Standardlikelihood: Lowseverity: MediumStable

CAPEC-646Peripheral Footprinting

Abstraction
Standard
Status
Stable
Likelihood
Low
Severity
Medium

Description

Adversaries may attempt to obtain information about attached peripheral devices and components connected to a computer system. Examples may include discovering the presence of iOS devices by searching for backups, analyzing the Windows registry to determine what USB devices have been connected, or infecting a victim system with malware to report when a USB device has been connected. This may allow the adversary to gain additional insight about the system or network environment, which may be useful in constructing further attacks.

Related weaknesses· 1

CWE-200

MITRE ATT&CK crosswalk· 1

T1120: Peripheral Device Discovery

Related attack patterns· 1

CAPEC-169 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related to1

TypeTargetConfidenceTier
TechniquePeripheral Device Discoveryt1120100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Process Footprinting
CAPEC
Footprinting
Technique
Peripheral Device Discovery
CAPEC
System Footprinting
CAPEC
Fingerprinting
CAPEC
Collect Data from Registries
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.