Standardseverity: LowDraft

CAPEC-541Application Fingerprinting

Abstraction
Standard
Status
Draft
Severity
Low

Description

An adversary engages in fingerprinting activities to determine the type or version of an application installed on a remote target. Metadata: standard CAPEC pattern, status draft, severity low. Underlying weaknesses: CWE-204, CWE-205, CWE-208. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

Related weaknesses· 3

CWE-204CWE-205CWE-208

MITRE ATT&CK crosswalk· 1

T1592.002: Gather Victim Host Information: Software

Related attack patterns· 1

CAPEC-224 (ChildOf)

Exploits3

TypeTargetConfidenceTier
WeaknessObservable Behavioral Discrepancycwe-205100%live
WeaknessObservable Response Discrepancycwe-204100%live
WeaknessObservable Timing Discrepancycwe-208100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueSoftwaret1592.002100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Fingerprinting
CAPEC
Web Application Fingerprinting
CAPEC
System Footprinting
CAPEC
Security Software Footprinting
CAPEC
Footprinting
CAPEC
Active OS Fingerprinting
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.