Detalle de categoría CAPEC-515

CAPEC-515

Hardware
Draft
2014-06-23
00h00 +00:00
2022-09-29
00h00 +00:00
CAPEC Mitre.org
Alerta para un CAPEC
Manténgase informado sobre cualquier cambio en un CAPEC específico.
Gestionar notificaciones

Nombre: Hardware

Attack patterns within this category focus on the exploitation of the physical hardware used in computing systems. The techniques defined by each pattern reflect the replacement, destruction, modification and exploitation of hardware components that make up a system in an attempt to achieve a desired negative technical impact. Attacks against hardware component fall into several broad categories depending upon the relative sophistication of the attacker and the type of systems that are targeted. Attacks against hardware components differ from software attacks in that hardware-based attacks target the chips, circuit boards, device ports, or other components that comprise a computer system or embedded system. Sophisticated attacks may involve adding or removing jumpers to an exposed system, or applying sensors to portions of the motherboard to read data as it traverses the system bus.

Lista de miembros CAPEC

CAPEC-26: Leveraging Race Conditions Base

CAPEC-74: Manipulating State Base

CAPEC-113: Interface Manipulation Base

CAPEC-114: Authentication Abuse Base

CAPEC-116: Excavation Base

CAPEC-122: Privilege Abuse Base

CAPEC-124: Shared Resource Manipulation Base

CAPEC-148: Content Spoofing Base

CAPEC-151: Identity Spoofing Base

CAPEC-154: Resource Location Spoofing Base

CAPEC-161: Infrastructure Manipulation Base

CAPEC-176: Configuration/Environment Manipulation Base

CAPEC-188: Reverse Engineering Base

CAPEC-192: Protocol Analysis Base

CAPEC-212: Functionality Misuse Base

CAPEC-233: Privilege Escalation Base

CAPEC-438: Modification During Manufacture Base

CAPEC-439: Manipulation During Distribution Base

CAPEC-440: Hardware Integrity Attack Base

CAPEC-441: Malicious Logic Insertion Base

CAPEC-548: Contaminate Resource Base

CAPEC-560: Use of Known Domain Credentials Base

CAPEC-607: Obstruction Base

CAPEC-624: Hardware Fault Injection Base

Informaciones CAPEC

Envío

Nombre Organización Fecha Fecha de lanzamiento
CAPEC Content Team The MITRE Corporation 2014-06-23 +00:00

Modificaciones

Nombre Organización Fecha Comentario
CAPEC Content Team The MITRE Corporation 2015-11-09 +00:00 Updated Description, Relationships
CAPEC Content Team The MITRE Corporation 2018-07-31 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-04-04 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-09-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2020-07-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2022-09-29 +00:00 Updated Relationships
La información presentada en CVE Find proviene de varias fuentes de referencia cuidadosamente seleccionadas. Los datos CVE son proporcionados por MITRE Corporation y la Base de Datos Nacional de Vulnerabilidades (NVD). El catálogo de Vulnerabilidades Explotadas Conocidas (KEV) proviene de la Agencia de Seguridad de Infraestructura y Ciberseguridad (CISA), mientras que las puntuaciones EPSS provienen de FIRST.org. Además, los datos sobre debilidades de software (CWE) y patrones de ataque comunes (CAPEC) son mantenidos por MITRE Corporation, y la información sobre configuraciones de hardware y software (CPE) es proporcionada por la NVD.