man-in-the-Middle | attack-pattern | Technique | ||
| CAPEC-386 | Application API Navigation Remapping | attack-pattern | Technique | ||
| CAPEC-541 | Application Fingerprinting | attack-pattern | Technique | ||
| CAPEC-6 | Argument Injection | attack-pattern | Technique | ||
| CAPEC-572 | Artificially Inflate File Sizes | attack-pattern | Technique | ||
| CAPEC-539 | ASIC With Malicious Functionality | attack-pattern | Technique | ||
| CAPEC-268 | Audit Log Manipulation | attack-pattern | Technique | ||
| CAPEC-114 | Authentication Abuse | attack-pattern | Technique | ||
| CAPEC-115 | Authentication Bypass | attack-pattern | Technique | ||
| CAPEC-655 | Avoid Security Tool Identification by Adding Data | attack-pattern | Technique | ||
| CAPEC-584 | BGP Route Disabling | attack-pattern | Technique | ||
| CAPEC-611 | BitSquatting | attack-pattern | Technique | ||
| CAPEC-189 | Black Box Reverse Engineering | attack-pattern | Technique | ||
| CAPEC-7 | Blind SQL Injection | attack-pattern | Technique | ||
| CAPEC-96 | Block Access to Libraries | attack-pattern | Technique | ||
| CAPEC-571 | Block Logging to Central Repository | attack-pattern | Technique | ||
| CAPEC-603 | Blockage | attack-pattern | Technique | ||
| CAPEC-666 | BlueSmacking | attack-pattern | Technique | ||
| CAPEC-667 | Bluetooth Impersonation AttackS (BIAS) | attack-pattern | Technique | ||
| CAPEC-472 | Browser Fingerprinting | attack-pattern | Technique | ||
| CAPEC-701 | Browser in the Middle (BiTM) | attack-pattern | Technique | ||
| CAPEC-112 | Brute Force | attack-pattern | Technique | ||
| CAPEC-123 | Buffer Manipulation | attack-pattern | Technique | ||
| CAPEC-8 | Buffer Overflow in an API Call | attack-pattern | Technique | ||
| CAPEC-9 | Buffer Overflow in Local Command-Line Utilities | attack-pattern | Technique | ||
| CAPEC-10 | Buffer Overflow via Environment Variables | attack-pattern | Technique | ||
| CAPEC-47 | Buffer Overflow via Parameter Expansion | attack-pattern | Technique | ||
| CAPEC-45 | Buffer Overflow via Symbolic Links | attack-pattern | Technique | ||
| CAPEC-402 | Bypassing ATA Password Security | attack-pattern | Technique | ||
| CAPEC-395 | Bypassing Electronic Locks and Access Controls | attack-pattern | Technique |
