Detailedseverity: LowStable

CAPEC-301TCP Connect Scan

Abstraction
Detailed
Status
Stable
Severity
Low

Description

An adversary uses full TCP connection attempts to determine if a port is open on the target system. The scanning process involves completing a 'three-way handshake' with a remote port, and reports the port as closed if the full handshake cannot be established. An advantage of TCP connect scanning is that it works against any TCP/IP stack.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-300 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
TCP SYN Scan
CAPEC
Port Scanning
CAPEC
TCP ACK Scan
CAPEC
UDP Scan
CAPEC
TCP Null Scan
CAPEC
TCP SYN Ping
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.