Standardlikelihood: Mediumseverity: MediumStable

CAPEC-616Establish Rogue Location

Abstraction
Standard
Status
Stable
Likelihood
Medium
Severity
Medium

Description

An adversary provides a malicious version of a resource at a location that is similar to the expected location of a legitimate resource. After establishing the rogue location, the adversary waits for a victim to visit the location and access the malicious resource. Metadata: standard CAPEC pattern, status stable, likelihood medium, severity medium. Underlying weakness: CWE-200. Mapped ATT&CK technique: [object Object]. Related CAPEC patterns: [object Object], [object Object].

Related weaknesses· 1

CWE-200

MITRE ATT&CK crosswalk· 1

T1036.005: Masquerading: Match Legitimate Name or Location

Related attack patterns· 2

CAPEC-154 (ChildOf)CAPEC-691 (CanPrecede)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueMatch Legitimate Name or Locationt1036.005100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Resource Location Spoofing
CAPEC
Counterfeit Websites
CAPEC
Symlink Attack
CAPEC
System Location Discovery
CAPEC
Resource Injection
CAPEC
Clickjacking
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.