Common Attack Pattern Enumeration and Classification

From HandWiki
Short description: Framework for describing and categorizing cyberattacks

The Common Attack Pattern Enumeration and Classification or CAPEC is a catalog of known cyber security attack patterns[1] to be used by cyber security professionals to prevent attacks.[2]

Originally released in 2007 by the United States Department of Homeland Security, the project began as an initiative of the Office of Cybersecurity and Communication, and it is now supported by Mitre Corporation and governed under a board of corporate representatives.[3]

References

  1. Kanakogi, Kenta; Washizaki, Hironori; Fukazawa, Yoshiaki; Ogata, Shinpei; Okubo, Takao; Kato, Takehisa; Kanuka, Hideyuki; Hazeyama, Atsuo et al. (2022-03-27). "Comparative Evaluation of NLP-Based Approaches for Linking CAPEC Attack Patterns from CVE Vulnerability Information" (in en). Applied Sciences 12 (7): 3400. doi:10.3390/app12073400. ISSN 2076-3417. 
  2. "fnCyber™ Go Cyber Resilient Enterprise Cyber Security Consulting & Solutions" (in en). https://www.fncyber.com/web-of-trust-article/understand-common-attack-patterns. 
  3. "CAPEC - About CAPEC". https://capec.mitre.org/about/index.html. 

External links