Standardseverity: LowDraft

CAPEC-189Black Box Reverse Engineering

Abstraction
Standard
Status
Draft
Severity
Low

Description

An adversary discovers the structure, function, and composition of a type of computer software through black box analysis techniques. 'Black Box' methods involve interacting with the software indirectly, in the absence of direct access to the executable object. Such analysis typically involves interacting with the software at the boundaries of where the software interfaces with a larger execution environment, such as input-output vectors, libraries, or APIs. Black Box Reverse Engineering also refers to gathering physical side effects of a hardware device, such as electromagnetic radiation or sounds.

Related weaknesses· 3

CWE-203CWE-1255CWE-1300

Related attack patterns· 1

CAPEC-188 (ChildOf)

Exploits3

TypeTargetConfidenceTier
WeaknessComparison Logic is Vulnerable to Power Side-Channel Attackscwe-1255100%live
WeaknessImproper Protection of Physical Side Channelscwe-1300100%live
WeaknessObservable Discrepancycwe-203100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
White Box Reverse Engineering
CAPEC
Reverse Engineer an Executable to Expose Assumed Hidden Functionality
CAPEC
Reverse Engineering
CAPEC
Protocol Analysis
CAPEC
Fuzzing
CAPEC
Reflection Injection
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.